turbot/aws_compliance

Control: ELB application load balancers should have at least one outbound rule

Description

Ensure application load balancers have at least one outbound rule in all the attached security groups. A security group without any outbound rule rejects all outgoing traffic. This means that all outgoing traffic originating from your cloud assets (instances, containers, etc.) will be dropped when it reaches the ELB layer.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.elb_application_lb_with_outbound_rule

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.elb_application_lb_with_outbound_rule --share

SQL

This control uses a named query:

elb_application_lb_with_outbound_rule

Tags