AWS ECS services should not have public IP addresses assigned

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

A public IP address is an IP address that can be accessed from the internet. When you configure your Amazon ECS instances with a public IP address, they become accessible from the internet. It is not recommended to make Amazon ECS services publicly available to avoid unauthorized access to your container application servers.

Note: This finding should be muted for resources intentionally configured to be publicly accessible.

Remediation

From the console

To disable automatic public IP assignment, see To configure VPC and security group settings for your service in the Amazon Elastic Container Service Developer Guide.