Neglected assets

Azure Load balancer without associated backend pools

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Load balancer is a service which distributes inbound flows that arrive at the load balancer's front end to backend pool instances (Azure Virtual Machines or instances in a virtual machine scale set), according to the configured load balancing rules. The load balancer - {AzureLoadBalancer} do not have any backend pools associated with it, that means there are no target instances to distribute the inbound/outbound flows. Load balancer without associated backend pools does not comply with security best practices.

  • Recommended Mitigation

    It is recommended to review the load balancer configuration and if not needed remove unused resources in order to reduce costs or attach a relevant backend pool.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.