Ensure Transfer Server is not exposed publicly
Error: Transfer Server is publicly exposed
Bridgecrew Policy ID: BC_AWS_NETWORKING_57
Checkov Check ID: CKV_AWS_164
Severity: MEDIUM
Transfer Server is publicly exposed
Description
TBD
Fix - Buildtime
Terraform
- Resource: aws_transfer_server
- Argument: endpoint_type
resource "aws_transfer_server" "test" {
+ endpoint_type = "VPC"
protocols = ["SFTP"]
}
CloudFormation
- Resource: AWS::Transfer::Server
- Argument: Properties.EndpointType
Resources:
VPC:
Type: AWS::Transfer::Server
Properties:
...
+ EndpointType: "VPC" # or "VPC_ENDPOINT"
Updated 11 months ago
Did this page help you?