- Newest
- Most votes
- Most comments
You can use the following filter pattern in CloudWatch Logs to search (all logs streams) for either of the two IP addresses in the log group, for example:
- 10.1.1.1 - server 1
- 10.2.2.2 - server 2
like this:
%10\.1\.1\.1|10\.2\.2\.2%
Simply update this with your server IPs.
See more syntax rules here: https://docs.aws.amazon.com/AmazonCloudWatch/latest/logs/FilterAndPatternSyntax.html#matching-terms-events
Hi,
To analyse VPC flow logs, you can use Athena and do simple SQL queries against them. Please follow the documentation https://docs.aws.amazon.com/athena/latest/ug/vpc-flow-logs.html
Thank you very much for your reply. Our flow logs are sent to cloudwatch logs and according to the document, flow logs must be sent to S3. Is there any way to filter logs which show details of the connection between our RDS and EC2?
Relevant content
- asked 10 months ago
- AWS OFFICIALUpdated 8 months ago
- AWS OFFICIALUpdated 2 years ago
Have you been able to resolve your issue? If so, would you select an answer that matched your issue to close out the thread?