/
GCP-VPCNetwork-Open-RDP

GCP-VPCNetwork-Open-RDP

Owned by naveen
Last updated: Aug 08, 2022
1 min read

Severity: High

Description: This control ensures that RDP access is restricted from the internet. GCP Firewall Rules are specific to a VPC Network. Each rule either allows or denies traffic when its conditions are met. Its conditions allow you to specify the type of traffic, such as ports and protocols, and the source or destination of the traffic, including IP addresses, subnets, and instances. Generic (0.0.0.0/0)incoming traffic from internet to VPC or VM instance using RDP on Port 3389 can be avoided.

Remediation Steps:

Perform following to remove default network from project:

  1. Sign in to GCP Console https://console.cloud.google.com.

  2. Go to VPC network list in GCP Console by visiting networking list.

  3. Go to the Firewall Rules.

  4. Click the Firewall Rule you want to modify.

  5. Click on EDIT button

  6. Modify Source IP ranges to IP

  7. Click on Save.

Important:

The check is applicable only for Firewall rules with direction INGRESS

Reference:

Related content

GCP-VM-instance-with-the-external-IP-address
GCP-VM-instance-with-the-external-IP-address
Blue Hexagon Documentation
More like this
GCP-VM-instances-have-IP-Forwarding-enabled
GCP-VM-instances-have-IP-Forwarding-enabled
Blue Hexagon Documentation
More like this
GCP-VPCNetwork-Open-MSSQL
GCP-VPCNetwork-Open-MSSQL
Blue Hexagon Documentation
More like this
GCP-VPCNetwork-Open-Oracle
GCP-VPCNetwork-Open-Oracle
Blue Hexagon Documentation
More like this
GCP-Logging-VPC-Firewall-Rule-Logging
GCP-Logging-VPC-Firewall-Rule-Logging
Blue Hexagon Documentation
More like this
GCP-VPCNetwork-Open-Redis
GCP-VPCNetwork-Open-Redis
Blue Hexagon Documentation
More like this

Blue Hexagon Proprietary