last sync: 2024-Jun-24 18:15:26 UTC

Network interfaces should disable IP forwarding

Azure BuiltIn Policy definition

Source Azure Portal
Display name Network interfaces should disable IP forwarding
Id 88c0b9da-ce96-4b03-9635-f29a937e2900
Version 1.0.0
Details on versioning
Category Network
Microsoft Learn
Description This policy denies the network interfaces which enabled IP forwarding. The setting of IP forwarding disables Azure's check of the source and destination for a network interface. This should be reviewed by the network security team.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Fixed
deny
RBAC role(s) none
Rule aliases IF (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Network/networkInterfaces/enableIpForwarding Microsoft.Network networkInterfaces properties.enableIPForwarding True True
Rule resource types IF (1)
Microsoft.Network/networkInterfaces
Compliance Not a Compliance control
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
[Preview]: Motion Picture Association of America (MPAA) 92646f03-e39d-47a9-9e24-58d60ef49af8 Regulatory Compliance Preview BuiltIn
Enforce recommended guardrails for Network and Networking services Enforce-Guardrails-Network Network GA ALZ
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC