⭐ Repository → 📁 Compliance Engine → 📁 CloudAware → 📁 AWS → 📁 EC2
🛡️ AWS EC2 Elastic IP is unused🟢
- Contextual name: 🛡️ Elastic IP is unused🟢
- ID:
/ce/ca/aws/ec2/elastic-ip-unused - Tags:
- Policy Type:
COMPLIANCE_POLICY - Policy Categories:
COST
Logic
Description
Description
This policy identifies AWS EC2 Elastic IP addresses that are allocated to your AWS account but are not currently associated with an EC2 instance or a network interface.
Rationale
AWS charges for Elastic IP addresses that are not associated with a running EC2 instance. Regularly identifying and releasing unattached Elastic IPs helps reduce unnecessary costs.
Impact
Maintaining unattached public IPs can also pose a security risk, as they could be inadvertently associated with resources that should not be exposed to the internet.
Audit
This policy marks an AWS EC2 Elastic IP as
INCOMPLIANTif itsAssociation IDis empty, indicating that it is not currently attached to any resource.
Remediation
Remediation
Evaluate whether the Elastic IP is still needed:
- If the EIP is required for future use, ensure it is associated with the appropriate EC2 instance or network interface.
- If the EIP is no longer needed, release it to stop incurring charges and reduce potential security risks.
Release the Elastic IP
From Command Line
aws ec2 release-address --allocation-id {{allocation-id}}
policy.yaml
Linked Framework Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 Cloudaware Framework → 💼 Waste Reduction | 25 | no data |