Open shayfisher opened 7 months ago
Hello! thanks for your question. Hmm, I wonder if removing an AWS account default regarding a different VPC should be considered part of creating a atomic VPC. I would argue that is a separate concern and should be addressed at the account level and not at a atomic vpc level.
Hey @drewmullen For each vpc you create you would get a default security group created with a default egress rule I’m referring to that fact and I would like to make sure each vpc is created as the standard recommends I guess it is a matter of an atomic VPC creation action
what do you think?
Hi! Adding my thoughts in this thread as well :)
Here are two things to think about:
Currently there is now way to manage the default security group and have it remove the default egress rule. Aws best practices suggest that default security will have no rules (both for egress and ingress). Please add this feature so we could created VPCs that are compliant with best practices. Thank you!