Query: EC2 network interfaces should have source/destination checking enabled

Description

This control checks whether source/destination checking is enabled for an Amazon EC2 elastic network interface (ENI) that's managed by users. The control fails if source/destination checking is disabled for the user-managed ENI. This control checks only the following types of ENIs: aws_codestar_connections_managed, branch, efa, interface, lambda, and quicksight.

Query

Tables used in this query:

• aws_ec2_network_interface

Controls using this query:

• 180 EC2 network interfaces should have source/destination checking enabled
• EC2 network interfaces should have source/destination checking enabled

SQL