{{{ oval_metadata("If inbound SSH access is not needed, the firewall should disallow or reject access to the SSH port (22).", rule_title=rule_title) }}} /etc/firewalld/services ^.*\.xml$ /service/service[@name='ssh'] /etc/firewalld/services ^.*\.xml$ /service/port[@port='22'] /etc/firewalld/zones ^.*\.xml$ /zone/service[@name='ssh'] /etc/firewalld/zones ^.*\.xml$ /zone/port[@port='22']