Configure Flow Logs
Prerequisites: You should have write access permissions to an IONOS Cloud S3 Object Storage bucket. You have an S3 Object Storage instance with a bucket that exists for your flow logs. To create an S3 Object Storage bucket, see the IONOS Cloud S3 Object Storage page.

1. Open Settings in the Inspector pane
2. To activate flow logs, open the Flowlog drop-down and fill in the following fields:
  • Name: enter a name for the flow log rule. The name will also be the first part of the objects’ name prefix.
  • Direction: choose Ingress to create flow logs for incoming traffic, Egress for outgoing traffic, or Bidirectional to create flow logs for all traffic.
  • Action: choose Rejected to capture only traffic blocked by the firewall, Accepted to capture only traffic allowed by the firewall, or Any for all traffic.
  • Target S3 bucket: enter a valid existing S3 Object Storage bucket name and an optional object name prefix where flow log records should be written.
  • Select Add flow log to complete the configuration of the flow log. It becomes applied once you provision your changes.
Creating a flow log in the properties of NIC
As a result, an activated flow log rule is indicated by a green light in the properties of the NIC. A green light indicates that the configuration has been validated and is valid for provisioning.
3. Select Provision changes. After provisioning is complete, the network interface flow logs are activated.

  1. 1.
    In the Inspector pane, open the Settings
  2. 2.
    Open the Flowlog drop-down
  3. 3.
    Select the trash bin icon to delete the flow log
  4. 4.
    In the confirmation message, select OK
Select Provision changes. After provisioning is complete, the network interface's flow logs are deleted and no longer captured.
Note: Deleting a flow log does not delete the existing log streams from your bucket. Existing flow log data must be deleted using the respective service's console. In addition, deleting the flow log that is published to S3 Object Storage does not remove the bucket policies and log file access control lists (ACLs).
Export as PDF
Copy link
On this page
Creating a flow log
Deleting a flow log