Network - 25533 - DDoS Protection is enabled for all Public IP Addresses in VNETs #DUP#921
Closed
Manoj-Kesana wants to merge 35 commits intomainfrom
Closed
Network - 25533 - DDoS Protection is enabled for all Public IP Addresses in VNETs #DUP#921Manoj-Kesana wants to merge 35 commits intomainfrom
Manoj-Kesana wants to merge 35 commits intomainfrom
Conversation
… into test-26888
Contributor
There was a problem hiding this comment.
Pull request overview
Adds a new Azure Network Security assessment (TestId 25533) to validate that public IP addresses are protected by Azure DDoS Protection (either IP Protection directly on the public IP or Network Protection inherited from the associated VNET), along with the accompanying remediation guidance content.
Changes:
- Introduces
Test-Assessment-25533PowerShell test that queries Azure Resource Graph for public IPs, NIC/VNET associations, and VNET DDoS settings, then generates a markdown report. - Adds markdown description/remediation content for test 25533 (note: currently added with an uppercase
.MDextension).
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated 3 comments.
| File | Description |
|---|---|
| src/powershell/tests/Test-Assessment.25533.ps1 | New assessment logic + reporting for DDoS protection coverage of public IPs. |
| src/powershell/tests/Test-Assessment.25533.MD | New test description and remediation links (currently named with .MD, which breaks repo’s .md loader on case-sensitive systems). |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
…n Test-Assessment.26888.ps1
Network - 26887 - Diagnostic logging is enabled in Azure Firewall
Network - 26888 - Diagnostic logging is enabled in Application Gateway WAF
Network 25375: GSA Licenses are available in the Tenant and assigned to users
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
…tassessment into Feature-25533
Collaborator
Author
|
Will raise a fresh PR. to avoid merge conflicts |
Manoj-Kesana
changed the title
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
DDoS Protection is enabled for all Public IP Addresses in VNETs