Severity : null
Description : While some ports such as HTTP and HTTPS are required to be open to the public to function properly, more sensitive services such as Autonomous Data Warehouse should be restricted to known IP addresses.
Remediation Steps : Restrict TCP port 1522 to known IP addresses
Severity : Medium
Description: This control ensures that database tools has access to only selected autonomous databases through the security groups from specific IP addresses. It is recommended When creating database connections to an Autonomous Database that is using a private endpoint, create a network security group to provide access from Database Tools to that database.
Remediation Steps:
Perform following to update the security rules in security List :
Login to the OCI console at https://www.oracle.com/cloud/sign-in.html.
In navigation click Networking and then click Virtual Cloud Networks.
Click on the VNC reported.
Under Resources, click Network Security Groups.
Select the security Group for the database resources.
Under Resources, click either Ingress Rules.
To add a rule, click Add Rule.
Keep the rule default setting for stateful rule. Select direction Ingress, Enter the source CIDR for ingress, Select IP protocol as TCP and Destination port Range as 1522.
Click Add.
Important:
Reference: