AWS Config Rule: NETFW Stateless Rule Group Not Empty

NETFW_STATELESS_RULE_GROUP_NOT_EMPTY

Eduardo Van Cauteren

Last Update 4 maanden geleden

Description: Checks if a Stateless Network Firewall Rule Group contains rules. The rule is NON_COMPLIANT if there are no rules in a Stateless Network Firewall Rule Group.


Trigger type: Configuration changes


AWS Region: All supported AWS regions


How to Resolve Manually

This Config Rule checks wether a Network Firewall rule group contains at least one rule. Tue config rule will be marked as non-compliant if the NetFW Rule Group doesn't contain any rule defined.


To resolve this manually, go to VPC service within AWS Console and locate the Network Firewall rule groups section within the left hand side menu.

Look for the Rule Group that is not-compliant and under the Rules card, click on Edit button to add a new firewall rule.

Another option, if you find that the Rule Group is not needed, you can delete it to make the config rule to comply.


Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

0 out of 0 liked this article

Still need help? Message Us