Check your Google Cloud VPC network firewall for any egress rules that allow unrestricted access (i.e. 0.0.0.0/0) to any TCP/UDP ports and restrict access to only those IP addresses and/or IP ranges that require it in order to implement the principle of least privilege and reduce the attack surface.
Allowing unrestricted outbound/egress access on all TCP/UDP ports can increase opportunities for malicious activities such as Distributed Denial of Service (DDoS) attacks.
To determine if your Google Cloud VPC firewall rules allow unrestricted outbound access on all ports, perform the following actions:
Remediation / Resolution
To update your VPC network firewall rules configuration in order to restrict egress access to trusted entities only (i.e. authorized IP addresses or IP ranges), perform the following actions:
Unlock the Remediation Steps
Gain free unlimited access
to our full Knowledge Base
Over 750 rules & best practices
Get started for FREE
You are auditing:
Check for Unrestricted Outbound Access on All Ports
Risk level: High