VIEW RULE IN DATADOG VIEW MISCONFIGURATIONS

Description

MSK clusters should not be publicly accessible and should be deployed in private subnets. Keeping brokers in private subnets reduces exposure to the public internet and limits access to approved network paths.

Remediation

Disable public access for brokers and place the cluster in subnets that do not assign public IPs on launch. For guidance, refer to Configuring public access for a cluster.