Related notes and references
Amazon VPC
Amazon-VPC (Virtual Private Cloud) provides AWS customers a logically isolated section of Amazon Web Services Cloud. Allowing them to access the Amazon Elastic Compute Cloud over an IPsec based virtual private network.
What does it log? Amazon VPC records Network Flow Logs from across the Virtual Private Cloud. Flow log data for a monitored network interface is recorded as flow log records, which are log events consisting of fields that describe the traffic flow.
Where does it log to? Amazon VPC can send logs to CloudWatch, S3 storage buckets and/or Kinesis firehose.
How do I enable it? VPC Flow logs are not enabled by default. To create a flow log, you must specify the resource for which to create the flow log, the type of traffic to capture and the destinations to which you want to publish the flow log data. AWS provides three guides on setting up VPC flow logs for S3, CloudWatch and FireHose. - [ ] research about firehouse
How do I access the logs? To view flow logs, take o one of the following steps: - Open the Amazon EC2 console. In the navigation pane, choose Network Interfaces. Select the checkbox for the network interface. - Open the Amazon VPC console. In the navigation pane, choose Your VPCs. Select the checkbox for the VPC. - Open the Amazon VPC console. In the navigation pane, choose Subnets. Select the checkbox for the subnet. Then choose Flow Logs.