Ensure routing tables for VPC peering are ""least access""

Network misconfigurations

Ensure routing tables for VPC peering are “”least access””

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS CIS
Brazilian General Data Protection (LGPD)
CCPA
cis_8
CPRA
ISO 27701
ISO/IEC 27001
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
PDPA
UK Cyber Essentials

Description

Once a VPC peering connection is established, routing tables must be updated to establish any connections between the peered VPCs. These routes can be as specific as desired - even peering a VPC to only a single host on the other side of the connection.

Recommended Mitigation

Review the peering connection and make sure it adheres to the ""least access"" model

Ensure routing tables for VPC peering are “”least access””

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS