Monitoring Amazon VPC flow logs
The previous section explained the importance of Amazon VPC as it is the underlying infrastructure that other AWS services need to run efficiently – services such as EC2, RDS, EKS, ECS, Lambda, Elastic MapReduce (EMR), Elastic Beanstalk, Batch, Elasticsearch Service, Amazon Redshift, and ElastiCache. Due to this fact, it will also be important to know how to monitor what is going in the network infrastructure that these services run on.
VPC has a feature that allows this to be possible, called flow logs. A flow log is a combination of all the traffic data going through the VPC, which is a combination of all the subnets within the VPC, be it a private or public subnet. Flow logs make it possible to know the size of the data being sent or received, whether a network request was accepted or rejected, the source and destination port of a request, the source and destination IP address of a request, the network interface ID, the subnet ID, and much...
