Back to All Checks
High ECS Regional

ECS services should not have public IP addresses assigned to them automatically

NIST

Description

Checks whether Amazon ECS services are configured to automatically assign public IP addresses. The control fails if AssignPublicIP is ENABLED.

Remediation

To disable automatic public IP assignment, update the network configuration of the ECS service.

Steps

  1. Open the Amazon ECS console.
  2. Navigate to the 'Services' tab.
  3. Select the service to update.
  4. Under 'Network Access', ensure 'Auto-assign public IP' is set to 'DISABLED'.
  5. Save changes and redeploy the service if necessary.

Compliance

NIST
Start Your Free Security Check