CloudGuard Dome9 Help

VPC Flow Logs


You can see the traffic into and out of, and within, your AWS VPCs on the Dome9 console. You can select traffic for any of your VPCs, and then filter for specific flow items of interest. Dome9 extracts this information from the cloud platform, and enriches it with contextual information such as source and target names (if they are labelled).

The displayed information can also be exported to a file.

VPC flows can also be seen from the Clarity view (see Clarity).

Note: This feature is available for AWS VPCs only.

Benefits

  • console view of all VPC network & flows (on all cloud providers, all accounts, regions)

  • view of flow within network context (in Clarity, for AWS only)

  • variety of filters/search to narrow the scope, look for specific flows of interest

Use-cases

Here are some typical use-cases for viewing VPC flow logs:

  • investigate incidents, using network traffic in the VPC

  • filter traffic for specific network elements

Actions

See also

Onboard an AWS Account

Clarity