Policy Settings
The Enforce Block Public Access for AWS VPC Security Groups policy pack has 2 policy settings:
| Policy | Setting | Note |
|---|---|---|
| AWS > VPC > Security Group > Ingress Rules > Approved | Check: Approved | |
| AWS > VPC > Security Group > Ingress Rules > Approved > Rules | # Reject port 22 from internet REJECT $.turbot.fromPort:=22 $.turbot.toPort:=22 $.turbot.cidr:0.0.0.0/0,::/0 REJECT $.turbot.portRangeSize:-1 $.turbot.cidr:0.0.0.0/0,::/0 # APPROVE unmatched rules APPROVE * |