AzPolicyAdvertizer

last sync: 2023-Jun-19 17:45:01 UTC

Community Policy definition

Azure firewall policy should only allow user defined standard ports and FQDNs within network rules

Name Azure firewall policy should only allow user defined standard ports and FQDNs within network rules
Community-Policy GitHub
Id network_allow-azurefirewallpolicy-user-defined-standard-ports-destiantionaddresses-within-network-rules
Version n/a
details on versioning
Category undefined
Microsoft docs
Description Enforce usage of user defined standard ports, protocols and destination addresses. This is a common requirement in many regulatory and industry compliance standards.
Mode All
Type Custom Community
Effect Default
Audit
Allowed
Deny, Audit, Disabled
Used RBAC Role none
Rule Aliases IF (7)
Alias Namespace ResourceType DefaultPath Modifiable
Microsoft.Network/firewallPolicies/ruleCollectionGroups/ruleCollections[*] Microsoft.Network firewallPolicies/ruleCollectionGroups properties.ruleCollections[*] false
Microsoft.Network/firewallPolicies/ruleCollectionGroups/ruleCollections[*].FirewallPolicyFilterRuleCollection.rules[*] Microsoft.Network firewallPolicies/ruleCollectionGroups properties.ruleCollections[*].rules[*] false
Microsoft.Network/firewallPolicies/ruleCollectionGroups/ruleCollections[*].FirewallPolicyFilterRuleCollection.rules[*].NetworkRule.destinationAddresses[*] Microsoft.Network firewallPolicies/ruleCollectionGroups properties.ruleCollections[*].rules[*].destinationAddresses[*] false
Microsoft.Network/firewallPolicies/ruleCollectionGroups/ruleCollections[*].FirewallPolicyFilterRuleCollection.rules[*].NetworkRule.destinationPorts[*] Microsoft.Network firewallPolicies/ruleCollectionGroups properties.ruleCollections[*].rules[*].destinationPorts[*] false
Microsoft.Network/firewallPolicies/ruleCollectionGroups/ruleCollections[*].FirewallPolicyFilterRuleCollection.rules[*].NetworkRule.ipProtocols[*] Microsoft.Network firewallPolicies/ruleCollectionGroups properties.ruleCollections[*].rules[*].ipProtocols[*] false
Microsoft.Network/firewallPolicies/ruleCollectionGroups/ruleCollections[*].FirewallPolicyFilterRuleCollection.rules[*].ruleType Microsoft.Network firewallPolicies/ruleCollectionGroups properties.ruleCollections[*].rules[*].ruleType false
Microsoft.Network/firewallPolicies/ruleCollectionGroups/ruleCollections[*].priority Microsoft.Network firewallPolicies/ruleCollectionGroups properties.ruleCollections[*].priority false
Rule ResourceTypes
JSON