AWS-ElastiCache-redis-clusters-using-deafault-endpoint-port

Severity: Low

Description: This control ensures that AWS ElastiCache Redis clusters are not using their default endpoint ports. Applications to access AWS ElastiCache Redis cluster, user has to set up the endpoint port. AWS ElastiCache Redis cluster by default sets this endpoint port to 6379..

Remediation Steps:

Perform following to change the port for ElastiCache cluster :

1. Login to the AWS Management Console at https://console.aws.amazon.com.

2. Step 1:  Backup the ElastiCache redis cluster

   1. Navigate to ElastiCache console.

   2. In the navigation pane, choose Redis.

   3. Choose the box to the left of the name of the Redis cluster you want to back up.

   4. Now in actions dropdown choose backup.

3. Step 2: Delete the ElastiCache Redis cluster

   1. In the navigation pane, choose Redis.

   2. Choose the box to the left of the name of the Redis cluster you want to delete.

   3. Now in actions dropdown choose Delete.

4. Step 3: Restore the Backup

   1. In the navigation pane, choose Backups.

   2. Select the Backup you want to restore.

   3. Click on the restore button.

   4. In the Restore Cluster window ensure that port is not set to 6379.

Important:

Changing default endpoint ports is only available while creating the ElastiCache Redis Cluster. To modify port, first backup the ElastiCache Redis cluster and delete the misconfigured ElastiCache Redis Cluster. After this operation, restore the backup with modified port. After the restoring the cluster, application changes might be required for application to point to the new cluster endpoint.

Reference:

• Deleting a cluster in ElastiCache - Amazon ElastiCache

• Deleting a cluster in ElastiCache - Amazon ElastiCache

• What is Amazon ElastiCache? - Amazon ElastiCache