Comment 11 for bug 247455

airtonix,

Regarding not using ufw for NAT: you can use ufw for NAT, it is just that the cli command does not expose that functionality. In other words, the ufw framework is designed so you can add iptables-restore style commands directly to /etc/ufw/*.rules. See 'man ufw-framework' for details. Adding support for NAT is planned.

/etc/ufw/before.rules should not be touched by the ufw command. This is for the admin to use and modify as desired. The ufw command edits files in /lib/ufw/user*.rules (or /var/lib/ufw/user*rules in older releases).