Ensure access to specific required ports is allowed, and nothing else.
Impact
Recommended Actions
Follow the appropriate remediation steps below to resolve the issue.
Set specific allowed ports
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
AWSTemplateFormatVersion:"2010-09-09"Description:Good example of excessive portsResources:NetworkACL:Type:AWS::EC2::NetworkAclProperties:RuleAction:allowVpcId:somethingRule:Type:AWS::EC2::NetworkAclEntryProperties:NetworkAclId:!Ref NetworkACLProtocol:6Ref:NetworkACLRuleAction:allow