- 필수 기능
- 앱 내
- 서비스 관리
- 인프라스트럭처
- 애플리케이션 성능
- 디지털 경험
- 소프트웨어 제공
- 보안
- 로그 관리
- 관리
- 인프라스트럭처
- ci
- containers
- csm
- ndm
- otel_guides
- overview
- slos
- synthetics
- tests
- 워크플로
This rule verifies that publicly accessible EC2 instances don’t have opened administrative ports.
An EC2 instance is publicly accessible if it exists within infrastructure that could provide an access route from the internet for an attacker.
An EC2 instance with an open administrative port is considered risky.
You can use the AWS Reachability Analyzer to identify the path to your EC2 instance that is allowing it to be accessed via the internet. We recommend the following:
EC2 instances typically do not require an open administrative port. We recommend limiting the open ports attached to the instance.