From the course: VPC Networking on AWS: Configuration, Security, and Connectivity
Join today to access over 24,900 courses taught by industry experts.
VPC flow logs - Amazon Web Services (AWS) Tutorial
From the course: VPC Networking on AWS: Configuration, Security, and Connectivity
VPC flow logs
- [Instructor] In this lesson we're going to look at VPC flow logs. A flow log allows us to look at the network traffic flowing through the VPC, or a particular subnet, or a particular elastic network interface that's attached to a particular EC2 instance. The log data can be sent to a couple of locations, either a log group hosted by the monitoring service CloudWatch or to an S3 bucket. Depending on the location of the log data, you might decide to query logs using an Amazon tool such as Athena, or maybe you have a third party piece of software that wants to connect to the S3 bucket and look at the log data. It's your choice. When you create the flow log, you decide on the destination. Now, the flow logs are going to give us details like source and destination, IPs, ports, protocols, packet byte counts, accepted or rejected traffic. So let's look at a couple of use cases. If I start off by monitoring my VPC, I can look at all the traffic flowing through my network and I can figure…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.