Skip to main content

Internet NAT Gateway in Specified VPC

ID: rule:aliyun:internet-nat-gateway-in-specified-vpc
Severity: medium
IaC Types: ROS, Terraform

Description

Internet-facing NAT gateways should be created in specified VPCs according to network security requirements.

Reason for Violation

Internet-facing NAT gateways in non-specified VPCs may violate network segmentation and security policies.

Recommendation

Ensure internet-facing NAT gateways are deployed only in the specified VPCs.

Resource Types

  • ROS: ALIYUN::NAT::NatGateway
  • Terraform: alicloud_nat_gateway