The firewall rule allowing unrestricted access to Redis

azure_redis_unrestricted_access

Severity

critical

Vendor

Azure

Resource

Network

Description

The firewall rule allowing unrestricted access to Redis from other Azure resources or internet. This is insecure configuration because unexpected accesses from other Azure resources or internet can happen.

Learn more about this topic at Azure redis firewall.

Examples

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Create a Firewall rule for Azure Cache for Redis
      azure_rm_rediscachefirewallrule:
          resource_group: myResourceGroup
          cache_name: myRedisCache
          name: myRule

Mitigation / Fix

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Create a Firewall rule for Azure Cache for Redis
      azure_rm_rediscachefirewallrule:
          resource_group: myResourceGroup
          cache_name: myRedisCache
          name: myRule
          start_ip_address: 192.168.1.1
          end_ip_address: 192.168.1.4