Skip to content

Ensure ufw Firewall Rules Exist for All Open Ports

An XCCDF Rule

Description

Any ports that have been opened on non-loopback addresses need firewall rules to govern traffic.

warning alert: Warning

Changing firewall settings while connected over network can result in being locked out of the system.

Rationale

Without a firewall rule configured for open ports default firewall policy will drop all packets to these ports.

ID
xccdf_org.ssgproject.content_rule_ufw_rules_for_open_ports
Severity
Medium
References
Updated