/
GCP-VPCNetwork-Flow-Logs-Enabled

GCP-VPCNetwork-Flow-Logs-Enabled

Severity: High

Description: This control ensures that VPC Flow logs are enabled for every subnet in VPC Network. Flow Logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC Subnets. After you've created a flow log, you can view and retrieve its data in Stackdriver Logging. It is recommended that Flow Logs be enabled for every business critical VPC subnet.

Remediation Steps:

Perform following to enable flow log for subnet :

  1. Sign in to GCP Console https://console.cloud.google.com.

  2. Go to VPC network list in GCP Console by visiting networking list.

  3. Click on the subnet name, the Subnet details page is displayed

  4. Click on EDIT button

  5. Set Flow Logs to On

  6. Click on Save

Important:

By default, Flow Logs is set to Off when you create a new VPC network subnet.

Reference:

 

Related content

AWS Misconfiguration Remediations
AWS Misconfiguration Remediations
Read with this
GCP-Logging-VPC-Firewall-Rule-Logging
GCP-Logging-VPC-Firewall-Rule-Logging
More like this
GCP-Log-metric-filter-and-alert-disable-for-VPC-Network-Firewall-rule-changes
GCP-Log-metric-filter-and-alert-disable-for-VPC-Network-Firewall-rule-changes
More like this
GCP-VM-instances-have-IP-Forwarding-enabled
GCP-VM-instances-have-IP-Forwarding-enabled
More like this
GCP-VPCNetwork-Open-RDP
GCP-VPCNetwork-Open-RDP
More like this
GCP-Compute-VM-Max-Instances
GCP-Compute-VM-Max-Instances
More like this

Blue Hexagon Proprietary