Checks whether Internet access is disabled for each Microservices Engine (MSE) cluster. If so, the evaluation result is Compliant.
Scenarios
Enabling Internet access for an MSE cluster is prone to various security issues. We recommend that you disable Internet access for each MSE cluster to ensure the security and performance of the clusters and data.
Risk level
Default risk level: high.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
If Internet access is disabled for each MSE cluster, the evaluation result is Compliant.
If Internet access is enabled for an MSE cluster, the evaluation result is Non-compliant.
Rule details
Item | Description |
Rule name | mse-cluster-internet-check |
Rule ID | |
Tag | MSE |
Automatic remediation | Not supported |
Trigger type | Configuration change |
Supported resource type | MSE cluster |
Input parameter | None |
Non-compliance remediation
Disable Internet access for each MSE cluster. For more information, see Configure access authentication.