Detections
Analytics

Ensure Enhanced VPC routing should be enabled for AWS Redshift Clusters

MEDIUM

Description

Enhanced vpc routing has been disabled. Enhanced VPC routing ensures that not traffic or data flows through the internet at any times.

Remediation

In AWS Console -

  1. Sign in to the AWS Console and open the Amazon Redshift console.
  2. On the navigation menu, select Clusters.
  3. To display the Additional configurations section, choose to switch off Use defaults.
  4. Set Enhanced VPC routing to Enabled.
  5. Select Create cluster.

In Terraform -

  1. In the aws_redshift_cluster resource, set 'enhanced_vpc_routing' to 'true'.

References:
https://docs.aws.amazon.com/redshift/latest/mgmt/managing-clusters-vpc.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/redshift_cluster#enhanced_vpc_routing

Policy Details

Rule Reference ID: AC_AWS_0203
CSP: AWS
Remediation Available: Yes
Domain: Infrastructure Security
Resource: aws_redshift_cluster
Resource Category: Database
Resource Type: Redshift

Frameworks