Query: Network ACLs should not allow ingress from 0.0.0.0/0 to port 22 or port 3389

Description

This control checks if default ports for SSH/RDP ingress traffic for network access control lists (NACLs) is unrestricted. The rule fails if a NACL inbound entry allows a source CIDR block of '0.0.0.0/0' or '::/0' for ports 22 or 3389.

Query

Tables used in this query:

• aws_vpc_network_acl

Controls using this query:

• 21 Network ACLs should not allow ingress from 0.0.0.0/0 to port 22 or port 3389
• 5.1 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• 5.1 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• 5.1 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• 5.1 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• 5.1 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• 5.2 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• 5.2 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• 6.2 Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports
• Network ACLs should not allow ingress from 0.0.0.0/0 to port 22 or port 3389

SQL