VPC Lambda functions should operate in multiple Availability Zones

lambda
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

This control verifies whether an AWS Lambda function that connects to a Virtual Private Cloud (VPC) is deployed across at least two Availability Zones (AZs). The control will fail if the function does not meet the the minimum of two AZs.

Distributing resources across multiple AZs follows AWS best practices to enhance system resilience and ensure high availability. High availability is essential for maintaining system functionality and is a fundamental aspect of the security principles of confidentiality, integrity, and availability. Lambda functions connected to a VPC should be configured for multi-AZ deployment to avoid service interruptions caused by a failure in a single zone.

Remediation

For guidance on configuring Lambda function VPC settings, refer to the Configuring VPC access section of the AWS Lambda Developer Guide

PREVIEWING: brett.blue/embedded-collector-release