Elasticsearch Instance Does Not Enable Public Access

ID: rule:aliyun:elasticsearch-instance-enabled-public-check
Severity: high

Description

Ensures that Elasticsearch instances are not accessible from public networks.

Reason for Violation

Elasticsearch instance is accessible from public network, which is a security risk.

Recommendation

Configure the instance to only allow access from VPC or specific IPs.

Resource Types

• ALIYUN::ElasticSearch::Instance