Best practice rules for GCP VPC
- Check for Unattached Static External IP Addresses
Release unattached static external IP addresses to optimize cloud costs.
- Check for Unrestricted Memcached Access
Ensure there are no VPC firewall rules that allow unrestricted inbound access on TCP/UDP port 11211 (Memcached).
- Check for Unrestricted Redis Access
Ensure that no VPC firewall rules allow unrestricted inbound access on TCP port 6379 (Redis).
- Configure Private Service Connect Endpoints
Ensure that Private Service Connect endpoints are configured for your VPC networks.
- Restrict Access to High Risk Ports
Ensure there are no VPC network firewall rules with high-risk ports opened to allow incoming traffic.
- Unused Network Firewall Rules
Ensure that unused network firewall rules are disabled or removed from your Google Cloud account.