diff --git a/terraform/layer1-aws/aws-vpc.tf b/terraform/layer1-aws/aws-vpc.tf
index 2b41fa1f..f232d660 100644
--- a/terraform/layer1-aws/aws-vpc.tf
+++ b/terraform/layer1-aws/aws-vpc.tf
@@ -14,6 +14,7 @@ data "aws_security_group" "default" {
 }
 
 #tfsec:ignore:aws-ec2-no-public-ip-subnet
+#tfsec:ignore:aws-ec2-require-vpc-flow-logs-for-all-vpcs
 module "vpc" {
   source  = "terraform-aws-modules/vpc/aws"
   version = "3.12.0"
diff --git a/terraform/layer2-k8s/eks-external-secrets.tf b/terraform/layer2-k8s/eks-external-secrets.tf
index 8b11085e..3ea2085f 100644
--- a/terraform/layer2-k8s/eks-external-secrets.tf
+++ b/terraform/layer2-k8s/eks-external-secrets.tf
@@ -107,7 +107,7 @@ module "external_secrets_namespace" {
       ingress = {
         ports = [
           {
-            port     = "9443"
+            port     = "10250"
             protocol = "TCP"
           }
         ]