Global Accelerator flow logs are disabled. Affecting Global Accelerator service in AWS


Severity

0.0
medium
0
10
Severity Framework
Snyk CCSS
Rule category
Logging/ Logging

Is your environment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
Frameworks
CIS-ControlsHIPAAISO-27001NIST-800-53SOC-2
  • Snyk IDSNYK-CC-00331
  • creditSnyk Research Team

Description

AWS Global Accelerator is a networking service that helps you improve the availability, performance, and security of your public applications. Flow logs enable you to capture information about the IP address traffic going to and from network interfaces in your accelerator in AWS Global Accelerator.

How to fix?

Set the flow_logs_enabled attribute to true in the resource aws_globalaccelerator_accelerator.

Example Configuration


resource "aws_globalaccelerator_accelerator" "allow" {
  name            = "allow-global-accelerator"
  ip_address_type = "IPV4"
  enabled         = true

  attributes {
    flow_logs_enabled   = true
    flow_logs_s3_bucket = "bucket-flow-logs"
    flow_logs_s3_prefix = "flow-logs/"
  }
}