Logging & Monitoring Configurations: Flow Logs

My Saved Presets

Enable VPC Flow Logs for an existing VPC, subnet or network interface. Flow Logs enables you to capture information about the IP traffic going to and from network interfaces in your VPC.

Provide the following details to complete the template:

Resource Id for which to enable Flow Logs. A resource can be a VPC, Subnet or Network Interface (ENI).
Log Destination:
- S3: Create a new S3 bucket or select an existing S3 bucket to store Flow Logs.
- CloudWatch Logs: Select an existing CloudWatch log group or create a new log group as well as required IAM role to forward logs.

Share Template

DeliverLogsPermissionArn
LogGroupName
ResourceId
ResourceType VPC NetworkInterface Subnet TransitGateway TransitGatewayAttachment VPC
TrafficType ALL ACCEPT ALL REJECT

Loading Library ...

Flow Logs

Resources (3)

Template Settings

MyFlowLog
AWS::EC2::FlowLog

LogGroup
AWS::Logs::LogGroup

Role
AWS::IAM::Role

CloudFormation Template