Checks whether an Application Load Balancer (ALB) instance is internal-facing.
Scenarios
We recommend that you use an internal-facing ALB instance without affecting normal business operations. This helps reduce network security risks.
Risk level
Default risk level: medium.
You can change the risk level as required when you apply this rule.
Compliance evaluation logic
- If the ALB instance is internal-facing, the evaluation result is compliant.
- If the ALB instance is Internet-facing, the evaluation result is non-compliant.
Rule details
| Item | Description |
|---|---|
| Rule name | alb-address-type-check |
| Rule ID | alb-address-type-check |
| Tag | LoadBalancer and ALB |
| Automatic remediation | Not supported |
| Trigger type | Configuration change |
| Supported resource type | ALB instance |
| Input parameter | None |