Hi! I have created a "backend" tier, where sensitive data will be stored.
I just noticed that VMs in this tier can access the internet (SourceNat, Port 80/443 to World) despite no Egress rule that allows it. According to the documentation "The CIDR acts as the Destination CIDR for the Egress rules" All my Egress Rules on this tier are /32, and point to VMs on other VPC tiers, that is all CIDRs are to private IPs belonging to this VPC. How is it possible? Am I missing something? Anybody experiencing something similar? Regards, Rafael
