Allowed Ports
Declare the ports that are supposed to be open so expected services never raise alarms.
Allowed Ports are your "this is fine" list: the services you run on purpose. Anything on the list never raises a security issue; anything off the list does. A good list is what makes every alert you receive worth reading.
What a rule contains
| Field | Meaning |
|---|---|
| Port / range | One port (443) or a range (8000–8100). |
| Protocol | TCP, UDP, or both. |
| Scope | One specific server, or all of your servers. |
| Justification | A sentence on why the port is open. Future-you (and your audits) will thank you. |
| Expiry | Optional: the rule stops applying after a date, great for temporary services. |
Two ways to add one
- From the Allowed Ports page: create a rule from scratch.
- From an open issue: Allow this port pre-fills the rule and resolves the issue in one click.
Deleting a rule does not close the port. It just means the port will raise an issue again on the next scan.