Flow logs are a powerful feature of Amazon Virtual Private Cloud (VPC) that allow you to record the network traffic in a VPC and inspect it later. Amazon Athena is a serverless interactive query service that allows you to interrogate data stored in a number of different data stores.
By learning how to capture and query Amazon VPC flow logs, you will be able to debug and analyse your VPC networks with ease.
In this lab, you will configure an Amazon S3 bucket to store flow logs, you will enable flow logs for an Amazon VPC, and you will query the flow logs using Amazon Athena.
Learning Objectives
Upon completion of this beginner level lab, you will be able to:
- Configure an Amazon S3 bucket policy
- Enable Amazon VPC flow logs VPC wide
- Run queries on flow log data stored in Amazon S3 using Amazon Athena
Intended Audience
- Candidates for the AWS Solutions Architect Associate certification
- Cloud Architects
- Data Engineers
- DevOps Engineers
Prerequisites
Familiarity with the following will be beneficial but is not required:
- Amazon Simple Storage Service (S3)
- Amazon Virtual Private Cloud (VPC)
- Amazon Athena
The following courses can be used to fulfill the prerequisites:
- Storage Fundamentals for AWS
- How to Implement & Enable Logging Across AWS Services (Part 2 of 2)
- Analyzing Data with Amazon Athena
Updates
September 8th, 2023 - Updated the instructions and screenshots to reflect the latest UI
Andrew is a Labs Developer with previous experience in the Internet Service Provider, Audio Streaming, and CryptoCurrency industries. He has also been a DevOps Engineer and enjoys working with CI/CD and Kubernetes.
He holds multiple AWS certifications including Solutions Architect Associate and Professional.