| ID | Title | Description | Threat Mappings |
|---|---|---|---|
| CCC.VPC.CP01 | Isolated Custom Network Creation | Ability to create a virtual network that is isolated from other users of the same public cloud. | 1 |
| CCC.VPC.CP02 | IPv4 CIDR Block | Ability to specify a IPv4 CIDR block to the virtual network. | 0 |
| CCC.VPC.CP03 | IPv6 CIDR Block | Ability to specify a IPv6 CIDR block to the virtual network. | 0 |
| CCC.VPC.CP04 | Public Subnet Creation | Ability to create a subnet that allows resources within the subnet to communicate with the public internet. | 1 |
| CCC.VPC.CP05 | Private Subnet Creation | Ability to create a subnet that resources within the subnet cannot directly access the public internet. | 0 |
| CCC.VPC.CP06 | Multiple Availability Zones for Subnets | Ability to spread the subnets in more than one availability zones. | 0 |
| CCC.VPC.CP07 | Routing Control | Ability to control traffic within the VPC and between the VPC and the internet or on-premises networks using customizable route tables. | 0 |
| CCC.VPC.CP08 | Connectivity Options - Internet Gateway | Enables direct internet access for resources within a VPC. | 0 |
| CCC.VPC.CP09 | Connectivity Options - NAT Gateways | Allows instances in private subnets to access the internet without exposing them to inbound internet traffic. | 0 |
| CCC.VPC.CP10 | Connectivity Options - Private Connection | Dedicated, private, high-speed connections between on-premises networks and cloud VPC. | 0 |
| CCC.VPC.CP11 | Connectivity Options - VPC Peering | Establishing a private connection between two VPCs to communicate seamlessly. | 1 |
| CCC.VPC.CP12 | Connectivity Options - Transit Gateways | A hub-and-spoke model for connecting multiple VPCs and on-premises networks. | 0 |
| CCC.VPC.CP13 | Connectivity Options - Site-to-site VPN | Provides an encrypted connection over the internet between a VPC and an on-premises network. | 0 |
| CCC.VPC.CP14 | Built-in DNS Resolution | Resolves hostnames to IP addresses for instances within the VPC allowing instances to communicate using hostnames instead of IP addresses. | 0 |
| CCC.VPC.CP15 | Built-in DHCP Resolution | Automatically assign IP addresses, subnet masks, default gateways and other network configurations to instances within the VPC. | 0 |
| CCC.VPC.CP16 | Flow Logs | Ability to capture information about the IP traffic going through the VPC. | 1 |
| CCC.VPC.CP17 | VPC Endpoints | Ability to allow secure, private connectivity between resources within a VPC and other services without the need for a public internet. | 1 |
Networking / VPC
Capabilities
Version: