AWS & GCE Pro FIPS images do have charon (strongswan) running which leads to open UDP port 500 and 4500
Bug #2049403 reported by
Thomas Bechtold
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cloud-images |
New
|
Undecided
|
Unassigned |
Bug Description
A current AWS image and also GCE images for Pro FIPS do have UDP port 500 and 4500 open by default:
# cat /etc/cloud/
build_name: pro-fips-server
serial: 20240107
# lsof -i -n -P|grep charon
charon 10959 root 9u IPv6 61015 0t0 UDP *:500
charon 10959 root 10u IPv6 61016 0t0 UDP *:4500
charon 10959 root 11u IPv4 61017 0t0 UDP *:500
charon 10959 root 12u IPv4 61018 0t0 UDP *:4500
That's against the default policy for Ubuntu cloud images which should only have 22/TCP (ssh) open.
To post a comment you must log in.