|
AWS ELBv2 Best Practices
Cloud Conformity monitors Elastic Load Balancing V2 following the following rules:
Ensure that your Application Load Balancer (ALB) listeners are using a secure protocol such as HTTPS.
Ensure that your Amazon ELBv2 load balancers have secure and valid security groups.
Ensure AWS Application Load Balancers (ALBs) are using the latest predefined security policy.
Ensure access logging is enabled for your AWS ALBs to follow security best practices.
Ensure Deletion Protection feature is enabled for your AWS load balancers to follow security best practices.
Ensure there is a minimum number of two healthy target instances associated with each AWS ELBv2 load balancer.
Ensure that your AWS Network Load Balancer listeners are using a secure protocol such as TLS
Ensure internet-facing ELBv2 load balancers are regularly reviewed for security reasons (informational).
Ensure that AWS Network Load Balancers are using the latest predefined security policy.
Identify unused Elastic Load Balancers (ELBv2) and delete them in order to reduce AWS costs.