Best Practices for Virtual Private Cloud
The following table lists the rules and solutions included in this conformance package template.
|
Rule |
Cloud Service |
Description |
|---|---|---|
|
vpc-default-sg-closed |
vpc |
If a default security group allows all inbound or outbound traffic, this security group is noncompliant. |
|
vpc-sg-attached-ports |
vpc |
This rule checks if a security group is associated with any elastic network interface. If a security group is not attached to any elastic network interface, this security group is noncompliant. |
|
vpc-sg-ports-check |
vpc |
If a security group has the source address set to 0.0.0.0/0 or ::/0 and opens all TCP/UDP ports, this security group is noncompliant. |
|
vpc-sg-restricted-ssh |
vpc |
If a security group allows all inbound traffic (with the source address set to 0.0.0.0/0 or ::/0) and opens the TCP 22 port, this security group is noncompliant. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
