Configure Flow Logs

Create a flow log

1. In the Inspector pane, open the Settings tab.

2. To activate flow logs, open the Flowlog drop-down and fill in the following fields:

• Name: Enter a name for the flow log rule. The name will also be the first part of the objects' name prefix.

• Direction: Choose Ingress to create flow logs for incoming traffic, Egress for outgoing traffic, or Bidirectional to create flow logs for all traffic.

• Action: Choose Rejected to capture only traffic blocked by the firewall, Accepted to capture only traffic allowed by the firewall, or Any for all traffic.

• Target S3 bucket: Enter a valid existing IONOS S3 Object Storage bucket name and an optional object name prefix where flow log records should be written.

• Add flow log: To complete the configuration of the flow log. It becomes applied once you provision your changes.

As a result, an activated flow log rule is indicated by a green light in the properties of the NIC. A green light indicates that the configuration has been validated and is valid for provisioning.

3. Select PROVISION CHANGES. After provisioning is complete, the network interface flow logs are activated.

Delete a flow log

1. In the Inspector pane, open the Settings tab.

2. Open the Flowlog drop-down.

3. Select the trash bin icon to delete the flow log.

4. In the confirmation message, select OK.

Select PROVISION CHANGES. After provisioning is complete, the network interface's flow logs are deleted and no longer captured.