Guided Walkthroughs
Step-by-step configuration wizards for your environment
Dedicated Security Account
AWS Backup Strategy
VPC Connectivity Setup
Automated Patching
All Guides
A Config rule that checks whether security groups in use do not allow restricted incoming TCP traffic to the specified ports. This rule applies only to IPv4.
AWSTemplateFormatVersion: "2010-09-09"
Description: ""
Resources:
ConfigRule:
Type: "AWS::Config::ConfigRule"
Properties:
ConfigRuleName: "restricted-common-ports"
Scope:
ComplianceResourceTypes:
- "AWS::EC2::SecurityGroup"
Description: "A Config rule that checks whether security groups in use do not allow restricted incoming TCP traffic to the specified ports. This rule applies only to IPv4."
InputParameters:
blockedPort1: "20"
blockedPort2: "21"
blockedPort3: "3389"
blockedPort4: "3306"
blockedPort5: "4333"
Source:
Owner: "AWS"
SourceIdentifier: "RESTRICTED_INCOMING_TRAFFIC"
Parameters: {}
Metadata: {}
Conditions: {}