You are here: Compliance Check Types > Unix Configuration > Custom Items > AUDIT_ALLOWED_OPEN_PORTS

AUDIT_ALLOWED_OPEN_PORTS

The “AUDIT_ALLOWED_OPEN_PORTS” audit check is used to define an open port based policy. Users can specify which ports can be open on a given system, and if any other ports apart from the specified ports are open, then it will be considered a failure. A comma separates more than one port, and the port value could also be a regex.

<custom_item>

type: AUDIT_ALLOWED_OPEN_PORTS

description: "Only allow port 80,443, 808[0-9] open on Web Server"

port_type: TCP

ports: "80,443, 808[0-9]"

</custom_item>

Copyright © 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.