· Capture
information about IP traffic going into your interfaces :-
1. VPC Flow logs.
2. Subnet Flow logs.
3. Elastic Network Interface Flow logs.
· Helps to Monitor & troubleshoot connection issues.
· Flow logs data can go to s3/ cloudwatch logs.
· Captures network information from AWS managed interfaces too:
ELB, RDS, ElasticCache, Redshift, Workspaces.
DemoVPC -> flow logs -> create flow log
Filter -> ALL
Maximum aggregation interval -> 1 min
Destination -> send to CloudWatch logs
1. VPC Flow logs.
2. Subnet Flow logs.
3. Elastic Network Interface Flow logs.
· Helps to Monitor & troubleshoot connection issues.
· Flow logs data can go to s3/ cloudwatch logs.
· Captures network information from AWS managed interfaces too:
ELB, RDS, ElasticCache, Redshift, Workspaces.
DemoVPC -> flow logs -> create flow log
Filter -> ALL
Maximum aggregation interval -> 1 min
Destination -> send to CloudWatch logs
Create a Role for permission cloudwatch.
IAM Role -> setup permissions ->
allow -> flowlogRole
Check logs.
DemoVPC -> flow logs -> create flow
log
Filter -> ALL
Maximum aggregation interval -> 1 min
Destination -> send to an S3 bucket
arn:aws:s3:::demos3logs
Destination log group -> vpc-flow-logs
can be get s3 logs from Athena.
Aws Monitoring and audit CloudWatch, CloudTrail and
Config.
No comments:
Post a Comment