Home [AWS Solution Architect] Follow Along - VPC Flow logs
Post
Cancel

[AWS Solution Architect] Follow Along - VPC Flow logs

Yuha on Jan 17, 20222022-01-17T16:23:00+09:00
Updated Jan 17, 20222022-01-17T16:23:00+09:00 1 min read

VPC Flow logs

Instruction https://uzzing.github.io/posts/VPC-Flow-Logs/

  • Flow logs will track all the traffic that is going through your VPC

  • Create flow log

    • we can have it to accept, reject or all. Screen Shot 2022-01-17 at 4 08 19 PM

    • it can either be delivered to cloudwatch logs or s3
      • cloud watch is very good destination for that.
    • in order to deliver that, we’re going to need a destination log group.
      • go to cloudwatch and create a new cloudwatch log Screen Shot 2022-01-17 at 4 11 02 PM Screen Shot 2022-01-17 at 4 16 57 PM

    Screen Shot 2022-01-17 at 4 09 37 PM Screen Shot 2022-01-17 at 4 17 27 PM

    • we need a IAM role to publish to cloud watch logs.

  • under our VPC, we can see that we have flow logs enabled, we had just created that a log there

  • just took public instances’s IP addresses and test enter enter enter Screen Shot 2022-01-17 at 4 20 44 PM Screen Shot 2022-01-17 at 4 21 39 PM
    • source, destination

?????

The copyright of all material here is on this video https://www.youtube.com/watch?v=Ia-UEYYR44s


This post is just for studying AWS SAA.

Development, AWS
aws certification eng
This post is licensed under CC BY 4.0 by the author.
Recent Update
Contents

[AWS Solution Architect] Follow Along - NAT Gateway, VPC Endpoints

[AWS Solution Architect] Follow Along - VPC Clean up

Comments powered by Disqus.