We are observing multiple findings "EC2 instance has an unprotected port which is being probed by a known malicious host on port 80/443" on a instance hosted for application server.
Need to have this port open to public as it is an application server. How to remediate this issue? Please help.
You can add a rule to the Network ACL (NACL) to deny traffic from that specific host.