/
GCP-VPCNetwork-Flow-Logs-Enabled

GCP-VPCNetwork-Flow-Logs-Enabled

Owned by naveen
Last updated: Aug 08, 2022
1 min read

Severity: High

Description: This control ensures that VPC Flow logs are enabled for every subnet in VPC Network. Flow Logs is a feature that enables you to capture information about the IP traffic going to and from network interfaces in your VPC Subnets. After you've created a flow log, you can view and retrieve its data in Stackdriver Logging. It is recommended that Flow Logs be enabled for every business critical VPC subnet.

Remediation Steps:

Perform following to enable flow log for subnet :

  1. Sign in to GCP Console https://console.cloud.google.com.

  2. Go to VPC network list in GCP Console by visiting networking list.

  3. Click on the subnet name, the Subnet details page is displayed

  4. Click on EDIT button

  5. Set Flow Logs to On

  6. Click on Save

Important:

By default, Flow Logs is set to Off when you create a new VPC network subnet.

Reference:

 

Related content

AWS Misconfiguration Remediations
AWS Misconfiguration Remediations
Blue Hexagon Documentation
Read with this
GCP-Logging-VPC-Firewall-Rule-Logging
GCP-Logging-VPC-Firewall-Rule-Logging
Blue Hexagon Documentation
More like this
GCP-Log-metric-filter-and-alert-disable-for-VPC-Network-Firewall-rule-changes
GCP-Log-metric-filter-and-alert-disable-for-VPC-Network-Firewall-rule-changes
Blue Hexagon Documentation
More like this
GCP-VM-instances-have-IP-Forwarding-enabled
GCP-VM-instances-have-IP-Forwarding-enabled
Blue Hexagon Documentation
More like this
GCP-VPCNetwork-Open-RDP
GCP-VPCNetwork-Open-RDP
Blue Hexagon Documentation
More like this
GCP-Compute-VM-Max-Instances
GCP-Compute-VM-Max-Instances
Blue Hexagon Documentation
More like this

Blue Hexagon Proprietary