https://community.checkpoint.com/t5/Cloud-Firewall/Cloudguard-Azure-NSG/m-p/193577#M5954 <P>In general duplicating or mirroring the firewall rules on an ongoing basis within the NSG logic isn't efficient / useful.</P> <P>With that said the use of an NSG is noted in the relevant guides for restricting access to the GAiA web portal but would need to be broad in what it allows otherwise.</P> <P>Whether this approach would be sufficient to please the tools in question is another matter.&nbsp;</P> <P>&nbsp;</P> Tue, 26 Sep 2023 11:49:55 GMT Chris_Atkinson 2023-09-26T11:49:55Z https://community.checkpoint.com/t5/Cloud-Firewall/Cloudguard-Azure-NSG/m-p/193560#M5953 <P>Hi</P> <P>We deployed a Cloudguard cluster in Azure. Evrything working fine, except a number of security posture management tools are complaining that the NSG attached to the firewalls has a wide open ruleset (which is true)</P> <P>I am wondering if there is a recommended set of rules for the NSG to clean that up?</P> <P>Thanks</P> Tue, 26 Sep 2023 09:29:05 GMT https://community.checkpoint.com/t5/Cloud-Firewall/Cloudguard-Azure-NSG/m-p/193560#M5953 Scott_Paisley 2023-09-26T09:29:05Z https://community.checkpoint.com/t5/Cloud-Firewall/Cloudguard-Azure-NSG/m-p/193577#M5954 <P>In general duplicating or mirroring the firewall rules on an ongoing basis within the NSG logic isn't efficient / useful.</P> <P>With that said the use of an NSG is noted in the relevant guides for restricting access to the GAiA web portal but would need to be broad in what it allows otherwise.</P> <P>Whether this approach would be sufficient to please the tools in question is another matter.&nbsp;</P> <P>&nbsp;</P> Tue, 26 Sep 2023 11:49:55 GMT https://community.checkpoint.com/t5/Cloud-Firewall/Cloudguard-Azure-NSG/m-p/193577#M5954 Chris_Atkinson 2023-09-26T11:49:55Z