VPC Flow Logs

This table represents the VPC Flow Logs resource from Amazon Web Services.

aws.vpc_flow_log

Fields

TitleIDTypeData TypeDescription
_keycorestring
account_idcorestring
creation_timecoretimestampThe date and time the flow log was created.
deliver_cross_account_rolecorestringThe ARN of the IAM role that allows the service to publish flow logs across accounts.
deliver_logs_error_messagecorestringInformation about the error that occurred. <code>Rate limited</code> indicates that CloudWatch Logs throttling has been applied for one or more network interfaces, or that you've reached the limit on the number of log groups that you can create. <code>Access error</code> indicates that the IAM role associated with the flow log does not have sufficient permissions to publish to CloudWatch Logs. <code>Unknown error</code> indicates an internal error.
deliver_logs_permission_arncorestringThe ARN of the IAM role allows the service to publish logs to CloudWatch Logs.
deliver_logs_statuscorestringThe status of the logs delivery (<code>SUCCESS</code> | <code>FAILED</code>).
destination_optionscorejsonThe destination options.
flow_log_arncorestring
flow_log_idcorestringThe ID of the flow log.
flow_log_statuscorestringThe status of the flow log (<code>ACTIVE</code>).
log_destinationcorestringThe Amazon Resource Name (ARN) of the destination for the flow log data.
log_destination_typecorestringThe type of destination for the flow log data.
log_formatcorestringThe format of the flow log record.
log_group_namecorestringThe name of the flow log group.
max_aggregation_intervalcoreint64The maximum interval of time, in seconds, during which a flow of packets is captured and aggregated into a flow log record. When a network interface is attached to a <a href="https://docs.aws.amazon.com/ec2/latest/instancetypes/ec2-nitro-instances.html">Nitro-based instance</a>, the aggregation interval is always 60 seconds (1 minute) or less, regardless of the specified value. Valid Values: <code>60</code> | <code>600</code>
resource_idcorestringThe ID of the resource being monitored.
tagscorehstore
traffic_typecorestringThe type of traffic captured for the flow log.