All Products
Search
Document Center

Cloud Config:firewall-asset-open-protect

Last Updated:Jun 22, 2026

Evaluates whether asset protection is enabled in Cloud Firewall. Assets with protection enabled are evaluated as Compliant. This rule applies only to users who have activated Cloud Firewall. No detection data is available for free or unactivated users.

Scenarios

Manage inbound and outbound traffic for your Internet-facing assets with fine-grained control, reducing their exposure and lowering security risks.

Risk level

Default risk level: high.

You can change the risk level based on your business requirements when you apply this rule.

Compliance evaluation logic

Checks whether asset protection is enabled in Cloud Firewall. If so, the evaluation result is Compliant.

Note

This rule applies only to users that have activated the Cloud Firewall service. No detection data is available for users that have not activated the service or have used the service for free.

Rule details

Parameter

Description

Rule Template Name

firewall-asset-open-protect

Rule Template Identifier

firewall-asset-open-protect

Tag

CloudFirewall

Automatic remediation

Not supported

Invoke Type

Configuration Change

Supported resource type

Firewall settings (ACS::CloudFirewall::Asset)

Input parameter

N/A

Non-compliance remediation

Enable asset protection in Cloud Firewall. For more information, see Internet firewall.