From the course: VPC Networking: Designing a Software Defined Data Center on AWS

Unlock the full course today

Join today to access over 22,600 courses taught by industry experts or purchase this course individually.

Monitoring with Flow Logs

Monitoring with Flow Logs - Amazon Web Services (AWS) Tutorial

From the course: VPC Networking: Designing a Software Defined Data Center on AWS

Start my 1-month free trial

Monitoring with Flow Logs

- [Instructor] Once you posted applications of Amazon for a period of time, you're probably going to get interested in the network traffic, what's going on in your network. Or, it might be a compliance request that you've got to know what's going on across your networks at AWS. So, you can create a flow log to capture that traffic. A flow Log is for a VPC, a subnet, or even an individual network interface. Remember network interfaces could be a database server, a web server, or any type of instance. The data is going to be recorded as a flow log record. A record is what's happening right now. The flow log data that's collected includes the Protocol number, the Account ID, the Interface ID, the Source and Destination Ports, the Source and Destination Addresses, and what gets accepted and what gets rejected. Now, not everything is going to be tracked and logged in a flow log. So, DNS information, AWS Route 53, that's not logged. License activations, not logged. VPC router traffic…

Contents