This rule checks whether Cloud Firewall is used to protect your network boundary. If Cloud Firewall is deployed, the evaluation result is considered compliant.
Scenarios
When an enterprise deploys Cloud Firewall to protect its network boundary, all inbound and outbound traffic is strictly inspected, which effectively prevents external threats. This deployment is considered "compliant" with a default risk level of high.
Risk level
Default risk level: high.
You can change the risk level as needed.
Detection logic
This rule checks whether Cloud Firewall is used to protect your network boundary. If Cloud Firewall is deployed, the evaluation result is considered compliant.
Rule details
Parameter | Description |
Rule name | Use Cloud Firewall to protect network boundary |
Rule identifier | |
Automatic remediation | Not supported |
Rule trigger | Periodic: Every 24 hours |
Supported resource types | ACS::::Account |
Input parameters | None |
Remediation guidance
For more information, see IPS configuration.