HomeTerraform Modulecloudwatch-flow-logs

cloudwatch-flow-logs

cloudposse/cloudwatch-flow-logs/aws

Terraform Module HCL AWS

Terraform module for enabling flow logs for vpc and subnets.

Install
module "cloudwatch-flow-logs" {
source = "cloudposse/cloudwatch-flow-logs/aws"
version = "0.4.0"
}
plain text: /constructs/tfmod-cloudposse-cloudwatch-flow-logs-aws/install.txt
⭐ Source on GitHub 📦 Registry page
README

[![README Header][readme_header_img]][readme_header_link] [![Cloud Posse][logo]](https://cpco.io/homepage) terraform-aws-cloudwatch-flow-logs ![Build Status](https://travis-ci.org/cloudposse/terraform-aws-cloudwatch-flow-logs) ![Latest Release](https://github.com/cloudposse/terraform-aws-cloudwatch-flow-logs/releases/latest) ![Slack Community](https://slack.cloudposse.com) Terraform module for enabling flow logs for vpc and subnets. --- This project is part of our comprehensive "SweetOps" approach towards DevOps. [ ][share_email] [ ][share_googleplus] [ ][share_facebook] [ ][share_reddit] [ ][share_linkedin] [ ][share_twitter] ![Terraform Open Source Modules][terraform_modules] It's 100% Open Source and licensed under the APACHE2. We literally have [hundreds of terraform modules][terraform

Inputs (19)
NameTypeDescriptionDefault
namespacestringNamespace (e.g. `cp` or `cloudposse`) required
vpc_idstringID of VPC required
stagestringStage (e.g. `prod`, `dev`, `staging`) required
eni_idslistIDs of ENIs[]
tagsmapAdditional tags (e.g. map(`BusinessUnit`,`XYZ`){}
kms_key_idstringID of KMS key""
retention_in_daysstringNumber of days you want to retain log events in the log group"30"
filter_patternstringValid CloudWatch Logs filter pattern for subscribing to a filtered stream of log"[version, account, eni, source, destina
shard_countstringNumber of shards that the stream will use"1"
retention_periodstringLength of time data records are accessible after they are added to the stream"48"
shard_level_metricslistList of shard-level CloudWatch metrics which can be enabled for the stream[ "IncomingBytes", "OutgoingBytes" ]
namestringName (e.g. `bastion` or `db`)""
attributeslistAdditional attributes (e.g. `policy` or `role`)[]
traffic_typestringType of traffic to capture. Valid values: ACCEPT,REJECT, ALL"ALL"
subnet_idslistIDs of subnets[]
encryption_typestringGUID for the customer-managed KMS key to use for encryption. The only acceptable"NONE"
enabledstringSet to false to prevent the module from creating anything"true"
delimiterstringDelimiter to be used between `name`, `namespace`, `stage`, etc."-"
regionstringAWS region""
Outputs (8)
log_group_arn — ARN of the log group
vpc_flow_id — VPC Flow Log ID
subnet_flow_ids — Flow Log IDs of subnets
eni_flow_ids — Flow Log IDs of ENIs
kinesis_id — Kinesis Stream ID
kinesis_name — Kinesis Stream name
kinesis_shard_count — Kinesis Stream Shard count
kinesis_arn — Kinesis Stream ARN
Resources (6)
aws_cloudwatch_log_groupaws_cloudwatch_log_subscription_filteraws_flow_logaws_iam_roleaws_iam_role_policyaws_kinesis_stream
Topics & Tags
terraformvpc-flow-logsawsterraform-modulesecopsec2cloudwatch-logs
Details
FrameworkTerraform Module
LanguageHCL
Version0.4.0
Cloud AWS
★ Stars34
Forks22
Total downloads9.4k
Inputs19
Outputs8
Resources6
LicenseApache-2.0
Namespacecloudposse
Updated
Similar packages
caf-enterprise-scale

Azure landing zones Terraform module

★ 952terraform
caf

Terraform supermodule for the Terraform platform engineering for Azure

★ 581terraform
lz-vending

Terraform module to deploy landing zone subscriptions (and much more) in Azure

★ 210terraform-module
label

Terraform Module to define a consistent naming convention by (namespace, stage,

★ 702terraform
Tools
⚖ Compare with another construct → 📋 View data schema