Checks whether asset protection is enabled in Cloud Firewall. If so, the evaluation result is Compliant. This rule applies only to users that have activated the Cloud Firewall service. No detection data is available for users that have not activated the service or have used the service for free.
Scenarios
You can manage the inbound and outbound traffic between your Internet-facing assets and the Internet in a fine-grained manner. This reduces the exposure of Internet-facing assets to the Internet and the security risks of business traffic.
Risk level
Default risk level: high.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
Checks whether asset protection is enabled in Cloud Firewall. If so, the evaluation result is Compliant.
This rule applies only to users that have activated the Cloud Firewall service. No detection data is available for users that have not activated the service or have used the service for free.
Rule details
Parameter | Description |
Rule Template Name | firewall-asset-open-protect |
Rule Template Identifier | |
Tag | CloudFirewall |
Automatic remediation | Not supported |
Invoke Type | Configuration Change |
Supported resource type | Firewall settings (ACS::CloudFirewall::Asset) |
Input parameter | N/A |
Non-compliance remediation
Enable asset protection in Cloud Firewall. For more information, see Internet firewall.