Network misconfigurations

Azure virtual machine allows direct public Apache Cassandra service (internode communication) access


By default, Cassandra uses 7000 for cluster communication (7001 if SSL is enabled), and 7199 for JMX. Those ports, using for internode communication, open on your virtual machine and allows all incoming traffic from the Internet. In order to keep security best practices and decrease the risk for malicious activities, you should restrict access to be only from allowed IP addresses.