💼 [Redshift.7] Redshift clusters should use enhanced VPC routing
- ID:
/frameworks/aws-fsbp-v1.0.0/redshift/07
Description
Enhanced VPC routing forces all COPY and UNLOAD traffic between the cluster
and data repositories to go through your VPC. You can then use VPC features
such as security groups and network access control lists to secure network
traffic. You can also use VPC Flow Logs to monitor network traffic.
Similar
- AWS Security Hub
- Internal
- ID:
dec-c-42e29577
- ID:
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 AC-4 Information Flow Enforcement | 32 | 69 | 123 | no data | |
| 💼 NIST SP 800-53 Revision 5 → 💼 AC-4(21) Information Flow Enforcement _ Physical or Logical Separation of Information Flows | 37 | 63 | no data | ||
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-7 Boundary Protection | 29 | 4 | 93 | no data | |
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-7(4) Boundary Protection _ External Telecommunications Services | 49 | no data | |||
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-7(9) Boundary Protection _ Restrict Threatening Outgoing Communications Traffic | 34 | no data | |||
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-7(11) Boundary Protection _ Restrict Incoming Communications Traffic | 37 | no data | |||
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-7(20) Boundary Protection _ Dynamic Isolation and Segregation | 20 | no data | |||
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-7(21) Boundary Protection _ Isolation of System Components | 37 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (1)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS Redshift Cluster Enhanced VPC Routing is not enabled🟢 | 1 | 🟢 x6 | no data |