Ensure Cluster Private Nodes
An XCCDF Rule
Description
Disable public IP addresses for cluster nodes, so that they only have private IP addresses. Private Nodes are nodes with no public IP addresses.
Rationale
Disabling public IP addresses on cluster nodes restricts access to only internal networks, forcing attackers to obtain local network access before attempting to compromise the underlying Kubernetes hosts.
- ID
- xccdf_org.ssgproject.content_rule_private_nodes
- Severity
- Unknown
- References
- Updated