Cloud Defense Logo

Products

Solutions

Company

Rule: VPC Default Security Group Restriction

This rule ensures VPC default security group restricts all inbound and outbound traffic.

RuleVPC default security group should not allow inbound and outbound traffic
FrameworkFedRAMP Moderate Revision 4
Severity
Medium

Rule Description:

The default security group within a Virtual Private Cloud (VPC) should not allow any inbound or outbound traffic that is not compliant with the Federal Risk and Authorization Management Program (FedRAMP) Moderate Revision 4 requirements. This rule ensures that the default security group is configured to align with the specified security standards.

Troubleshooting Steps:

  2. 1.
    Identify the default security group associated with the VPC in question.
  4. 2.
    Verify the current inbound and outbound rules configured for the default security group.
  6. 3.
    Check if any inbound or outbound rules violate the restrictions imposed by FedRAMP Moderate Revision 4.

Neccessary Codes:

No specific codes are required for this rule. However, if necessary, you may need to use the AWS Command Line Interface (CLI) to modify the security group rules.

Remediation Steps:

  2. 1.

    Open the AWS Management Console and navigate to the VPC service.

  4. 2.

    Select the appropriate VPC from the list.

  6. 3.

    Click on the "Security Groups" tab.

  8. 4.

    Identify the default security group associated with the VPC.

  10. 5.

    Click on the default security group to view its details.

  12. 6.

    Review the inbound and outbound rules configured for the default security group.

  14. 7.

    Determine which rules do not comply with the FedRAMP Moderate Revision 4 requirements.

  16. 8.

    To remove an existing rule, locate the rule in the "Inbound Rules" or "Outbound Rules" section and click the "Edit" button.

  18. 9.

    Remove the rule by clicking the "x" icon next to it.

  20. 10.

    If necessary, add new inbound or outbound rules that comply with the FedRAMP Moderate Revision 4 requirements.

  22. 11.

    To add a new rule, click the "Edit" button in the corresponding section.

  24. 12.

    Click the "Add Rule" button.

  26. 13.

    Configure the new rule according to the required settings specified in FedRAMP Moderate Revision 4.

  28. 14.

    Save the changes and exit the security group configuration.

  30. 15.

    Repeat steps 8-14 for any additional rules that need to be modified or added.

  32. 16.

    Once all the necessary changes have been made, confirm that the default security group now adheres to the FedRAMP Moderate Revision 4 requirements.

CLI Command:

No specific CLI commands are required for this rule. The remediation steps can be accomplished through the AWS Management Console.

Is your System Free of Underlying Vulnerabilities?
Find Out Now