Vulnerabilities
Misconfiguration
Runtime Security
Compliance
AWS > Elb >

Alb Not Public

HIGH
Source
Trivy
ID
AVD-AWS-0053
terraform

Load balancer is exposed to the internet.

There are many scenarios in which you would want to expose a load balancer to the wider internet, but this check exists as a warning to prevent accidental exposure of internal assets. You should ensure that this resource should be exposed publicly.

Impact

The load balancer is exposed on the internet

Follow the appropriate remediation steps below to resolve the issue.

Switch to an internal load balancer or add a tfsec ignore

1
2
3
4

 resource "aws_alb" "good_example" {
 	internal = true
 }
Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2023 Aqua Security Software Ltd.   Privacy Policy | Terms of Use