VPC flow logging should be enabled in all VPCs

amazon-vpc

Description

VPC Flow Logs capture information about the IP traffic to and from network interfaces in your VPCs. This feature provides visibility into rejected network traffic and assists in detecting unusual traffic for enhanced security workflows. It is recommended to enable VPC Flow Logs for packet rejects to monitor and analyze network activity effectively.

Remediation

For instructions on enabling VPC Flow Logs for packet rejects, refer to the Amazon VPC Flow Logs Guide.