Security Groups with Host IP Addresses Defined

Tenacity Id

Risk Level




Last Updated:

April 21, 2022

Security Group not-in-use has individual IP addresses (/32) defined. Best practice is to define a security group that contains the host IP addresses for managing access between instances. Delete any rules that define specific IP addresses and reference the security group where those instances reside. Note: This rule will alert on all host IP addresses in security groups including those outside the AWS network so it does not necessarily indicate a problem.