turbot/aws_compliance

Query: vpc_flow_logs_enabled

Usage

powerpipe query aws_compliance.query.vpc_flow_logs_enabled

Steampipe Tables

SQL

select
distinct arn as resource,
case
when v.account_id <> v.owner_id then 'skip'
when f.resource_id is not null then 'ok'
else 'alarm'
end as status,
case
when v.account_id <> v.owner_id then vpc_id || ' is a shared VPC.'
when f.resource_id is not null then vpc_id || ' flow logging enabled.'
else vpc_id || ' flow logging disabled.'
end as reason,
v.region,
v.account_id
from
aws_vpc as v
left join aws_vpc_flow_log as f on v.vpc_id = f.resource_id;

Controls

The query is being used by the following controls: