Azure_VirtualNetworks_31

VirtualMachine with service DNS (UDP:53) is exposed to a small public network scope

Description

DNS is considered a protocol that should only be exposed in private networks, for a limited scope, allowing access to only applications and services that requires access. Limiting access is a good practice that prevents exploits through public interfaces or east west lateral movement.

Remediation

Limit the access scope for Prevalent known internal port to only allow access in internal networks and limited scope.

If a public interface exists, remove it and limit the access scope within the VNET only to applications or instances that require access. See https://docs.microsoft.com/en-us/azure/virtual-network/network-security-groups-overview.

“

Service

Networking

Severity

Low

VirtualMachine with service DNS (UDP:53) is exposed to a small public network scope

Description

Remediation

Service

Severity

Compliance

Mapping

Cloudlytics

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

VirtualMachine with service DNS (UDP:53) is exposed to a small public network scope

Description

Remediation

Service

Severity

Compliance

Mapping

CLOSE

We are now live on AWS Marketplace. The integrated view of your cloud infrastructure is now easier than ever!

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!