Solution Brief

AWS VPC Flow Logs for Kentik

Suffering from cloud blindness?

The migration of applications from traditional data centers to cloud infrastructure is well underway. And it’s tempting to think that “the network” is just one of the many infrastructure management headaches that disappear after migrating to the cloud. However, most organizations find that understanding the network behavior of cloud-deployed applications is still a critical part of ensuring their availability and performance. But pervasive visibility of network traffic details hasn’t been available in the cloud.

See VPC Flow Logs clearly with Kentik

Kentik Cloud collects VPC (Virtual Private Cloud) and TGW (Transit Gateway) Flow Logs from AWS and provides comprehensive network analytics so cloud ops teams can stop flying blind. VPC Flow Logs provide granular details of all network activity to, from, and between instances within AWS VPCs without requiring individual instrumentation of instances or services. Since Transit Gateways sit at central points of customer AWS networks and observe traffic passing through multiple VPCs, they can efficiently generate aggregated flow logs, making it easier to identify and troubleshoot issues that span multiple environments. Streamed to Kentik’s observability platform in real-time, both VPC and TGW Flow Logs provide powerful insight for teams across the organization.

Executives

Executives gain multi-cloud observability built for hybrid infrastructure, which futureproofs teams against rising complexity, and helps decrypt costs to unlock cloud savings. Kentik’s network-level insight keeps investigations from devouring engineering cycles, so teams can do more in less time. Customizable dashboards give executives insight into user/customer experience KPI trends, and visualize the big picture of cloud infrastructure performance and budget.

AWS cost attribution - optimize cloud network costs

NetOps and NetEng teams

Network operators and engineers gain the ability to visualize traffic flows between regions, understand service dependencies and identify connectivity issues within the cloud environment or between cloud and on-premise infrastructure, and utilize a data-driven approach to cloud infrastructure planning, growth, and cost management.

AWS topology - On-prem, Direct Connection and Transit Gateways

SecOps teams

Security engineering and operations teams gain pervasive instrumentation of potential threat activity to, from, and within AWS environments for faster incident response and more granular forensic analysis.

AWS Flow Logs - harden zero-trust policy

DevOps and SRE teams

Fast filtering, pivots, and drill-downs provide instant situational awareness, so DevOps and SRE (site reliability engineering) teams can quickly get to root cause and gather the details they need to restore services to a healthy state. Kentik highlights inter-service communications and connectivity issues without the need to dig into code. Refining cloud network policies becomes much more efficient with quick insight into denied traffic, and how it relates to access control list and security group configuration.

We use cookies to deliver our services.
By using our website, you agree to the use of cookies as described in our Privacy Policy.