The firewall rule allowing a lot of hosts to access

ID

azure_redis_many_hosts_access

Severity

low

Vendor

Azure

Resource

Network

Tags

reachable

Description

The firewall rule allowing a lot of hosts to access. This is insecure configuration because unexpected accesses from other Azure resources or internet can happen.

To fix it you must configure a lower number of allowed hosts by the properties: start_ip_address and end_ip_address.

Learn more about this topic at Azure redis firewall.

Examples

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Create a Firewall rule for Azure Cache for Redis
      azure_rm_rediscachefirewallrule:
        resource_group: myResourceGroup
        cache_name: myRedisCache
        name: myRule
        start_ip_address: 172.168.1.0
        end_ip_address: 192.168.1.4

Mitigation / Fix

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Create a Firewall rule for Azure Cache for Redis
      azure_rm_rediscachefirewallrule:
        resource_group: myResourceGroup
        cache_name: myRedisCache
        name: myRule
        start_ip_address: 192.168.1.1
        end_ip_address: 192.168.1.4