VPC Network ACL Not Empty

ID: rule:aliyun:vpc-network-acl-not-empty
Severity: medium

Description

Ensures VPC Network ACLs have at least one rule configured.

Reason for Violation

An empty ACL provides no security filtering, which might lead to unintended access.

Recommendation

Add ingress and egress rules to the VPC Network ACL.

Resource Types

• ALIYUN::VPC::NetworkAcl