vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/vpc/umn/FlowLog_0003.html
Qin Ying, Fan 662ede2c6b VPC UMN 20240105 version 
Reviewed-by: Sarda, Priya <prsarda@noreply.gitea.eco.tsi-dev.otc-service.com>
Co-authored-by: Qin Ying, Fan <fanqinying@huawei.com>
Co-committed-by: Qin Ying, Fan <fanqinying@huawei.com>
2024-04-18 12:13:40 +00:00

89 lines
9.6 KiB
HTML
Raw Permalink Blame History

<a name="FlowLog_0003"></a><a name="FlowLog_0003"></a>
<h1 class="topictitle1">Creating a VPC Flow Log</h1>
<div id="body1547961960823"><div class="section" id="FlowLog_0003__section15598193716333"><h4 class="sectiontitle">Scenarios</h4><p id="FlowLog_0003__p8118659113310">A VPC flow log records information about the traffic going to and from a VPC.</p>
</div>
<div class="section" id="FlowLog_0003__section48811154114711"><h4 class="sectiontitle">Prerequisites</h4><p id="FlowLog_0003__p1788687105119">Ensure that the following operations have been performed on the LTS console:</p>
<ul id="FlowLog_0003__ul2636114175114"><li id="FlowLog_0003__li196360418515">Create a log group.</li><li id="FlowLog_0003__li0636194119514">Create a log topic.</li></ul>
<p id="FlowLog_0003__p14332047105117">For more information about the LTS service, see the <em id="FlowLog_0003__i131771016125018">Log Tank Service User Guide</em>.</p>
</div>
<div class="section" id="FlowLog_0003__section7359352124511"><h4 class="sectiontitle">Procedure</h4><ol id="FlowLog_0003__ol1599100493"><li id="FlowLog_0003__li16376160184113">Log in to the management console.</li></ol><ol start="2" id="FlowLog_0003__ol433412616258"><li id="FlowLog_0003__li1261701516256">Click <span><img id="FlowLog_0003__image87111240141819" src="en-us_image_0000001818982734.png"></span> in the upper left corner and select the desired region and project.</li></ol><ol start="3" id="FlowLog_0003__ol113341928344"><li id="FlowLog_0003__li65321958215">Click <span><img id="FlowLog_0003__en-us_topic_0118498850_image8750174734412" src="en-us_image_0000001865663109.png"></span> in the upper left corner and choose <strong id="FlowLog_0003__b1879018432820"><span id="FlowLog_0003__text5790134192813">Network</span><span id="FlowLog_0003__text13790246286"></span></strong> &gt; <strong id="FlowLog_0003__b67909411283">Virtual Private Cloud</strong>.<p id="FlowLog_0003__p1182103318256">The <strong id="FlowLog_0003__b8628131015285">Virtual Private Cloud</strong> page is displayed.</p>
</li></ol><ol start="4" id="FlowLog_0003__ol86651458101716"><li id="FlowLog_0003__li15362774171923">In the navigation pane on the left, choose <strong id="FlowLog_0003__b118476383503">VPC Flow Logs</strong>.</li><li id="FlowLog_0003__li56651158141710">In the upper right corner, click <strong id="FlowLog_0003__b84235270610118">Create VPC Flow Log</strong>. On the displayed page, configure parameters as prompted.<div class="fignone" id="FlowLog_0003__fig4520438111212"><span class="figcap"><b>Figure 1 </b>Create VPC Flow Log</span><br><span><img id="FlowLog_0003__image6520113821218" src="en-us_image_0000001865582905.png"></span></div>
<div class="p" id="FlowLog_0003__p159985372119">
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" id="FlowLog_0003__table134731712211" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Parameter descriptions</caption><thead align="left"><tr id="FlowLog_0003__row1434717171627"><th align="left" class="cellrowborder" valign="top" width="19.24%" id="mcps1.3.3.5.2.3.1.2.4.1.1"><p id="FlowLog_0003__p234731711214"><strong id="FlowLog_0003__b729481085112">Parameter</strong></p>
</th>
<th align="left" class="cellrowborder" valign="top" width="55.7%" id="mcps1.3.3.5.2.3.1.2.4.1.2"><p id="FlowLog_0003__p934711715210"><strong id="FlowLog_0003__b761217124516">Description</strong></p>
</th>
<th align="left" class="cellrowborder" valign="top" width="25.06%" id="mcps1.3.3.5.2.3.1.2.4.1.3"><p id="FlowLog_0003__p23473171214"><strong id="FlowLog_0003__b9956614115118">Example Value</strong></p>
</th>
</tr>
</thead>
<tbody><tr id="FlowLog_0003__row2034718171526"><td class="cellrowborder" valign="top" width="19.24%" headers="mcps1.3.3.5.2.3.1.2.4.1.1 "><p id="FlowLog_0003__p63477171520">Name</p>
</td>
<td class="cellrowborder" valign="top" width="55.7%" headers="mcps1.3.3.5.2.3.1.2.4.1.2 "><p id="FlowLog_0003__p0347817222">The VPC flow log name.</p>
<p id="FlowLog_0003__p3691035194820">The name can contain a maximum of 64 characters, which may consist of letters, digits, underscores (_), hyphens (-), and periods (.). The name cannot contain spaces.</p>
</td>
<td class="cellrowborder" valign="top" width="25.06%" headers="mcps1.3.3.5.2.3.1.2.4.1.3 "><p id="FlowLog_0003__p14347191710216">flowlog-495d</p>
</td>
</tr>
<tr id="FlowLog_0003__row183478171729"><td class="cellrowborder" valign="top" width="19.24%" headers="mcps1.3.3.5.2.3.1.2.4.1.1 "><p id="FlowLog_0003__p11347141710216">Resource Type</p>
</td>
<td class="cellrowborder" valign="top" width="55.7%" headers="mcps1.3.3.5.2.3.1.2.4.1.2 "><p id="FlowLog_0003__p834721711219">The type of resources whose traffic is to be logged. You can select <strong id="FlowLog_0003__b319411435314">NIC</strong>, <strong id="FlowLog_0003__b5601749103210">Subnet</strong>, or <strong id="FlowLog_0003__b126016495328">VPC</strong>.</p>
</td>
<td class="cellrowborder" valign="top" width="25.06%" headers="mcps1.3.3.5.2.3.1.2.4.1.3 "><p id="FlowLog_0003__p6347317525">NIC</p>
</td>
</tr>
<tr id="FlowLog_0003__row83477171628"><td class="cellrowborder" valign="top" width="19.24%" headers="mcps1.3.3.5.2.3.1.2.4.1.1 "><p id="FlowLog_0003__p1081611984120">Resource</p>
</td>
<td class="cellrowborder" valign="top" width="55.7%" headers="mcps1.3.3.5.2.3.1.2.4.1.2 "><p id="FlowLog_0003__p143471917921">The specific NIC whose traffic is to be logged.</p>
<div class="note" id="FlowLog_0003__note81381412191719"><span class="notetitle"> NOTE: </span><div class="notebody"><p id="FlowLog_0003__p111391812141715">We recommend that you select an ECS that is in the running state. If an ECS in the stopped state is selected, restart the ECS after creating the VPC flow log for accurately recording the information about the traffic going to and from the ECS NIC.</p>
</div></div>
</td>
<td class="cellrowborder" valign="top" width="25.06%" headers="mcps1.3.3.5.2.3.1.2.4.1.3 "><p id="FlowLog_0003__p4347517128">N/A</p>
</td>
</tr>
<tr id="FlowLog_0003__row734713175216"><td class="cellrowborder" valign="top" width="19.24%" headers="mcps1.3.3.5.2.3.1.2.4.1.1 "><p id="FlowLog_0003__p934719178215">Filter</p>
</td>
<td class="cellrowborder" valign="top" width="55.7%" headers="mcps1.3.3.5.2.3.1.2.4.1.2 "><ul id="FlowLog_0003__ul1934716177219"><li id="FlowLog_0003__li1034717173218"><strong id="FlowLog_0003__b934111133020">All traffic</strong>: specifies that both accepted and rejected traffic of the specified resource will be logged.</li><li id="FlowLog_0003__li16347317329"><strong id="FlowLog_0003__b918513514319">Accepted traffic</strong>: specifies that only accepted traffic of the specified resource will be logged. Accepted traffic refers to the traffic permitted by the security group or <span id="FlowLog_0003__text11248715171311">firewall</span><span id="FlowLog_0003__text45551720134"></span>.</li><li id="FlowLog_0003__li15347111710218"><strong id="FlowLog_0003__b22744512232">Rejected traffic</strong>: specifies that only rejected traffic of the specified resource will be logged. Rejected traffic refers to the traffic denied by the <span id="FlowLog_0003__text770047201316">firewall</span><span id="FlowLog_0003__text167001772131"></span>.</li></ul>
</td>
<td class="cellrowborder" valign="top" width="25.06%" headers="mcps1.3.3.5.2.3.1.2.4.1.3 "><p id="FlowLog_0003__p93471617626">All</p>
</td>
</tr>
<tr id="FlowLog_0003__row143475171327"><td class="cellrowborder" valign="top" width="19.24%" headers="mcps1.3.3.5.2.3.1.2.4.1.1 "><p id="FlowLog_0003__p734771710219">Log Group</p>
</td>
<td class="cellrowborder" valign="top" width="55.7%" headers="mcps1.3.3.5.2.3.1.2.4.1.2 "><p id="FlowLog_0003__p16347111715218">The log group created in LTS.</p>
</td>
<td class="cellrowborder" valign="top" width="25.06%" headers="mcps1.3.3.5.2.3.1.2.4.1.3 "><p id="FlowLog_0003__en-us_topic_0151016581_p634714176216">lts-group-abc</p>
</td>
</tr>
<tr id="FlowLog_0003__row63479171326"><td class="cellrowborder" valign="top" width="19.24%" headers="mcps1.3.3.5.2.3.1.2.4.1.1 "><p id="FlowLog_0003__p133476171224">Log Topic</p>
</td>
<td class="cellrowborder" valign="top" width="55.7%" headers="mcps1.3.3.5.2.3.1.2.4.1.2 "><p id="FlowLog_0003__p2347101712216">The log topic created in LTS.</p>
</td>
<td class="cellrowborder" valign="top" width="25.06%" headers="mcps1.3.3.5.2.3.1.2.4.1.3 "><p id="FlowLog_0003__en-us_topic_0151016581_p43470173218">LogTopic1</p>
</td>
</tr>
<tr id="FlowLog_0003__row1834761720219"><td class="cellrowborder" valign="top" width="19.24%" headers="mcps1.3.3.5.2.3.1.2.4.1.1 "><p id="FlowLog_0003__p113471171229">Description</p>
</td>
<td class="cellrowborder" valign="top" width="55.7%" headers="mcps1.3.3.5.2.3.1.2.4.1.2 "><p id="FlowLog_0003__p43473171124">Supplementary information about the VPC flow log. This parameter is optional.</p>
<p id="FlowLog_0003__p17347181718216">The VPC flow log description can contain a maximum of 255 characters and cannot contain angle brackets (&lt; or &gt;).</p>
</td>
<td class="cellrowborder" valign="top" width="25.06%" headers="mcps1.3.3.5.2.3.1.2.4.1.3 "><p id="FlowLog_0003__p3347141715212">N/A</p>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="note" id="FlowLog_0003__note05431834104717"><img src="public_sys-resources/note_3.0-en-us.png"><span class="notetitle"> </span><div class="notebody"><p id="FlowLog_0003__p2980829135614">Only two flow logs, each with a different filter, can be created for a single resource under the same log group and log topic. Each VPC flow log must be unique.</p>
</div></div>
</li><li id="FlowLog_0003__li8268728877">Click <strong id="FlowLog_0003__b162515274512">OK</strong>.</li></ol>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="FlowLog_0001.html">VPC Flow Log</a></div>
</div>
</div>
View Git Blame Copy Permalink