Skip to main content
All CollectionsControl Tests
Test: Load Balancer Used
Test: Load Balancer Used

Drata inspects your company infrastructure to determine if Load Balancers are configured to balance between multiple availability zones.

Ashley Hyman avatar
Written by Ashley Hyman
Updated over a week ago

ASSOCIATED DRATA CONTROL

This test is part of the Load Balancer Used control that ensures your company uses a load balancer to automatically distribute incoming application traffic across multiple instances and availability zones.

WHAT TO DO IF A TEST FAILS

If Drata is unable to locate load balancers that are configured to balance traffic across multiple availability zones the test will fail.

To remediate a failed test, you will need to configure your load balancers to balance web traffic across multiple availability zones.

STEPS FOR PASSING

To ensure a validated state when testing that a load balancer is in use, please follow the steps listed in the table below. Once the provider steps have been completed, navigate back to Drata and execute the test.

Provider / Technology

Provider Steps

AWS - EC2 Load Balancers

Note: If there are no EC2 instances, the test will pass.

  1. Within AWS, go to the EC2 service

  2. Go to LoadBalancers from the left menu

  3. Add load balancer -http/https

  4. Ensure the load balancer is forwarding traffic to at least two different availability zones.

  5. Save load balancer

Note: Every region where an EC2 instance exists must have an active load balancer.

GCP - Load Balancers

For HTTP(S) Load Balancers

  1. Within GCP, go to the Network Services service

  2. Create a Load balancer

  3. Click on the Create Load Balancer button

  4. For ""HTTP(S) Load Balancing""

  5. Click on the Start configuration button

  6. For ""Internet facing or internal only"", select From Internet to my VMs

  7. Click on Continue button

  8. Enter a name

  9. Click on Create button

For TCP Load Balancers w/Forwarding

  1. Within GCP, go to the Network Services service

  2. Create a Load balancer

  3. Click on the Create Load Balancer button

  4. For "TCP Load Balancing" Click on the Start configuration button

  5. For "Internet facing or internal only" - Chose any option

  6. For "Multiple regions or single region" - Chose any option

  7. For "Backend type" - Chose any option

  8. Click on Continue button

  9. Enter a name

  10. Fill out the "Backend configuration"

  11. Select a Region from the dropdown

  12. Fill out the "Frontend configuration"

  13. Enter a name

  14. Enter a Port vaule

  15. Click on Create button

Make sure this Load Balancer has a forwarding rule

Did this answer your question?