05 - VPC Peering With-in Organization

 

Ensure each VPC peering connection is only connected to accounts in your organization

Ensure that your VPC peering connections are only connected to accounts with-in your organization. Peering connections are direct connections into your VPC and should have strict monitoring concerning them. This is considered a security best practice and should always be done. Ensuring this is enabled will help with NIST and PCI-DSS compliance.

Audit & Remediation

  • Login into your AWS account
  • Navigate to the VPC service at: https://console.aws.amazon.com/vpc
  • On the left hand panel select Peering connections under VIRTUAL PRIVATE CLOUD.
  • Validate Requester Owner and Accepter Owner both have an accountId that represents accounts that you own.

 

 

  • If a peering connection is not associated with an account with-in your organization and is not trusted, then navigate to Actions then choose Delete VPC Peering Connection.

 

 

  • Repeat the outlined steps and do this for each VPC peering connection you have enabled in your account.
See all of your AWS VPCs in a single place!

Do you want to see all VPCs in once place for all regions and all accounts?
Login to our online demo to see exactly what this looks like.
demo.intelligentdiscovery.io

 

Other Key Features

Inventory

Consolidate your inventory management with consistent and frequent security logs, inventories, and change logs. Dashboard reporting for extensive analytical value.

learn more +

Cost & Usage

Access consolidated capacity, cost, and volume tools in a scaling environment without impacting production or breaking the bank.

learn more +

Contact us

LDAPTIVE, LLC.
Mount Pleasant, SC
USA
Email: info@ldaptive.com
Intelligent Discovery ™

LDAPTIVE, LLC 2018 © All Rights Reserved. Privacy Policy | Terms of Service