FlowLog

Describes a flow log.

creationTime

The date and time the flow log was created.

Type: Timestamp

Required: No

deliverLogsErrorMessage

Information about the error that occurred. Rate limited indicates that CloudWatch Logs throttling has been applied for one or more network interfaces, or that you've reached the limit on the number of log groups that you can create. Access error indicates that the IAM role associated with the flow log does not have sufficient permissions to publish to CloudWatch Logs. Unknown error indicates an internal error.

Type: String

Required: No

deliverLogsPermissionArn

The ARN of the IAM role that posts logs to CloudWatch Logs.

Type: String

Required: No

deliverLogsStatus

The status of the logs delivery (SUCCESS | FAILED).

Type: String

Required: No

flowLogId

The flow log ID.

Type: String

Required: No

flowLogStatus

The status of the flow log (ACTIVE).

Type: String

Required: No

logDestination

Specifies the destination to which the flow log data is published. Flow log data can be published to an CloudWatch Logs log group or an Amazon S3 bucket. If the flow log publishes to CloudWatch Logs, this element indicates the Amazon Resource Name (ARN) of the CloudWatch Logs log group to which the data is published. If the flow log publishes to Amazon S3, this element indicates the ARN of the Amazon S3 bucket to which the data is published.

Type: String

Required: No

logDestinationType

Specifies the type of destination to which the flow log data is published. Flow log data can be published to CloudWatch Logs or Amazon S3.

Type: String

Valid Values: cloud-watch-logs | s3

Required: No

logGroupName

The name of the flow log group.

Type: String

Required: No

resourceId

The ID of the resource on which the flow log was created.

Type: String

Required: No

trafficType

The type of traffic captured for the flow log.

Type: String

Valid Values: ACCEPT | REJECT | ALL

Required: No

FlowLog

Contents

See Also