Skip to main content

VPC Network ACL Risky Ports Check

ID: rule:aliyun:vpc-network-acl-risky-ports-check
Severity: high

Description

Ensures VPC Network ACLs do not allow unrestricted access to risky ports (22, 3389).

Reason for Violation

Opening management ports to all IPs (0.0.0.0/0) creates a significant security risk.

Recommendation

Restrict access to ports 22 and 3389 to specific trusted IP ranges.

Resource Types

ALIYUN::VPC::NetworkAcl

Description
Reason for Violation
Recommendation
Resource Types