Firewall rules are not configured for all open ports
Description
Any ports that have been opened on non-loopback addresses need firewall rules to govern the traffic.
Severity
important
Category
Linux - Firewall
Resolution
Follow the below steps to resolve the misconfiguration.
Get the list of ports using the following command :
sudo ss -tupln state listening
For each port in the above command which does not have a firewall rule establish a proper rule for accepting inbound connections.
Potential issues that may arise after applying the resolution
Altering the existing security setting may create the following impact in your network operations.
Does remediation require reboot?
No
Vulnerability Manager Plus tracks security configurations and remediate misconfigurations in your network systems from a centralized console. View a list of all the security misconfigurations detected by Vulnerability Manager Plus.