Checks whether the release protection feature is enabled for NAT gateways.
Scenarios
You can enable the release protection feature to prevent a NAT gateway from being deleted by accidental operations.
Risk level
Default risk level: medium.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
- If the release protection feature is enabled for the NAT gateways that you create, the evaluation result of the rule is Compliant.
- If the release protection feature is disabled for a NAT gateway that you create, the evaluation result of the rule is Non-compliant.
Rule details
| Item | Description |
|---|---|
| Rule name | natgateway-delete-protection-enabled |
| Rule identifier | natgateway-delete-protection-enabled |
| Tag | NAT |
| Automatic remediation | Not supported |
| Trigger type | Configuration change |
| Supported resource type | NAT gateway |
| Input parameter | N/A |