Network misconfigurations

Ensure Instance IP assignment is set to private

Compliance Frameworks


Database Server should accept connections only from trusted Network(s)/IP(s) and restrict access from public IP addresses. To minimize attack surface on a Database server instance, only trusted/known and required IP(s) should be white-listed to connect to it. An authorized network should not have IPs/networks configured to which will allow access to the instance from anywhere in the world. Note that authorized networks apply only to instances with public IPs.
  • Recommended Mitigation

    It is recommended to set databases access only to trusted/known and required IP(s).