Skip to content

amazon_vpc_flow_1.1.0
Compare
Choose a tag to compare
@YANG-DB YANG-DB released this 24 May 17:29
· 31 commits to main since this release
amazon_vpc_flow_1.1.0
1066da7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Amazon VPC Flow Logs Integration (VPC file format)

VPC flow based on 1.1 specification for vpc parquet based format
See protocol details protocol

What is Amazon VPC Flow Logs ?

VPC Flow Logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC.

Flow logs can help you with a number of tasks, such as:

  • Diagnosing overly restrictive security group rules

  • Monitoring the traffic that is reaching your instance

  • Determining the direction of the traffic to and from the network interfaces

Flow log data is collected outside of the path of your network traffic, and therefore does not affect network throughput or latency. You can create or delete flow logs without any risk of impact to network performance.

  • See additional Amazon Logs Info details Here.
  • Flint S3 VPC integration Readme

What is Amazon VPC FLow Logs Integration ?

An integration is a bundle of pre-canned assets which are bundled togather in a meaningful manner.

Amazon VPC flow logs integration includes dashboards, visualisations, queries and an index mapping.

Dashboards

The Dashboard uses the index alias logs-vpc for shortening the index name - be advised.

Loading Integrations via DashboardManagement

To update an integration template navigate to the DashboardManagement and select savedObjects and import the new artifact:

  1. Download the amazon_vpc_flow-1.1.0.ndjson artifact

  2. Go to the DashboardManagement -> savedObjects

  1. Once there select import to load the recently downloaded integration artifact (amazon_vpc_flow-1.1.0.ndjson suffix)

  2. Open the VPC integration and install

Assets 3
Loading