💼 [EFS.6] EFS mount targets should not be associated with a public subnet

ID: /frameworks/aws-fsbp-v1.0.0/efs/06

Description

By default, an file system is only accessible from the virtual private cloud (VPC) in which you created it. We recommend creating EFS mount targets in private subnets that are not accessible from the internet. This helps ensure that your file system is only accessible to authorized users and isn't vulnerable to unauthorized access or attacks.

Similar

AWS Security Hub
- https://docs.aws.amazon.com/securityhub/latest/userguide/efs-controls.html#efs-6
Internal
- ID: dec-c-f8e0fcb5

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ AWS EFS Mount Target is in a subnet that assigns public IP addresses on launch🟢	1	🟢 x6	no data

Description​

Similar​

Sub Sections​

Policies (1)​

Description

Similar

Sub Sections

Policies (1)