Control: 3.5 Ensure the security group are configured with fine grained rules
Security groups provide stateful filtering of ingress/egress network traffic to Alibaba Cloud resources. It is recommended that all security group configured with fine grained rules.
- Logon to ECS Console.
- In the left-side navigation pane, choose
Network & Security > Security Groups.
Removeany unnecessary rules in all security groups.
Run the control in your terminal:
steampipe check alicloud_compliance.control.cis_v100_3_5
Snapshot and share results via Steampipe Cloud:
steampipe loginsteampipe check --share alicloud_compliance.control.cis_v100_3_5
This control uses a named query:manual_control