Elasticsearch Instance Kibana Does Not Enable Public Access

ID: rule:aliyun:elasticsearch-instance-enabled-kibana-public-check
Severity: high

Description

Ensures that Elasticsearch instance Kibana is not accessible from public networks.

Reason for Violation

Elasticsearch instance Kibana is accessible from public network, which is a security risk.

Recommendation

Configure Kibana to only allow access from VPC or specific IPs.

Resource Types

• ALIYUN::ElasticSearch::Instance