Azure_VirtualNetworks_30

Ensure that outbound traffic is restricted to only that which is necessary, and all other traffic denied

Description

Network Security groups provide stateful filtering of ingress/egress network traffic to Azure resources. It is recommended that no security group allows unrestricted egress access.

Remediation

Azure Console:

1. Navigate to the ‘All services’.

2. Navigate to the Networking, and select ‘Network security groups’.

3. Select the Network security group to be modified.

4. Under Settings, select ‘Outbound security rules’.

5. Select the rule to be modified and edit it to allow only specific IP addresses or protocols

Service

Networking

Severity

High

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!