Risk Level: Low
Cloud Entity: AWS ElasticLoadBalancing LoadBalancer
CloudGuard Rule ID: D9.CFT.NET.09
Covered by Spectral: Yes
Category: Compute

GSL LOGIC

AWS_ElasticLoadBalancing_LoadBalancer should have Scheme='internal'

REMEDIATION

From CFT
Set AWS::ElasticLoadBalancing::LoadBalancer Scheme property to 'internal'.

References

AWS ElasticLoadBalancing LoadBalancer

AWS::ElasticLoadBalancing::LoadBalancer Specifies a Classic Load Balancer. You can specify the AvailabilityZones or Subnets property, but not both. If this resource has a public IP address and is also in a VPC that is defined in the same template, you must use the DependsOn attribute to declare a dependency on the VPC-gateway attachment.

Compliance Frameworks

AWS CloudFormation ruleset