Skip to main content

Elasticsearch Instance Kibana Does Not Enable Public Access

ID: rule:aliyun:elasticsearch-instance-enabled-kibana-public-check
Severity: high
IaC Types: ROS, Terraform

Description

Ensures that Elasticsearch instance Kibana is not accessible from public networks.

Reason for Violation

Elasticsearch instance Kibana is accessible from public network, which is a security risk.

Recommendation

Configure Kibana to only allow access from VPC or specific IPs.

Resource Types

  • ROS: ALIYUN::ElasticSearch::Instance
  • Terraform: alicloud_elasticsearch_instance