You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Enable VPC Flow Logs with the default VPC in all regions.
Remove all rules associated with default route tables, default network ACLs and default security groups in the default VPC in all regions.
Inputs
Name
Description
Type
Default
Required
enabled
The boolean flag whether this module is enabled or not. No resources are created when set to false.
string
"true"
no
tags
Specifies object tags key and value. This applies to all resources created by this module.
map
{ "Terraform": true }
no
vpc_flow_logs_iam_role_arn
The ARN of the IAM Role which will be used by VPC Flow Logs.
string
n/a
yes
vpc_log_group_name
The name of CloudWatch Logs group to which VPC Flow Logs are delivered.
string
n/a
yes
vpc_log_retention_in_days
Number of days to retain logs for. CIS recommends 365 days. Possible values are: 0, 1, 3, 5, 7, 14, 30, 60, 90, 120, 150, 180, 365, 400, 545, 731, 1827, and 3653. Set to 0 to keep logs indefinitely.
string
n/a
yes
Outputs
Name
Description
default_network_acl
The default network ACL.
default_route_table
The default route table.
default_security_group
The default security group.
default_vpc
The default VPC.
vpc_flow_logs_group
The CloudWatch Logs log group which stores VPC Flow Logs.