GCP

What are flow logs? Where are they enabled?

Difficulty: unrated

Source: bregman-arie/devops-exercises by Arie Bregman

Answer

VPC Flow Logs records a sample of network flows sent from and received by VM instances, including instances used as Google Kubernetes Engine nodes. These logs can be used for network monitoring, forensics, real-time security analysis, and expense optimization.

Enable Flow Logs

  1. Open VPC Network in GCP Console

  2. Click the name of the subnet

  3. Click EDIT button

  4. Set Flow Logs to On

  5. Click Save