By Implementation

Service Control PoliciesConfig RulesAuto Remediation RulesConformance PacksAmazon GuardDutyAmazon InspectorAWS Security HubAWS Network FirewallRoute53 Resolver SecurityAmazon MacieS3 Bucket PoliciesCloudWatch Alarms and Event RulesAWS WAFAWS Secrets ManagerAWS Systems ManagerSecurity Groups & NACLsAWS KMSIAM Policies

By Service Protected

Configuration Packages

Strategy Guides

Other

CloudWatch Alarms and Event Rules

VPN Data Transfered Out Alarm

A CloudWatch Alarm that triggers when the traffic outgoing over a managed AWS VPN tunnel hits a certain threshold (Default: Less than 1,000,000 bytes in 15 minutes).

This CloudWatch Alarm is configured per VPN connection, which is set as an alarm dimension. Provide the VPN Connection ID by entering it under the Dimension.Value field in the Configure Alarm Settings settings page.

Items
2
Size
0.9 KB
Missing Parameters
AWSTemplateFormatVersion: "2010-09-09"
Description: ""
Resources:
  SnsTopicMetricFilterCloudWatchAlarm:
    Type: "AWS::SNS::Topic"
    Properties:
      Subscription:
        - Endpoint: "email@example.com"
          Protocol: "email"
      TopicName: "alarm-action"
  CloudWatchAlarm:
    Type: "AWS::CloudWatch::Alarm"
    Properties:
      AlarmName: "cwalarm_vpntrafficout"
      AlarmDescription: "A CloudWatch Alarm that triggers when the traffic outgoing over a managed AWS VPN tunnel hits a certain threshold (Default: Less than 1,000,000 bytes in 15 minutes)."
      MetricName: "TunnelDataOut"
      Namespace: "AWS/VPN"
      Statistic: "Sum"
      Period: "900"
      EvaluationPeriods: "1"
      Threshold: "1000000"
      ComparisonOperator: "LessThanThreshold"
      AlarmActions:
        - Ref: "SnsTopicMetricFilterCloudWatchAlarm"
      Dimensions:
        - Name: "VpnId"
          Value: ""
Parameters: {}
Metadata: {}
Conditions: {}

Actions



Customize Template

Action Settings

Alarm Configuration

* Required field