Checks whether Cloud Firewall contains a control policy that matches the conditions specified by the input parameters of this rule.
Scenarios
Make sure that the required control policies are configured in Cloud Firewall to prevent business operations from being affected due to insufficient permissions.
Risk level
Default risk level: high.
You can change the risk level as required when you apply this rule.
Compliance evaluation logic
- If Cloud Firewall contains a control policy that matches the conditions specified by the input parameter of this rule, the evaluation result is compliant.
- If Cloud Firewall contains no control policy that matches the conditions specified by the input parameter of this rule, the evaluation result is non-compliant. For more information about how to correct the non-compliant configuration, see Non-compliance remediation.
Rule details
| Item | Description |
|---|---|
| Rule name | cloud-fire-wall-has-matched-control-policy |
| Rule ID | cloud-fire-wall-has-matched-control-policy |
| Tag | CloudFireWall and ControlPolicy |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Time interval | 24 hours |
| Supported resource type | None |
| Input parameter |
|
Non-compliance remediation
Configure an access control policy in Cloud Firewall. For more information, see Create access control policies for the Internet firewall on outbound and inbound traffic.