OTS Restricted Network Type
ID: rule:aliyun:ots-instance-network-not-normal
Severity: medium
IaC Types: ROS, Terraform
Description
OTS instances should not use unrestricted network access (Any). Use Vpc or ConsoleOrVpc instead.
Reason for Violation
The OTS instance allows unrestricted network access (Any), which exposes the instance to public internet.
Recommendation
Set accessed_by to 'Vpc' or 'ConsoleOrVpc' to restrict network access.
Resource Types
- ROS:
ALIYUN::OTS::Instance - Terraform:
alicloud_ots_instance