Network misconfigurations

Azure Network Interface IP forwarding is enabled

Platform(s)
Compliance Frameworks

Description

The IP Forwarding feature enables the Virtual Machine (VM) associated with the NIC attached, to receive network traffic not destined for one of the IP addresses assigned to any of the IP configurations assigned to the network interface, and to send network traffic with a different source IP address than the one assigned to one of a network interface's IP configurations. Therefore, IP forwarding must be enabled only for network interface that is attached to the virtual machine that need to forward traffic.

  • Recommended Mitigation

    Unless necessary, it is recommended to disable IP forwarding on the Network Interface.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.