5 Replies Latest reply on Aug 21, 2013 1:10 AM by Niranjan Nagandla

    Compliance rule to check specific ports are opened

    Niranjan Nagandla

      Hi All,

       

      I need to write a compliance rule to check if specific ports are opened. I created an EO with "netstat" command to list the ports opened and I need to write a compliance rule based on a EO.

       

      I created a rule as follows and it is failing even when the port is opened. My compliance rule looks as follows:

       

      "Extended Object Entry:netstat//TCP-*"."Value1 as String (All OS)" "Contains" "0.0.0.0:3389"

       

      When I test this rule, it shows me as failed even when the port is opened. Is there any alternate way to write a compliance rule for this? Why it is showing as failed even when it exists.

       

       

      Thanks,

      Niranjan