AWS VPC Flow Log IEs
NetObserv Flow supports the following AWS VPC Flow Log information elements (IE).
| Name | Community | Basic | Standard | Premium |
|---|---|---|---|---|
| version | ✓ | ✓ | ✓ | ✓ |
| region | ✓ | ✓ | ✓ | ✓ |
| az-id | ✓ | ✓ | ✓ | ✓ |
| account-id | ✓ | ✓ | ✓ | ✓ |
| vpc-id | ✓ | ✓ | ✓ | ✓ |
| subnet-id | ✓ | ✓ | ✓ | ✓ |
| instance-id | ✓ | ✓ | ✓ | ✓ |
| interface-id | ✓ | ✓ | ✓ | ✓ |
| sublocation-type | ✓ | ✓ | ✓ | ✓ |
| sublocation-id | ✓ | ✓ | ✓ | ✓ |
| srcaddr | ✓ | ✓ | ✓ | ✓ |
| dstaddr | ✓ | ✓ | ✓ | ✓ |
| srcport | ✓ | ✓ | ✓ | ✓ |
| dstport | ✓ | ✓ | ✓ | ✓ |
| protocol | ✓ | ✓ | ✓ | ✓ |
| start | ✓ | ✓ | ✓ | ✓ |
| end | ✓ | ✓ | ✓ | ✓ |
| type | ✓ | ✓ | ✓ | ✓ |
| packets | ✓ | ✓ | ✓ | ✓ |
| bytes | ✓ | ✓ | ✓ | ✓ |
| action | ✓ | ✓ | ✓ | ✓ |
| tcp-flags | ✓ | ✓ | ✓ | ✓ |
| pkt-srcaddr | ✓ | ✓ | ✓ | ✓ |
| pkt-dstaddr | ✓ | ✓ | ✓ | ✓ |
| pkt-src-aws-service | ✓ | ✓ | ✓ | ✓ |
| pkt-dst-aws-service | ✓ | ✓ | ✓ | ✓ |
| traffic-path | ✓ | ✓ | ✓ | ✓ |
| flow-direction | ✓ | ✓ | ✓ | ✓ |
| log-status | ✓ | ✓ | ✓ | ✓ |
| ecs-cluster-name | ✓ | ✓ | ✓ | ✓ |
| ecs-cluster-arn | ✓ | ✓ | ✓ | ✓ |
| ecs-container-instance-id | ✓ | ✓ | ✓ | ✓ |
| ecs-container-instance-arn | ✓ | ✓ | ✓ | ✓ |
| ecs-task-id | ✓ | ✓ | ✓ | ✓ |
| ecs-task-arn | ✓ | ✓ | ✓ | ✓ |
| ecs-container-id | ✓ | ✓ | ✓ | ✓ |
| ecs-second-container-id | ✓ | ✓ | ✓ | ✓ |