diff --git a/README.md b/README.md
index c77dfe5..2d9545e 100644
--- a/README.md
+++ b/README.md
@@ -178,14 +178,6 @@ To use other than random password:
 ubuntu2004cis_root_password: 'new password'
 ```
 
-### 3.4.2 | PATCH | Ensure /etc/hosts.allow is configured
-```
-ubuntu2004cis_host_allow:
-  - "10.0.0.0/255.0.0.0"  
-  - "172.16.0.0/255.240.0.0"  
-  - "192.168.0.0/255.255.0.0"    
-```  
-
 ```
 ubuntu2004cis_firewall: firewalld
 ubuntu2004cis_firewall: iptables
diff --git a/defaults/main.yml b/defaults/main.yml
index 9b3f901..10fb41a 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -368,13 +368,6 @@ ubuntu2004cis_time_synchronization_servers:
 # 3.3 TCP Wrappers
 ubuntu2004cis_setup_tcp_wrappers: false
 
-# 3.3.4 | PATCH | Ensure /etc/hosts.allow is configured
-ubuntu2004cis_host_allow:
-  - "10.0.0.0/255.0.0.0"
-  - "172.16.0.0/255.240.0.0"
-  - "192.168.0.0/255.255.0.0"
-  - "0.0.0.0/0.0.0.0"
-
 ubuntu2004cis_firewall: firewalld
 # ubuntu2004cis_firewall: iptables
 # ubuntu2004cis_firewall: ufw
diff --git a/templates/hosts.allow.j2 b/templates/hosts.allow.j2
deleted file mode 100644
index 91d19b7..0000000
--- a/templates/hosts.allow.j2
+++ /dev/null
@@ -1,11 +0,0 @@
-#
-# hosts.allow	This file contains access rules which are used to
-#		allow or deny connections to network services that
-#		either use the tcp_wrappers library or that have been
-#		started through a tcp_wrappers-enabled xinetd.
-#
-#		See 'man 5 hosts_options' and 'man 5 hosts_access'
-#		for information on rule syntax.
-#		See 'man tcpd' for information on tcp_wrappers
-#
-ALL: {% for iprange in ubuntu2004cis_host_allow -%}{{ iprange }}{% if not loop.last %}, {% endif %}{% endfor %}