Google > VPC Network >

Excessive Firewall Rules

MEDIUM

Source

CloudSploit

ID

excessive-firewall-rules

management console

Excessive Firewall Rules

Determines if there are an excessive number of firewall rules in the account

Keeping the number of firewall rules to a minimum helps reduce the attack surface of an account. Rather than creating new rules with the same rules for each project, common rules should be grouped under the same firewall rule. For example, instead of adding port 22 from a known IP to every firewall rule, create a single “SSH” firewall rule which can be used on multiple instances.

Recommended Actions

Limit the number of firewall rules to prevent accidental authorizations

Links

https://cloud.google.com/vpc/docs/using-firewalls

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.

Copyright © 2024 Aqua Security Software Ltd. Privacy Policy | Terms of Use