Amazon ECS service configured to assign public IP addresses automatically - Complete Cloud Security in Minutes - Orca Security

Network misconfigurations

Amazon ECS service configured to assign public IP addresses automatically

Risk Level

Hazardous (3)

Platform(s)

Compliance Frameworks

Description

ECS is a container management service that allows you to run, stop, and manage containers on a cluster. It was detected that ECS service {AwsEcsService} is configured to assign public IP addresses automatically. ECS instances with a public IP address are reachable from the internet and may allow unintended access.

Recommended Mitigation

It is recommended to set AssignPublicIP to 'DISABLED' when creating ECS service. For more information: https://docs.aws.amazon.com/AmazonECS/latest/developerguide/service-configure-network.html

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.