ECSs Cannot Be Accessed Through Public Networks
Rule Details
Parameter |
Description |
---|---|
Rule Name |
ecs-instance-no-public-ip |
Identifier |
ECSs Cannot Be Accessed Through Public Networks |
Description |
If an ECS instance has an EIP attached, this instance is non-compliant. |
Tag |
ecs |
Trigger Type |
Configuration change |
Filter Type |
ecs.cloudservers |
Rule Parameters |
None |
Application Scenarios
Huawei Cloud ECSs may contain sensitive information. If your services do not need to interact with the public network, do not expose ECSs to the public network.
Solution
Check whether your services require EIPs. If not, unbind EIPs.
If your services require public network access, use other solutions, such as load balancers, NAT gateways, and VPNs, to meet service requirements while reducing costs and risks.
Rule Logic
- If an ECS has an EIP attached, this ECS is non-compliant.
- If an ECS instance does not have an EIP attached, this ECS instance is compliant.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot