Logging and monitoring

No monitoring for VPC network route changes

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

It is recommended that a metric filter and alarm be established for Virtual Private Cloud (VPC) network route changes. Monitoring changes to route tables will help ensure that all VPC traffic flows through an expected path.
  • Recommended Mitigation

    In the User-defined Metrics section, ensure that at least one metric is present with filter text: resource.type=""gce_route"" AND jsonPayload.event_subtype=""compute.routes.delete"" OR jsonPayload.event_subtype=""compute.routes.insert""