You can create a rule to monitor that Relational Database Service (RDS) instances do not allow access from the public network.


  1. Log on to the Cloud Config console.
  2. In the left-side navigation pane, click Rules.
  3. Click Create Rule.
  4. In the Basic Settings step of the Create Rule wizard, set Created By to Managed Rule, search for and select the rds-public-access-check rule, set the risk level of the rule, and then click Next.
    Public access
  5. In the Dispatch Settings step of the Create Rule wizard, use default values for all parameters and click Submit.
    ActionTrail - 1
  6. Check the evaluation results of the rule.
    In the Complete step of the Create Rule wizard, click View Details or Return to Rule List to view the compliance evaluation results.Evaluation results of the rds-public-access-check rule