Links

Configure Flow Logs

Prerequisites: You should have write access permissions to an IONOS S3 Object Storage bucket. You have an IONOS S3 Object Storage instance with a bucket that exists for your flow logs. To create an IONOS S3 Object Storage bucket, see the IONOS S3 Object Storage page.

Creating a flow log

1. Open Settings in the Inspector pane
2. To activate flow logs, open the Flowlog drop-down and fill in the following fields:
  • Name: enter a name for the flow log rule. The name will also be the first part of the objects’ name prefix.
  • Direction: choose Ingress to create flow logs for incoming traffic, Egress for outgoing traffic, or Bidirectional to create flow logs for all traffic.
  • Action: choose Rejected to capture only traffic blocked by the firewall, Accepted to capture only traffic allowed by the firewall, or Any for all traffic.
  • Target S3 bucket: enter a valid existing IONOS S3 Object Storage bucket name and an optional object name prefix where flow log records should be written.
  • Select Add flow log to complete the configuration of the flow log. It becomes applied once you provision your changes.
Creating a flow log in the properties of NIC
As a result, an activated flow log rule is indicated by a green light in the properties of the NIC. A green light indicates that the configuration has been validated and is valid for provisioning.
3. Select Provision changes. After provisioning is complete, the network interface flow logs are activated.

Deleting a flow log

  1. 1.
    In the Inspector pane, open the Settings
  2. 2.
    Open the Flowlog drop-down
  3. 3.
    Select the trash bin icon to delete the flow log
  4. 4.
    In the confirmation message, select OK
Select Provision changes. After provisioning is complete, the network interface's flow logs are deleted and no longer captured.
Note: Deleting a flow log does not delete the existing log streams from your bucket. Existing flow log data must be deleted using the respective service's console. In addition, deleting the flow log that is published to IONOS S3 Object Storage does not remove the bucket policies and log file access control lists (ACLs).