Posted On: Oct 16, 2022
You can now deliver Amazon Virtual Private Cloud (VPC) Flow Logs directly to Amazon Kinesis Firehose, allowing you to stream your flow logs real-time to destinations supported by Amazon Kinesis Firehose or downstream logging solutions via custom HTTP endpoints.
VPC Flow Logs enable you to capture and log information about your VPC network traffic. Until today, you could deliver VPC Flow Logs to Amazon CloudWatch Logs and Amazon Simple Storage Service (S3). With this release, you can now stream your flow logs in real-time to supported Amazon Kinesis Firehose destinations. In addition, you can also use Lambda functions on Amazon Kinesis to enrich or transform the VPC Flow logs while delivering them to downstream logging solutions.
VPC Flow Log delivery to Amazon Kinesis Data Firehose is available through the Amazon Web Services Management Console, the Amazon Command Line Interface (Amazon CLI), and the Amazon Software Development Kit (Amazon SDK). To get started, simply create a new flow log subscription and select Amazon Kinesis Firehose as a destination. To learn more about Amazon VPC Flow Logs delivery to Amazon Kinesis Firehose, please refer to the Amazon Kinesis Firehose documentation and VPC Flow Logs documentation. See the blog to learn about Amazon Web Services Partner solutions that support ingestion of VPC Flow Logs to Amazon Kinesis Firehose. Refer to the CloudWatch pricing for cost of delivering VPC Flow Logs to Amazon Kinesis Firehose.
VPC Flow Logs delivery to Amazon Kinesis Firehose is generally available in Amazon Web Services China (Beijing) Region, operated by Sinnet and Amazon Web Services China (Ningxia) Region, operated by NWCD.