Monitor Network Traffic with VPC Flow Logs

Monitoring Network Traffic
The CIS AWS Foundations Benchmark says that in order to capture information about the IP traffic going to and from network interfaces in your VPC, you must enable the VPC Flow Log feature in all VPCs. VPC flow logs enable you to:

  • Diagnose overly-restrictive security group rules
  • Monitor the traffic that is reaching your instance
  • Determining the direction of the traffic to and from the network interfaces

For more information on how to monitor network traffic in your VPC, visit the AWS documentation on VPC flow logs

Transcription
AWS VPC flow logs monitor the network traffic to and from network devices in your virtual private clouds. It’s important to create a flow log for these which will automatically record network communication at a VPC level to your CloudTrail log for monitoring, alerting, and retention.

Related Videos