Default VPC is being used to launch an EKS cluster

Network misconfigurations

Default VPC is being used to launch an EKS cluster

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

HITRUST
NIST 800-53

Description

A default VPC is automatically created when you first provision related resources and is suitable for a quick start. The default VPC is used when an instance is launched without a particular subnet. It was found that the default VPC is being used for launching your EKS cluster {AwsEksCluster}. The default VPC comes with a default configuration that lacks the proper security controls. Your network should be well configured and follow the least privilege principle, meaning only the necessary privileges are granted. Therefore, the default VPC will not suit your needs.

Recommended Mitigation

It is recommended to configure a new VPC for your instances. For more information please see https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/default-vpc.html

Default VPC is being used to launch an EKS cluster

Description

Need help?