Checks for the “Unavailable vSwitch for Node Pool” threat in Alibaba Cloud Container Service for Kubernetes (ACK) cluster inspections. A resource is compliant if no threats are found. The rule evaluates the latest inspection report. If cluster inspection is not enabled, the resource is marked as Not Applicable.
Risk level
Default risk level: Medium.
You can change the risk level as needed.
Detection logic
-
Checks for the “Unavailable vSwitch for Node Pool” threat in ACK cluster inspections. A resource is compliant if no threats are found. The rule evaluates the latest inspection report. If cluster inspection is not enabled, the resource is marked as Not Applicable.
Rule details
|
Parameter |
Description |
|
Rule name |
Check the vSwitch availability for ACK cluster node pools |
|
Rule identifier |
|
|
Tag |
ACK |
|
Automatic remediation |
Not supported |
|
Rule trigger |
Periodic |
|
Trigger frequency |
24 hours |
|
Supported resource types |
ACS::ACK::Cluster |
|
Input parameters |
None |
Remediation
To remediate a non-compliant resource, see Use cluster inspection.