v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/alicloud_compliance
Overview
1Dashboards
78Controls
40Queries
2Variables
GitHub

Control: 3.1 Ensure legacy networks does not exist

Description

In order to prevent use of legacy networks, ECS instances should not have a legacy network configured.

Remediation

From Console

  1. Logon to ECS Console.
  2. In the left-side navigation pane, choose Instance & Image > Instances.
  3. Click Create Instance.
  4. Specify the basic instance information required by following the instruction and click Next: Networking.
  5. Select the Network Type of VPC.

Usage

Run the control in your terminal:

powerpipe control run alicloud_compliance.control.cis_v100_3_1

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run alicloud_compliance.control.cis_v100_3_1 --share

SQL

This control uses a named query:

ecs_instance_with_no_legacy_network

Tags

category = Compliance
cis = true
cis_item_id = 3.1
cis_level = 1
cis_section_id = 3
cis_type = manual
cis_version = v1.0.0
plugin = alicloud
service = AliCloud/ECS