Benchmark: Firewall Access
This benchmark answers the following questions:
- Are there any firewall rules allowing unrestricted TCP/UDP access from 0.0.0.0/0 or ::/0?
- Are there any firewall rules allowing access to sensitive ports (SSH, RDP, MySQL, PostgreSQL, MongoDB, MSSQL, etc.) from 0.0.0.0/0 or ::/0?
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-gcp-perimeterStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select Firewall Access.
Run this benchmark in your terminal:
powerpipe benchmark run gcp_perimeter.benchmark.firewall_accessSnapshot and share results via Turbot Pipes:
powerpipe benchmark run gcp_perimeter.benchmark.firewall_access --shareControls
- VPC firewall rules should restrict ingress access to common ports from 0.0.0.0/0 and ::/0
- VPC firewall rules should restrict ingress TCP and UDP access from 0.0.0.0/0 and ::/0