Networking

Rules for configuring security-related aspects of the default Virtual Private Cloud (VPC).

Rule Name

Description

Ensure no security groups allow ingress from 0.0.0.0/0 to port 3389

It is recommended that no security group allows unrestricted ingress access to port 3389 and port 22.

Ensure the default security group of every VPC restricts all traffic (4.3)

It is recommended that the default security group restrict all traffic.

Ensure routing tables for VPC peering are "least access" (4.4)

It is recommended that routing tables for VPC peering are "least access" to minimize the impact of breaches.