Network misconfigurations

Classic Load Balancer (ELB) with public access

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

Classic Load Balancer (ELB) provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level. The load balancer {AwsEc2Elb} was discovered to be associated with a security group {AwsEc2Elb.SecurityGroups} that allows public ingress access without IP filtering (0.0.0.0/0). Load balancer configured with public access opens the application hosted behind the load balancer to attacks from malicious entities on the Internet.
  • Recommended Mitigation

    It is recommended to associate {AwsEc2Elb} Classic Load Balancer with security groups that allow inbound traffic only from authorized IP addresses, for more details follow the link https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-security-groups.html. ## Remediation --- >1. Sign in to the AWS Management Console and open the **[EC2 console](https://console.aws.amazon.com/ec2)**. >2. In the navigation pane, under **Load Balancing**, choose **Load Balancers**. >3. Select the desired load balancer. >4. Under **Actions** choose **Edit security groups**. >5. Uncheck the boxes of the inbound permissive security groups. >6. Check the boxes of a more explicit inbound security groups. >7. Choose **Save**.