💼 [NetworkFirewall.4] The default stateless action for Network Firewall policies should be drop or forward for full packets

ID: /frameworks/aws-fsbp-v1.0.0/network-firewall/04

Description

A firewall policy defines how your firewall monitors and handles traffic in Amazon VPC. You configure stateless and stateful rule groups to filter packets and traffic flows. Defaulting to Pass can allow unintended traffic.

Similar

AWS Security Hub
- https://docs.aws.amazon.com/securityhub/latest/userguide/networkfirewall-controls.html#networkfirewall-4
Internal
- ID: dec-c-5fc5b6aa

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 NIST SP 800-53 Revision 5 → 💼 CA-9(1) Internal System Connections _ Compliance Checks			43		no data
💼 NIST SP 800-53 Revision 5 → 💼 CM-2 Baseline Configuration	7		36		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ AWS Network Firewall Policy Stateless Default Action is not Drop or Forward🟢	1	🟢 x6	no data

Description​

Similar​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​

Description

Similar

Similar Sections (Give Policies To)

Sub Sections

Policies (1)