AWS > EC2 >

Open RFC 1918

MEDIUM

Source

CloudSploit

open-rfc-1918

management console

Open RFC 1918

Ensures EC2 security groups are configured to deny inbound traffic from RFC-1918 CIDRs

RFC-1918 IP addresses are considered reserved private addresses and should not be used in security groups.

Recommended Actions

Modify the security group to deny private reserved addresses for inbound traffic

Links

https://docs.aws.amazon.com/vpc/latest/userguide/VPC_Subnets.html

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.