检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
Private NAT Private Gateways Are in Specified VPCs Rule Details Table 1 Rule details Parameter Description Rule Name private-nat-gateway-authorized-vpc-only Identifier private-nat-gateway-authorized-vpc-only Description If a private NAT gateway is not in a specified VPC, this gateway
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. vpc-sg-restricted-common-ports vpc If a security group allows all IPv4 and IPv6 traffic (with the source address set to 0.0.0.0/0 or ::/0) to the specified ports, this security group is noncompliant
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. rds-instance-enable-backup rds If backup is not enabled for an RDS instance, this instance is noncompliant. rds-instance-multi-az-support rds If an RDS instance does not support multi-AZ deployment,
this cluster is noncompliant. mrs-cluster-kerberos-enabled mrs If kerberos is not enabled for an MRS cluster, this cluster is noncompliant. mrs-cluster-no-public-ip mrs If an MRS cluster has an EIP attached, this cluster is noncompliant. private-nat-gateway-authorized-vpc-only nat
NAT Gateway Private NAT Private Gateways Are in Specified VPCs Parent topic: Built-In Policies
are in. 1.2 vpc-sg-restricted-ssh You can configure security groups to only allow traffic from some IPs to access the SSH port 22 of ECSs to ensure secure remote access to ECSs. 1.2 smn-lts-enable Enable LTS for SMN topics. 1.4 private-nat-gateway-authorized-vpc-only Use private NAT
If a private NAT gateway is not in a specified VPC, this gateway is noncompliant. rds-instance-enable-backup rds If backup is not enabled for an RDS instance, this instance is noncompliant. rds-instance-multi-az-support rds If an RDS instance does not support multi-AZ deployment,
This includes ensuring that any third parties working on behalf of the SME have appropriate security measures in place. private-nat-gateway-authorized-vpc-only Use private NAT gateways to control VPC connections. 1_DEVELOP GOOD CYBERSECURITY CULTURE: REMEMBER DATA PROTECTION Under
Gateway Public NAT Gateways (nat.natGateways) Private NAT Gateways (nat.privateNatGateways) Cloud Backup and Recovery (CBR) Vaults (cbr.vault) Data Encryption Workshop (DEW) keys (kms.keys) Cloud Container Engine (CCE) Clusters (cce.clusters) GaussDB Instances (gaussdb.instances)
Gateway Public NAT gateway EVS Volume Contains Cloud Backup and Recovery Vaults isAttachedTo ECS Cloud server BMS Cloud server Cloud Backup and Recovery Vaults HECS HECS IMS Image isAssociatedWith ECS Cloud server BMS Cloud server HECS HECS NAT Gateway Public NAT gateway isAttachedTo
this IAM user is noncompliant. mrs-cluster-kerberos-enabled mrs If kerberos is not enabled for an MRS cluster, this cluster is noncompliant. mrs-cluster-no-public-ip mrs If an MRS cluster has an EIP attached, this cluster is noncompliant. private-nat-gateway-authorized-vpc-only nat
Built-In Policies Predefined Policy List General Policies API Gateway CodeArts Deploy MapReduce Service NAT Gateway VPC Endpoint Web Application Firewall Elastic Load Balance Elastic IP Auto Scaling Scalable File Service Turbo (SFS Turbo) Elastic Cloud Server Distributed Cache Service
mrs.mrs MRS Clusters Have Kerberos Enabled Configuration change mrs.mrs MRS Clusters Support Multi-AZ Deployment Configuration change mrs.mrs MRS Clusters Do Not Have EIPs Attached Configuration change mrs.mrs MRS Clusters Have KMS Encryption Enabled Configuration change mrs.mrs NAT
