Detections
Analytics

Ensure a firewall is attached to Azure SQL Server

MEDIUM

Description

Azure SQL Server does not have a firewall rule associated, this may make it too vulnerable.

Remediation

In Azure Console -

  1. Open the Azure Portal and go to SQL servers.
  2. Choose the SQL server you wish to edit.
  3. Under Networking, set Firewall rules.
  4. Select Save

In Terraform -

  1. In the azurerm_sql_firewall_rule resource, set name, resource_group_name, server_name, start_ip_address and end_ip_address.

References:
https://learn.microsoft.com/en-us/azure/azure-sql/database/firewall-configure?view=azuresql
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/sql_firewall_rule

Policy Details

Rule Reference ID: AC_AZURE_0374
CSP: Azure
Remediation Available: Yes
Domain: Infrastructure Security
Resource: azurerm_sql_server
Resource Category: Database
Resource Type: SQL Server

Frameworks