Skip to content

Insights

Insights are a Rules-based evaluations of assets discovered in AWS, Azure and GCP that are presented as Findings. Insights can be used without deploying Valtix Gateways since they operate on the periodic and real-time Inventory Monitoring accommodated by the Valtix Controller. To leverage Insights, add a Cloud Account and enable Inventory Monitoring Regions.

Summary

Navigate to Discover -> Discovery Summary to display a summary view of all discovered assets and the Insight Findings:

  1. Network ACL
  2. Application Security Group
  3. Security Groups
  4. Subnets
  5. Route Tables
  6. Network Interfaces
  7. VPCs/VNets
  8. Applications
  9. Load Balancers
  10. Instances
  11. Tags
  12. Certificates

Security Groups

Customers often struggle with the proliferation of Security Groups. Security Groups are often shared amongst resources that could present risk. Changes made to a Security Group intended for a specific resource could impact a larger group of resources.

Security Groups provides a list of all Security Groups, their details and the set of resources utilizing the Security Group. The Is Inbound Public and Is Outbound Public fields indicate Security Groups configured with 0.0.0.0/0.

In the search window, define the search criteria based on fields and their values with the option to create a Rule based on the search criteria.

Rules

Rules provide a view of Security Groups based on their configured Inbound and Outbound Rules

Ports

Ports provide a view of Security Groups based on their configured Inbound and Outbound Ports

Network ACL

Network ACL provides a list of all Network ACLs and their details. The Is Inbound Public and Is Outbound Public fields indicate Network ACLs configured with 0.0.0.0/0.

Rules

Rules provide a view of Network ACLs based on their configured Inbound and Outbound Rules

Subnets

Subnets provides a list of all Subnets and their details. The Is Public field indicate Subnets that are publicly accessible based on whether auto-assign public IP is enabled.

Route Tables

Route Tables provides a list of all Route Tables and their details. The Is Inbound Public and Is Outbound Public fields indicate Route Tables that are configured to provide default access the Internet.

Network Interfaces

Network Interfaces provides a list of all Network Interfaces and their details. The Is Inbound Public and Is Outbound Public fields indicate Network Interfaces that are configured with a Security Group that is open (0.0.0.0/0) or Route Tables that allows default access to the Internet.

VPCs\VNets

VPCs/VNets provides a list of all VPCs/VNets and their details

Applications

Applications provides a list of all deployed Application Load Balancers and their details. The Secured field identifies whether a Valtix Gateway and Security Policy is applied to secure the Application and offers an ability to invoke a workflow to protect the application.

Load Balancers

Load Balancers provides a list of all deployed Application, Network and Gateway Load Balancers and their details. The Public field shows whether resource is an Internet-facing Load Balancer. The CSP WAF Enabled shows whether a CSP WAF has been enabled for the Application Load Balancer.

Instances

Instances provides a list of all Instances along with summary information on the number of Security Groups and Interfaces that are assigned and configured for the resource. The Is Inbound Public and Is Outbound Public fields indicate Instances that have Network Interfaces that are configured with a Security Group that is open (0.0.0.0/0) or Route Tables that allows default access to the Internet.

Tags

Tags provides a list of all VPCs/VNets, Subnets, Security Groups, Instances and Load Balancers that are configured with Tags

Certificates

Certificates provides a list of all Certificates available in AWS Certificates Manager along with summary information on Issuer, Domain Name and Expiry Date

Topology

Shows a high level map view by Region of Cloud assets in cloud accounts.

Insights

Insights are a Rules-based evaluations of assets discovered in AWS, Azure and GCP that are presented as Findings. Insights can be used without deploying Valtix Gateways since they operate on the periodic and real-time Inventory Monitoring accommodated by the Valtix Controller. To leverage Insights, add a Cloud Account and enable Inventory Monitoring Regions.

Rules

Rules are a set of evaluations to identify findings in discovered assets. Valtix provides a set of default Rules. New Rules can be created by selecting an Inventory category (e.g., Security Groups, Applications, Load Balancers, Tags, etc.), defining a search criteria, selecting Add Rule and specifying additional required information. The new Rule will appear in the Insights -> Rules and will operate against existing and newly discovered assets.

Findings

Findings is a list of discovered assets that match the defined set of Rules