Logging and monitoring

VPC without flow log

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Alibaba VPC is a virtual private cloud service that provides an isolated cloud network to operate resources in a secure environment. It was detected that the VPC {AliCloudEcsVpc} does not have flow logs enabled. Flow logs help you to monitor network traffic, and troubleshoot network errors.

  • Recommended Mitigation

    It is recommended to enable flow logs in all VPCs. For more information on flow logs, see: <a href="https://www.alibabacloud.com/help/en/virtual-private-cloud/latest/work-with-flow-logs" target="_blank" rel="noopener noreferrer">https://www.alibabacloud.com/help/en/virtual-private-cloud/latest/work-with-flow-logs</a>

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.