Network misconfigurations

Default project network exists

Risk Level

Informational (4)



The default network has a preconfigured network configuration and automatically generates insecure firewall rules. These automatically created firewall rules do not get audit logged and cannot be configured to enable firewall rule logging. Furthermore, the default network is an auto mode network, which means that its subnets use the same predefined range of IP addresses, and as a result, it's not possible to use Cloud VPN or VPC Network Peering with the default network.
  • Recommended Mitigation

    Create a new network based on organization security and networking requirements and delete the default network.