Network misconfigurations

Unused Network ACL

Platform(s)
Compliance Frameworks
  • AWS Foundational Security Best Practices Controls
    • ,
  • cis_8
    • ,
  • HITRUST
    • ,
  • iso_27001_2022
    • ,
  • iso_27002_2022
    • ,
  • mpa

Description

A network access control list (ACL) operates as a firewall for regulating traffic in and out of one or more subnets in a virtual private cloud. A virtual private cloud (VPC) is a private virtual network in your AWS account, which is logically isolated from other virtual networks in AWS cloud. A VPC subnet is a subdivision of the VPC network, which has a range of IP addresses. Network ACL is an optional layer of protection for your VPC subnets. It was found that the network ACL {AwsEc2NetworkAcl} is not associated with a subnet, and therefore unused.
Need help?

Get a free Security Risk Assessment. Start today

Demo the Orca Platform

In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

Get a Demo