I wonder if there is a set of UFW that currently works with Rancher 2.1.3 server and agent nodes? I tried to open the ports on https://rancher.com/docs/rancher/v2.x/en/installation/references/ but the Rancher is still having diffculty provisioning the nodes.
I managed to install a cluster with master and 2 workers all using UFW with these rules:
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow from 1.2.3.4 comment "rancher server"
sudo ufw allow from 172.17.0.0/16 comment "Docker bridge network"
sudo ufw allow 6443 comment "rancher control plane nodes"