Control: 3.4 Ensure routing tables for VPC peering are 'least access'
Once a VPC peering connection is established, routing tables must be updated to establish any connections between the peered VPCs. These routes can be as specific as desired, even peering a VPC to only a single host on the other side of the connection.
- Logon to VPC console.
- Open the
addroute table entries to ensure that the least number of subnets or hosts as is required to accomplish the purpose for peering are routable.
Run the control in your terminal:
steampipe check alicloud_compliance.control.cis_v100_3_4
Snapshot and share results via Steampipe Cloud:
steampipe loginsteampipe check --share alicloud_compliance.control.cis_v100_3_4
This control uses a named query:manual_control