Control: AWS > CIS v1 > 4 Networking

Primary Policies

The following policies can be used to configure this control:

• 4 Networking > 4.01 Ensure no security groups allow ingress from 0.0.0.0/0 to port 22 (Scored)
• 4 Networking > 4.02 Ensure no security groups allow ingress from 0.0.0.0/0 to port 3389 (Scored)
• 4 Networking > 4.03 Ensure the default security group of every VPC restricts all traffic (Scored)
• 4 Networking > 4.04 Ensure routing tables for VPC peering are "least access" (Not Scored)
• 4 Networking > 4.04 Ensure routing tables for VPC peering are "least access" (Not Scored) > Attestation
• 4 Networking

Category

• CIS

In Your Workspace

• Controls by Resource report
• Controls by Control Type report

Developers

Control Type URI

tmod:@turbot/aws-cisv1#/control/types/s04

Category URI

tmod:@turbot/cis#/control/categories/cis

GraphQL

query controlType(id: "tmod:@turbot/aws-cisv1#/control/types/s04") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-cisv1#/control/types/s04'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-cisv1#/control/types/s04"