Load Balancer Scheme

This bot identifies whether a load balancer is internet-facing or internal. Internet-facing load balancers distribute traffic originating from 0.0.0.0/0 and, therefore, have different security and perhaps performance requirements than internal load balancers, which are directing traffic from internal sources.

Recommended Action

Customize this bot with other filters to enforce policy, e.g., all internet-facing load balancers must have connection draining enabled. If this bot discovers load balancers that do not meet policy, either provide notification for follow-up or take automated action to correct.

Severity

Low

Resource Types Inspected

Load Balancer

Reactive Hookpoints

resource.created resource.modified