IP tunneling mechanisms can be used to bypass network filtering. If tunneling is required, it must be documented with the information system security officer (ISSO).
Check
Verify that RHEL 9 does not have unauthorized IP tunnels configured.
Determine if the "IPsec" service is active with the following command:
$ systemctl is-active ipsec
Inactive
If the "IPsec" service is active, check for configured IPsec connections ("conn"), with the following command: