Control: All network ports should be restricted on network security groups associated to your virtual machine
Description
Azure Security Center has identified some of your network security groups' inbound rules to be too permissive. Inbound rules should not allow access from 'Any' or 'Internet' ranges. This can potentially enable attackers to target your resources.
Usage
Run the control in your terminal:
powerpipe control run azure_compliance.control.compute_vm_remote_access_restricted_all_portsSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run azure_compliance.control.compute_vm_remote_access_restricted_all_ports --shareSQL
This control uses a named query:
compute_vm_remote_access_restricted_all_ports