Table 2 Default settings of firewalls from major cloud service providers
From: The role and security of firewalls in cyber-physical cloud computing
Provider | Firewall | Web | Documentation | Inbound/outbound | Configuration | Default inbound config | Default outbound config |
|---|---|---|---|---|---|---|---|
available | interface | available | separated | parameters | |||
Amazon EC2 | ✓8 | ✓ | ✓ | ✓ | Transport layer protocol9, port (single or range), source (anywhere or single IP) | SSH (TCP, 22) from anywhere10) | * to anywhere |
Google Compute Engine | ✓11 | ✓ | ✓ | ✗12 | Transport layer protocol, port (single or range), source (anywhere, single IP or range) | ICMP, SSH (TCP, 22) from anywhere, RDP (TCP, 3389) from anywhere, UDP and TCP (all ports) from same /16 | * to anywhere (not configurable) |
IBM (Softlayer) | ✗ | ||||||
Microsoft Azure (Classic) | ✓13 | ✓ | ✓ | ✗14 | Transport layer protocol, port (single), source (range) | SSH (TCP, 22) from anywhere | * to anywhere (not configurable) |
Microsoft Azure (Res. Mgr.) | ✓15 | ✓ | ✓ | ✓ | Priority (of a rule), transport layer protocol, port (single or range), source and destination (anywhere or range), action (allow or deny) | SSH (TCP, 22) from anywhere | * to anywhere |
Rackspace | ✗ |