Ensure no Network ACLs allow ingress from 0.0.0.0/0 to Remote Desktop port (3389)

Network misconfigurations

Ensure no Network ACLs allow ingress from 0.0.0.0/0 to Remote Desktop port (3389)

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS CIS
CCM-CSA
CCPA
cis_8
CPRA
ISO 27701
ISO/IEC 27001
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

The Network Access Control List (NACL) function provide stateless filtering of ingress and egress network traffic to AWS resources. It is recommended that no NACL allows unrestricted ingress access to remote server administration ports, such as RDP to port 3389

Recommended Mitigation

Edit the Network ACL Rules for {AwsEc2NetworkAcl} to disallow RDP traffic from 0.0.0.0/0

Ensure no Network ACLs allow ingress from 0.0.0.0/0 to Remote Desktop port (3389)

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS