Unused Elastic Network Interfaces

01 Sign in to the AWS Management Console.

02 Navigate to AWS EC2 dashboard at https://console.aws.amazon.com/ec2/.

03 In the left navigation panel, under NETWORK & SECURITY section, click Network Interfaces.

04 Select the AWS ENI that you want to examine.

05 Select the Details tab from the dashboard bottom panel and check the value set for the Status attribute. If the Status attribute value is "available", the selected AWS Elastic Network Interface is not attached to an EC2 instance, therefore it should be marked as unused then safely removed from your AWS account (see Remediation/Resolution section).

06 Repeat step no. 4 and 5 to determine the current status for other AWS ENIs available within the current region.

07 Change the AWS region from the navigation bar and repeat the audit process for other regions.

01 Run describe-network-interfaces command (OSX/Linux/UNIX) using custom query filters to list the IDs of all unused AWS ENIs (if any), provisioned in the selected region:

aws ec2 describe-network-interfaces
	--region us-east-1
	--output table
	--filters Name=status,Values=available --query 'NetworkInterfaces[*].{ENI:NetworkInterfaceId}'

02 The command output should return a table that contains the IDs of the unused Elastic Network Interfaces (i.e. ENI resources with current status set to "available") or an empty table if there are no unused ENIs within the selected AWS region:

---------------------------
|DescribeNetworkInterfaces|
+-------------------------+
|           ENI           |
+-------------------------+
|  eni-aaaabbbb           |
|  eni-ddddeeee           |
|  eni-bbbbcccc           |
+-------------------------+

03 Change the AWS region by updating the --region command parameter value and repeat step no. 1 and 2 to perform the audit process for other regions.

01 Sign in to the AWS Management Console.

02 Navigate to AWS EC2 dashboard at https://console.aws.amazon.com/ec2/.

03 In the left navigation panel, under NETWORK & SECURITY section, click Network Interfaces.

04 Select the AWS ENI that you want to remove (see Audit section part I to identify the right resource).

05 Click the Delete button from the dashboard top menu to initiate the removal process.

06 Inside the Delete Network Interface dialog box, review the resource details one more time, then click Yes, Delete to confirm the action. If successful, the selected AWS Elastic Network Interface should be removed from the ENIs list.

07 Repeat steps no. 4 – 6 to remove other unused (detached) AWS Elastic Network Interfaces available in the current region.

08 Change the AWS region from the navigation bar and repeat the entire process for other regions.

01 Run delete-network-interface command (OSX/Linux/UNIX) using the ID of the ENI that you want to delete as identifier (see Audit section part II to identify the right resource) to remove the selected Amazon Elastic Network Interface from your AWS account (if the command succeeds, no output is returned):

aws ec2 delete-network-interface
	--region us-east-1
	--network-interface-id eni-aaaabbbb

02 Repeat step no. 1 to remove other unused AWS ENIs currently available in the selected region.

03 Change the AWS region by updating the --region command parameter value and repeat step no. 1 and 2 to perform the entire process for other regions.