Configure firewall to Allow Access to the Web Server
An XCCDF Rule
Description
By default, firewalld
blocks access to the ports used by the web server.
To configure firewalld to allow http access, run the following command(s):
firewall-cmd --permanent --add-service=httpThen run the following command to load the newly created rule(s):
firewall-cmd --reloadTo configure
firewalld to allow https access, run the following command(s):
firewall-cmd --permanent --add-service=httpsThen run the following command to load the newly created rule(s):
firewall-cmd --reload
Rationale
Failure to comply with DoD ports, protocols, and services (PPS) requirements can result in compromise of enclave boundary protections and/or functionality of the AIS.
- ID
- xccdf_org.ssgproject.content_rule_httpd_configure_firewall
- Severity
- Low
- References
- Updated