Ensure Azure Synapse workspaces have no IP firewall rules attached

Error: Azure Synapse workspaces have IP firewall rules attached

Bridgecrew Policy ID: BC_AZR_NETWORKING_27
Checkov Check ID: CKV2_AZURE_19
Severity: LOW

Azure Synapse workspaces have IP firewall rules attached

Description

TBA

Fix - Buildtime

Terraform

  • Resource: azurerm_synapse_firewall_rule, azurerm_resource_group, azurerm_synapse_workspace
  • Argument: synapse_workspace_id (of azurerm_synapse_firewall_rule )
resource "azurerm_resource_group" "example" {
  name     = "example-resources"
  location = "West Europe"
}

resource "azurerm_synapse_workspace" "workspace_good" {
  name                                 = "example"
  sql_administrator_login              = "sqladminuser"
  sql_administrator_login_password     = "[email protected]!"
  managed_virtual_network_enabled      = true
  tags = {
    Env = "production"
  }
}


resource "azurerm_synapse_firewall_rule" "firewall_rule" {
  name                 = "AllowAll"
  synapse_workspace_id = azurerm_synapse_workspace.workspace_bad.id
  start_ip_address     = "0.0.0.0"
  end_ip_address       = "255.255.255.255"
}

Did this page help you?