The VPC Flow Logs log status has "NODATA: There was no network traffic to or from the network interface during the aggregation interval. ". But my customer is asking: 1. Does that really mean there was no data, or just no data captured, for example too small, or between two interfaces it does not capture? 2. If there is really no data, then what is the purpose of sending this status which fills up the logs? Should it be treated as a heartbeat?

Explanation for NODATA in VPC Flow Logs if there is no data

The VPC Flow Logs log status has "NODATA: There was no network traffic to or from the network interface during the aggregation interval. ". But my customer is asking:

Does that really mean there was no data, or just no data captured, for example too small, or between two interfaces it does not capture?
If there is really no data, then what is the purpose of sending this status which fills up the logs? Should it be treated as a heartbeat?

주제

네트워킹 및 콘텐츠 전송

태그

아마존 VPC 네트워킹 및 콘텐츠 전송

언어

English

cloudy2024

질문됨 4년 전6158회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

수락된 답변

NODATA means no data has been received on that ENI. In case of data missed or skipped in the capture a SKIPPED DATA message is published.

The NODATA message allows you to know if an ENI is actively attached to an instance and receiving/not receiving traffic or is just available in a pool of ENI or was an old ENI whose flowlog data is still available but the ENI has been deleted.

You can see the info about the type of records here: https://docs.aws.amazon.com/vpc/latest/userguide/flow-logs-records-examples.html

전문가

agardezi

답변함 4년 전

Explanation for NODATA in VPC Flow Logs if there is no data

관련 콘텐츠