tencent cloud

Config

DocumentationConfigOperation GuideRuleList of Managed RuleAccess to Remote Risky Ports by Security Group Not Allowed

Access to Remote Risky Ports by Security Group Not Allowed

PDF
Focus Mode
Font Size
Last updated: 2024-02-29 11:02:54
Rule purpose: Check whether the security group can access remote risky ports when rules covering all network segments are set.
Compliance evaluation logic: When the security group has set rules covering all network segments (0.0.0.0/0 or ::/0), the port range cannot contain specified risky ports. If no such rules are set, the port range can contain specified risky ports. The evaluation result is "compliant" when the above conditions are met.
Rule Identifier: cvm-sg-no-remote-access
Risk Level: High
Applicable Resource Type: QCS::VPC::SecurityGroup
Rule trigger type: Configuration change
Keyword: Security Group
Rule parameter: None

Previous Topic: Specified Tag Existed for ResourceNext Topic: Access to All Ports by Security Group Not Allowed

Help and Support

Was this page helpful?

Help us improve! Rate your documentation experience in 5 mins.

Feedback