Storage - Block public access
Restricts access to storage accounts with specified ip rules to only the ips specified:
policies:
- name: storage-block-public-access
description: |
Blocks public access to storage accounts with defined IP access rules.
resource: azure.storage
filters:
- type: value
key: properties.networkAcls.ipRules
value_type: size
op: ne
value: 0
actions:
- type: set-firewall-rules
default-action: Deny
ip-rules: []