If health check is enabled for all listeners of the Server Load Balancer (SLB) instance, the evaluation result is Compliant.
Scenarios
SLB performs health checks to check the availability of backend Elastic Compute Service (ECS) instances. The health check feature improves service availability and reduces the impact of backend server failures on the availability of your applications.
Risk level
Default risk level: high.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
- If health check is enabled for all listeners of the SLB instance, the evaluation result is Compliant.
- If health check is disabled for any listener of the SLB instance, the evaluation result is Incompliant. For more information about how to remediate an incompliant configuration, see the "Incompliance remediation" section of this topic.
Rule details
Item | Description |
---|---|
Rule name | slb-all-listener-health-check-enabled |
Rule identifier | slb-all-listener-health-check-enabled |
Tag | LoadBalancer and SLB |
Automatic remediation | Not supported |
Trigger type | Periodic execution |
Evaluation frequency | Interval of 24 hours |
Supported resource type | SLB instances |
Input parameter | None |
Incompliance remediation
Enable health check for all listeners of SLB instances. By default, health check is enabled for listeners. For information about how health check is disabled and how to enable it again, see Disable the health check feature.