Evaluates whether asset protection is enabled in Cloud Firewall. Assets with protection enabled are evaluated as Compliant. This rule applies only to users who have activated Cloud Firewall. No detection data is available for free or unactivated users.
Scenarios
Manage inbound and outbound traffic for your Internet-facing assets with fine-grained control, reducing their exposure and lowering security risks.
Risk level
Default risk level: high.
You can change the risk level based on your business requirements when you apply this rule.
Compliance evaluation logic
Checks whether asset protection is enabled in Cloud Firewall. If so, the evaluation result is Compliant.
This rule applies only to users that have activated the Cloud Firewall service. No detection data is available for users that have not activated the service or have used the service for free.
Rule details
|
Parameter |
Description |
|
Rule Template Name |
firewall-asset-open-protect |
|
Rule Template Identifier |
|
|
Tag |
CloudFirewall |
|
Automatic remediation |
Not supported |
|
Invoke Type |
Configuration Change |
|
Supported resource type |
Firewall settings (ACS::CloudFirewall::Asset) |
|
Input parameter |
N/A |
Non-compliance remediation
Enable asset protection in Cloud Firewall. For more information, see Internet firewall.