<  Back to rules search

Elasticsearch domain resides in a VPC

elasticsearch

Classification:

compliance

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

Ensure your Amazon Elasticsearch (ES) domain is only accessible from an AWS VPC.

Rationale

Using a VPC gives your Amazon ES domains an extra layer of security. Launching your clusters within a VPC ensures communication between your clusters and other AWS services is secure.

Remediation

Once a domain is created with a public endpoint, it cannot be switched to VPC access. Follow the Migrating from Public Access to VPC Access docs to learn how to create a new domain and either manually reindex or migrate your data.