You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi! I'm newto terrascan and had a question about the azurepolicies for network security rule here: https://github.com/tenable/terrascan/tree/master/pkg/policies/opa/rego/azure/azurerm_network_security_rule Here, there are three rules for each port, private, public, and internet. Are all three in use at the same time? private says ensure the given port isn't exposed to private hosts, while public and internet say the given port shouldn't be exposed to any source!? And, private has low severity, public has medium and internet has high. So, wouldn't internet subsume public and public subsume private, so that essentially this port cannot be exposed to any source? Please help out! Thanks!
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
Hi! I'm newto terrascan and had a question about the azurepolicies for network security rule here: https://github.com/tenable/terrascan/tree/master/pkg/policies/opa/rego/azure/azurerm_network_security_rule Here, there are three rules for each port, private, public, and internet. Are all three in use at the same time? private says ensure the given port isn't exposed to private hosts, while public and internet say the given port shouldn't be exposed to any source!? And, private has low severity, public has medium and internet has high. So, wouldn't internet subsume public and public subsume private, so that essentially this port cannot be exposed to any source? Please help out! Thanks!
Beta Was this translation helpful? Give feedback.
All reactions