VPC Flow Logs

  • Allow you to collect information about the IP traffic going to and from network interfaces in your VPC

  • VPC Flow Log data is stored in a log group in CloudWatch

  • Flow logs can be created on a specific VPC, SUbnet or Network Interface

  • Flow logs created on a VPC or Subnet will include all network interfaces in that VPC or subnet.

  • Each network interface will have its own unique log stream.

  • You can set the log to capture data on accepted traffic, rejected traffic, or all traffic.

Access Logs (Delivered to S3)

  • ELB Logs

  • CloudFront Logs

  • S3 Access Logs

PreviousCloudWatchNextCloudTrail

Last updated

Was this helpful?