ElastiCache without VPC

ID

aws_elasticache_without_vpc

Severity

low

Vendor

AWS

Resource

Network

Tags

reachable

Description

ElastiCache without VPC. The ElastiCache should be in a VPC to avoid unexpected access.

To fix it you must configure the property cache_subnet_group.

Learn more about this topic at AWS Accessing ElastiCache.

Examples

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Basic example
      community.aws.elasticache:
        name: "test"
        state: present
        engine: memcached
        cache_engine_version: 1.4.14
        node_type: cache.m1.small
        num_nodes: 1
        cache_port: 11211
        zone: us-east-1d

Mitigation / Fix

---
- name: Example playbook
  hosts: localhost
  tasks:
    - name: Basic example
      community.aws.elasticache:
        name: "test"
        state: present
        engine: memcached
        cache_engine_version: 1.4.14
        node_type: cache.m1.small
        num_nodes: 1
        cache_port: 11211
        zone: us-east-1d
        cache_subnet_group: "subnet_group"