Ensure Access Control Group has Access Control Group Rule attached
Description
This policy checks if an Access Control Group has an Access Control Group Rule attached. It is essential to have rules attached to Access Control Groups to define the allowed incoming and outgoing traffic. Without attached rules, the Access Control Group may not function as intended, potentially leading to security vulnerabilities or unintended network access. By ensuring that Access Control Groups have attached rules, organizations can better manage network security and reduce the risk of unauthorized access.
Code Example
terraform
resource "ncloud_access_control_group_rule" "example" {
access_control_group_no = ncloud_access_control_group.example.id
protocol = "TCP"
ip_block = "0.0.0.0/0"
port_range = "22"
}Remediation
Attach an Access Control Group Rule to the Access Control Group to define the allowed traffic.
Rule Details
| Field | Value |
|---|---|
| ID | IAC-1227 |
| Severity | MEDIUM |
| IaC Type | Terraform |
| Frameworks | ncloud_access_control_group |
| Checkov ID | CKV_NCP_26 |