Checks whether the flow log feature is enabled for each virtual private cloud (VPC).
Scenario
VPC provides flow logs that record information about inbound and outbound traffic of an elastic network interface (ENI). Flow logs help verify access control list (ACL) rules, monitor network traffic, and troubleshoot network issues.
Risk level
Default risk level: low.
You can change the risk level as required when you apply this rule.
Compliance evaluation logic
- If the flow log feature is enabled for each VPC, the evaluation result is compliant.
- If the flow log feature is disabled for a VPC, the evaluation result is non-compliant. For more information about how to correct the non-compliant configuration, see Non-compliance remediation.
Rule details
| Item | Description |
|---|---|
| Rule name | vpc-flow-logs-enabled |
| Rule ID | vpc-flow-logs-enabled |
| Tag | VPC, Flowlog, and AuditBaseline |
| Automatic remediation | Not supported |
| Trigger type | Periodic execution |
| Time interval | 24 hours |
| Supported resource type | VPC |
| Input parameter | None |
Non-compliance remediation
Enable the flow log feature for the VPC. For more information, see Work with flow logs.