Help Center/ Config/ User Guide/ Resource Compliance/ Built-In Policies/ Elastic Cloud Server/ ECSs Cannot Be Accessed Through Public Networks
Updated on 2025-08-25 GMT+08:00

ECSs Cannot Be Accessed Through Public Networks

Rule Details

Table 1 Rule details

Parameter

Description

Rule Name

ecs-instance-no-public-ip

Identifier

ECSs Cannot Be Accessed Through Public Networks

Description

If an ECS instance has an EIP attached, this instance is non-compliant.

Tag

ecs

Trigger Type

Configuration change

Filter Type

ecs.cloudservers

Rule Parameters

None

Application Scenarios

Huawei Cloud ECSs may contain sensitive information. If your services do not need to interact with the public network, do not expose ECSs to the public network.

Solution

Check whether your services require EIPs. If not, unbind EIPs.

If your services require public network access, use other solutions, such as load balancers, NAT gateways, and VPNs, to meet service requirements while reducing costs and risks.

Rule Logic

  • If an ECS has an EIP attached, this ECS is non-compliant.
  • If an ECS instance does not have an EIP attached, this ECS instance is compliant.