no-public-ip
Default Severity: high
Explanation
You should limit the provision of public IP addresses for resources. Resources should not be exposed on the public internet, but should have access limited to consumers required for the function of your application.
Possible Impact
The instance or configuration is publicly accessible
Suggested Resolution
Set the instance to not be publicly accessible
Insecure Example
The following example will fail the aws-autoscaling-no-public-ip check.
resource "aws_launch_configuration" "bad_example" {
associate_public_ip_address = true
}
Secure Example
The following example will pass the aws-autoscaling-no-public-ip check.
resource "aws_launch_configuration" "good_example" {
associate_public_ip_address = false
}