Sends a report of all the VPC'c whose tunnel State is down

Send a report of unused ingress VPC internet gateways. This helps to avoid hitting the service limit of 5.

Sends a report of unused Virtual Private Gateways. This is done to avoid hitting the limit of 5 VGWs.

Sends a report of all exposed VPC endpoints. Exposed endpoints could lead to security issues due to unauthorised requests made to the supported services.

Sends a report of VPC's default Security Groups which are allowing inbound traffic from all the ports.

Sends a report of VPC's in your AWS account if the flow logs are not enabled for them.

Send report of all the Network ACL changes in your AWS account i.e. if any operations like create/delete Network ACL or create/delete/replace Network ACL entry is performed in your AWS account then this workflow will generate a report of it and send it to your email.

Send report of VPC which does not have managed NAT gateways. the Managed NAT Gateway service is using optimized software to handle NAT traffic and is fully managed by AWS compared to the NAT instance which is not optimized and requires scaling and regular maintenance such as installing software updates or patches.

Send a report of unused egress VPC internet gateways. This helps to avoid hitting the service limit of 5.

Sends a report if AWS Network Access Control Lists (NACLs) for inbound rules allow traffic from all ports. Restricting limits of inbound users will add an extra layer of security to our resources.

Sends a report if AWS Network Access Control Lists (NACLs) for outbound rules allow traffic from all ports. Restricting limits of outbound users will add an extra layer of security to our resources.

It is an AWS best practice to remove unused ENIs as there is service limit set by AWS. Keeping a lot of unused ENIs can exhaust the resource limit and will prevent the launching of new EC2 machines.

Send a report of all VPN tunnels that are down. This will help to maximise uptime in the event of a failure.