Instances in a subnet should not receive a public IP address by default.
You should limit the provision of public IP addresses for resources. Resources should not be exposed on the public internet, but should have access limited to consumers required for the function of your application.
Impact
Recommended Actions
Follow the appropriate remediation steps below to resolve the issue.