VPC flow logs

VPC flow logs is a feature that allows us to capture information related to IP traffic that goes to and from the network interfaces within the VPC.

VPC flow logs help in both troubleshooting related to why certain traffic is not reaching the EC2 instances and also understanding what the traffic is that is accepted and rejected.

The VPC flow logs can be part of individual network interface level of an EC2 instance. This allows us to monitor how many packets are accepted or rejected in a specific EC2 instance running in the DMZ maybe.

By default, the VPC flow logs are not enabled, so we will go ahead and enable the VPC flow log within our VPC:

  1. Enabling flow logs for VPC:
    1. In our environment, we have two VPCs named Development ...

Get Enterprise Cloud Security and Governance now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.