Security groups should only allow unrestricted incoming traffic for authorized ports

0

I got one finding which says "This control checks whether the security groups allow unrestricted incoming traffic. The control fails if ports allow unrestricted traffic on ports other than 80 and 443, which are default values for parameter authorizedTcpPorts." So I have one security group and three inbound rule with port is 80 and source is 0.0.0.0/0 , port 443 and source 0.0.0.0/0 and port 8443 and source 0.0.0.0/0 respectively. So according to "The control fails if ports allow unrestricted traffic on ports other than 80 and 443" I deleted inbound rules of port 80 and 443 but after this ECS Fargate services goes down. which I am not able to understand. Please help me in fixing this. Thanks in advance.

1개 답변
0

The rule states "on ports other than 80 and 443". So in this case that would be port 8443. Try deleting just that one and see if your control allows it.

profile pictureAWS
답변함 일 년 전
profile pictureAWS
전문가
kentrad
검토됨 일 년 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠