lacework-global-228
Security group attached to EC2 instance should not allow inbound traffic from all ports
Description
Security groups provide stateful filtering of ingress/egress network traffic to AWS resources. Best practices recommend that no security group allows unrestricted ingress access to your EC2 instances to prevent any unauthorized access.
Remediation
- Log in to the AWS Management Console.
- Click Services.
- Select Compute > EC2.
- In the left navigation panel, under Network & Security section, choose Security Groups.
- Select the Security Group that has the violation reported by Lacework.
- In the Inbound tab, edit the inbound rules and restrict access to only the required IPs and ports.