Aqua CSPM

Cross VPC Public Private Communication

Quick Info

Plugin TitleCross VPC Public Private Communication
CloudAWS
CategoryEC2
DescriptionEnsures communication between public and private VPC tiers is not enabled
More InfoCommunication between the public tier of one VPC and the private tier of other VPCs should never be allowed. Instead, VPC peerings with proper NACLs and gateways should be used
AWS Linkhttps://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Subnets.html
Recommended ActionRemove the NACL rules allowing communication between the public and private tiers of different VPCs

Detailed Remediation Steps