Security tool reports multiple ports that are flagged using "netstat" command

vCenter 8.0.x

Port details are covered in below public document https://ports.broadcom.com/home/vSphere

It is recommended to run the command "iptables -L port_filter -n" to validate the ports open for ingress in the firewall.

Running the netstat command is not the correct way of performing the vulnerability test because when netstat command is run inside the vcsa it will always flag out internal ports.