OCI Networking best practices

Best practice rules for OCI Networking

• Check for Unrestricted RDP Access via Network Security Groups

  Ensure that no network security groups allow unrestricted ingress access on TCP port 3389 (RDP).

• Check for Unrestricted RDP Access via Security Lists

  Ensure that no security listS allow unrestricted ingress access on TCP port 3389 (RDP).

• Check for Unrestricted SSH Access via Network Security Groups

  Ensure that no network security groups allow unrestricted ingress access on TCP port 22 (SSH).

• Check for Unrestricted SSH Access via Security Lists

  Ensure that no security lists allow unrestricted ingress access on TCP port 22 (SSH).

• Enable Flow Logging for VCN Subnets

  Ensure that flow logs are enabled for Virtual Cloud Networks (VCN) subnets.

• Restrict Traffic for Default Security Lists

  Ensure that the default security lists restrict all traffic except ICMP.