cfn_nag icon indicating copy to clipboard operation
cfn_nag copied to clipboard
verified publisher icon stelligent

Cloud Formation overload "ports" parameters for icmp protocol

Open vchepkov opened this issue 1 year ago • 0 comments

cfn_nags generates W27 warning for a code fragment:

    SecurityGroupIngress:
        - Description: Allow ICMP ping
          IpProtocol: icmp
          FromPort: 8
          ToPort: 0
          CidrIp: "10.0.0.0/8"

Cloud Formation repurposed ports attributes as "type and code" for icmp protocol, so the warning about port ranges should be suppressed

vchepkov avatar Oct 11 '24 18:10 vchepkov