This rule monitors changes to EC2 Network ACls.
Network ACLs limit the flow of network traffic within your AWS environment, as well as the flow of traffic to and from the internet. Changes to these configurations should be closely monitored to ensure that inappropriate or insecure access is not being introduced.
If this change was not planned, revert it and investigate the source of the change. Consider modifying permissions to ensure unplanned changes cannot happen again in the future.
CIS AWS Benchmark 3.11: "Ensure a log metric filter and alarm exist for changes to Network Access Control Lists (NACL)"