Skip to main content

lacework-global-230

Security group attached to Network Interface should not allow inbound traffic from all ports

Description

Security groups provide stateful filtering of ingress/egress network traffic to AWS resources. It is recommended that no security group allows unrestricted ingress access to your Network Interfaces to prevent any unauthorized access.

Remediation

  1. Log in to the AWS Management Console.

  2. Click Services.

  3. Select Compute > EC2.

  4. In the left frame of the EC2 Dashboard, select NETWORK & SECURITY > Network Interfaces.

  5. Select the Network Interface that has the violation reported by Lacework.

  6. Under the description, click the attached security-group.

  7. Edit the inbound rules and restrict access to only the required IPs and ports.