Public IP Address

Filters

Actions

Example Policies

This policy will find all public IP addresses under DDoS attack over the last 72 hours

policies:
  - name: publicip-dropping-packets
    resource: azure.publicip
    filters:
      - type: metric
        metric: IfUnderDDoSAttack
        op: gt
        aggregation: maximum
        threshold: 0
        timeframe: 72

This policy will find all public IP addresses that are not being attached to Network Interface