Network misconfigurations

Elasticsearch domains aren’t accessible from VPC

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

It was found that Elasticsearch is not accessible from VPC. Allowing VPC access to the Elasticsearch domains keep all traffic in AWS network, instead of the internet.

  • Recommended Mitigation

    It is recommended to allow VPC access to Elasticsearch domains.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.