Detections
Analytics

Ensure Cassandra OpsCenter agent (TCP:61621) is not exposed to entire internet for Google Compute Firewall

HIGH

Description

Cassandra OpsCenter agent (TCP:61621) is exposed to entire internet for Google Compute Firewall. Exposed ports may allow attackers to access the application listening on that port.

Remediation

In GCP Console -

  1. Sign in to the Google Cloud Console.
  2. Open the Firewall page.
  3. Select the firewall rule you want to modify.
  4. Select Edit.
  5. Modify any of the components to meet the necessary specifications.
  6. Use a semicolon-delimited list to specify multiple protocols and protocol-and-destination-port combinations.
  7. Save.

Policy Details

Rule Reference ID: AC_GCP_0044
CSP: GCP
Remediation Available: Yes
Domain: Infrastructure Security
Resource: google_compute_firewall
Resource Category: Virtual Network
Resource Type: Network Firewall

Frameworks