Overview
AWS Network Firewall is a stateful, service that allows customers to filter traffic at the perimeter of their VPC.
Enable this integration to see all of your AWS Network Firewall metrics in Datadog.
Setup
Installation
If you haven’t already, set up the Amazon Web Services integration first.
Metric collection
In the AWS integration page, ensure that Network Firewall is enabled under the Metric Collection tab.
Install the Datadog - AWS Network Firewall integration.
Log collection
Enable logging
Configure AWS Network Firewall to send logs either to a S3 bucket or to CloudWatch.
Note: If you log to a S3 bucket, make sure that amazon_network_firewall is set as Target prefix.
Send logs to Datadog
If you haven’t already, set up the Datadog Forwarder Lambda function.
Once the Lambda function is installed, manually add a trigger on the S3 bucket or CloudWatch log group that contains your AWS Network Firewall logs in the AWS console:
Data Collected
Metrics
aws.networkfirewall.dropped_packets
(gauge) | The number of packets dropped by a firewall rule.
Shown as packet |
aws.networkfirewall.passed_packets
(gauge) | The number of packets forwarded on by the firewall.
Shown as packet |
aws.networkfirewall.received_packets
(gauge) | The number of packets received by the firewall.
Shown as packet |
Each of the metrics retrieved from AWS are assigned the same tags that appear in the AWS console, including but not limited to host name, security-groups, and more.
Events
The AWS Network Firewall integration does not include any events.
Service Checks
The AWS Network Firewall integration does not include any service checks.
Troubleshooting
Need help? Contact Datadog support.
Further Reading
Additional helpful documentation, links, and articles:
