Documentation menu

Docs

Allowed Ports

Declare the ports that are supposed to be open so expected services never raise alarms.

Allowed Ports are your "this is fine" list: the services you run on purpose. Anything on the list never raises a security issue; anything off the list does. A good list is what makes every alert you receive worth reading.

What a rule contains

FieldMeaning
Port / rangeOne port (443) or a range (8000–8100).
ProtocolTCP, UDP, or both.
ScopeOne specific server, or all of your servers.
JustificationA sentence on why the port is open. Future-you (and your audits) will thank you.
ExpiryOptional: the rule stops applying after a date, great for temporary services.

Two ways to add one

  • From the Allowed Ports page: create a rule from scratch.
  • From an open issue: Allow this port pre-fills the rule and resolves the issue in one click.

Deleting a rule does not close the port. It just means the port will raise an issue again on the next scan.

Compiled from the AegisWhite platform (build 6bffe04, module v1.7.3, 2026-07-14).