1 個回答
- 最新
- 最多得票
- 最多評論
2
Yes, GuardDuty will analyze the VPC flow logs as they are generated. When you enable GuardDuty, it immediately starts analyzing your VPC flow logs from Amazon EC2 instances within your account. It consumes VPC flow log events directly from the VPC Flow Logs feature through an independent and duplicative stream of flow logs. This process does not affect any of your existing flow logs configuration.
The VPC flow logs you have delivered to your buckets are derived from the same internal data source as GuardDuty uses to analyse flow logs. So GuardDuty not need access to the S3 bucket that is used for storing VPC flow logs as it will not access the logs from there.
已回答 10 個月前
相關內容
- 已提問 6 個月前
- AWS 官方已更新 2 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 1 年前
Awesome, thank you!