Ensure Azure HTTP (port 80) access from the internet is restricted

Error: Azure HTTP (port 80) access from the internet is not restricted

Bridgecrew Policy ID: BC_AZR_NETWORKING_57
Checkov Check ID: CKV_AZURE_160
Severity: LOW

Azure HTTP (port 80) access from the internet is not restricted

Description

Restricting access to Azure HTTP (port 80) from the internet can help improve the security of your resources. Port 80 is used for HTTP traffic, and allowing access to it from the internet can expose your resources to potential security threats, such as malware, data breaches, and unauthorized access.

Fix - Runtime

Fix - Buildtime

Terraform

  • Resource: azurerm_network_security_rule
  • Argument: destination_port_range
resource "azurerm_network_security_rule" "https" {
  name                        = "example"
  access                      = "Allow"
  direction                   = "Inbound"
  network_security_group_name = "azurerm_network_security_group.example.name"
  priority                    = 100
  protocol                    = "Tcp"
  resource_group_name         = "azurerm_resource_group.example.name"

  destination_port_range = 443
  source_address_prefix  = "Internet"
}