Search…
⌃K
Links

AWS EC2 VPC

Best practices and references below are based on published guidance from the cloud service provider and may reference native capabilities the cloud service provider offers. If you are not using the native security capabilities, the same security requirement can be met using other security capabilities your organization utilizes

Subnet Isolation

Design Guidance:

AWS::EC2::VPC

Cidr Block
Terraform

AWS::EC2::VPCCidrBlock

Amazon Provided Ipv6cidr Block
Terraform
Cidr Block
Terraform
VPC Id
Terraform

Network Isolation and Segregation

Design Guidance:

AWS::EC2::VPC

Instance Tenancy
Terraform

Asset Inventory

Design Guidance:

AWS::EC2::VPC

Tags
Terraform

AWS::EC2::VPCPeeringConnection

Tags
Terraform

Name/Address Resolution Integrity

Design Guidance:

AWS::EC2::VPCDHCPOptionsAssociation

Dhcp Options Id
Terraform
VPC Id
Terraform

External Connection Protection

Design Guidance:

AWS::EC2::VPCPeeringConnection

Peer Owner Id
Terraform
Peer Region
Terraform
Peer VPC Id
Terraform
VPC Id
Terraform

Access Control Policy

AWS::EC2::VPCPeeringConnection

Peer Role Arn
Terraform