Vendor services misconfigurations

EKS Node with public IP address

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Orca has detected that the EKS node {K8sNode} has a public IP address. Disabling public IP addresses on cluster nodes restricts access to only internal networks, forcing attackers to obtain local network access before attempting to compromise the underlying Kubernetes hosts.
  • Recommended Mitigation

    Disable public IP addresses for cluster nodes, so that they only have private IP addresses.