Checks whether an Application Load Balancer (ALB) instance is internal-facing.


We recommend that you use an internal-facing ALB instance without affecting normal business operations. This helps reduce network security risks.

Risk level

Default risk level: medium.

You can change the risk level as required when you apply this rule.

Compliance evaluation logic

  • If the ALB instance is internal-facing, the evaluation result is compliant.
  • If the ALB instance is Internet-facing, the evaluation result is non-compliant.

Rule details

Item Description
Rule name alb-address-type-check
Rule ID alb-address-type-check
Tag LoadBalancer and ALB
Automatic remediation Not supported
Trigger type Configuration change
Supported resource type ALB instance
Input parameter None