Skip to main content

Elasticsearch Public and Any IP Access Check

ID: rule:aliyun:elasticsearch-public-and-any-ip-access-check
Severity: high

Description

Ensures that Elasticsearch instances do not have public access enabled or an open whitelist.

Reason for Violation

Public access or an open whitelist exposes the Elasticsearch cluster to the internet, increasing the risk of unauthorized access or attacks.

Recommendation

Disable public access or restrict the IP whitelist for the Elasticsearch instance.

Resource Types

ALIYUN::ElasticSearch::Instance

Description
Reason for Violation
Recommendation
Resource Types