Network misconfigurations

Network security group rule allows unrestricted outgoing access to the Internet to broad ports range


Azure network security group rules allow or deny traffic when its conditions are met. The rules allow users to specify the type of traffic, such as ports ,protocols, source and destination of the traffic, including IP addresses, subnets, and instances. {AzureNetworkSecurityGroupRule} allows unrestricted access to the Internet to broad ports range.
  • Recommended Mitigation

    Restrict outgoing access to the Internet. Allow traffic to allowed IP addresses and ports only.