VPC Flow log send to another account to firehouse

0

Hello,

We are sending the VPC flow data to Cloudwatch group and then later we added additional destination to send the VPC flow log to another account. We could see flow log was sent to splunk for couple of hours but it stopped after that.

Can we send the VPC Flow log data to 2 destination parallely.

Thanks, Himanshu Bansal

질문됨 2달 전336회 조회
2개 답변
0

Yes you can have more than 2 certainly. I cant remember if theres a limit or not but theres no reason why you cant send to more than 1 destination

profile picture
전문가
답변함 2달 전
  • Firehouse VPC log worked for couple of hours and couldn't see any vpc flow in cloudwatch log group for that period and then later firehouse log stopped showing but start showing in cloudwatch group. Any places I could check for vpc flow logs for firehouse delivery.

0

i thought like this could be working with your scenario https://aws.amazon.com/blogs/big-data/stream-vpc-flow-logs-to-datadog-via-amazon-kinesis-data-firehose/ , because flow log data send to Splunk with using of data fire house and also backup the data from s3 bucket so you would be achieved the 2 destination one is you get the Splunk and also you store backup into the s3 bucket. and it is possible to transfer VPC flow logs from one AWS account's S3 bucket to another AWS account's S3 bucket using Amazon Kinesis. This process involves setting up a Kinesis Data Firehose delivery stream in the source account to capture the VPC flow logs and deliver them to the destination account's S3 bucket.

profile picture
kamal
답변함 2달 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠