Benchmark: 1.4: Network connections between trusted and untrusted networks are controlled
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-aws-compliance
Start the Powerpipe server:
steampipe service startpowerpipe server
Open http://localhost:9033 in your browser and select 1.4: Network connections between trusted and untrusted networks are controlled.
Run this benchmark in your terminal:
powerpipe benchmark run aws_compliance.benchmark.pci_dss_v40_requirement_1_4
Snapshot and share results via Turbot Pipes:
powerpipe benchmark run aws_compliance.benchmark.pci_dss_v40_requirement_1_4 --share
Benchmarks
- 1.4.1: NSCs are implemented between trusted and untrusted networks
- 1.4.2: Inbound traffic from untrusted networks to trusted networks is restricted
- 1.4.3 Anti-spoofing measures are implemented to detect and block forged source IP addresses from entering the trusted network
- 1.4.4: System components that store cardholder data are not directly accessible from untrusted networks
- 1.4.5 The disclosure of internal IP addresses and routing information is limited to only authorized parties