← Back to Labs
Fundamental00:45:00

Introduction to Creating AWS VPC Flow Logs

Task 1Task 2Task 3Task 4Task 5
Task 1

Task 1: Sign in to AWS Management Console

↑ Top
  1. Click on the Open Console button, and you will get redirected to AWS Console in a new browser tab.
  2. On the AWS sign-in page,
  3. Leave the Account ID as default. Never edit/remove the 12 digit Account ID present in the AWS Console. otherwise, you cannot proceed with the lab.
  4. Now copy your User Name and Password in the Lab Console to the IAM Username and Password in AWS Console and click on the Sign in button
  5. Once Signed In to the AWS Management Console, Make the default AWS Region as US East (N. Virginia) us-east-1.
Task 2

Task 2: Create a CloudWatch Log

↑ Top
  1. In this task, you will create a CloudWatch Log Group called "whizvpclogs" using the CloudWatch service. Follow the steps below:
  2. Navigate to the Services menu at the top and choose CloudWatch under Management and Governance.
  3. Click on Log Management under Logs in the left-side panel, click on Create Log Group.
  4. Task 2: Create a CloudWatch Log
  5. Enter the Log Group Name : whizvpclogs and click on Create button.Note: You can ignore the error related to fetching CloudWatch metrics
  6. Task 2: Create a CloudWatch Log
Task 3

Task 3: Create a VPC

↑ Top
  1. Navigate to the Services menu on the top and choose VPC under Networking and Content Delivery.
  2. Click on Your VPC’s in the left side panel then click on Create VPC.
  3. Select VPC only.
  4. Enter the Name tag: whizvpc and enter IPv4 CIDR block: 10.1.0.0/16. Leave other options as default and click on Create button.
  5. Task 3: Create a VPC
Task 4

Task 4: Create VPC Flow Logs

↑ Top
  1. In this task, you will create VPC Flow Logs for your VPC using the AWS Management Console. Follow the steps below:
  2. Inside whizvpc, scroll down and click on Flow logs tab and click on Create Flow Log button.
  3. Under Flow log settings: Name: whizflow
  4. Select “Filter” as Accept and select “Destination” as Send to CloudWatch Logs. Choose the above created CloudWatch Logs “whizvpclogs”.
  5. Choose the IAM role “VPCFlowLog<RANDOM_NUMBER>” and leave the others as default. Click on Create flow log.
  6. Once the flow logs are created, scroll down click on Flow Logs.
  7. Task 4: Create VPC Flow Logs
  8. Now you have successfully learned how to create VPC Flow Logs. Do You Know?AWS VPC Flow Logs can be used not only for network monitoring and security analysis but also for troubleshooting and performance analysis of your Amazon Virtual Private Cloud (VPC) environment.
  9. Now you have successfully learned how to create VPC Flow Logs.
  10. Task 4: Create VPC Flow Logs
Task 5

Task 5: Validation Test

↑ Top
  1. Once the lab steps are completed, please click on the Validate button on the left side panel.
  2. This will validate the resources in the AWS account and displays whether you have completed this lab successfully or not.
  3. Sample output :
  4. Task 5: Validation Test
  5. You have successfully created the CloudWatch Logs.
  6. You have successfully created the VPC.
  7. You have successfully created the VPC Flow Logs.
  8. Sign out of AWS Account.
  9. You have successfully completed the lab.
  10. Once you have completed the steps click on End Lab from the lab console.
← Back to Labs