Google Cloud is launching a brand new function immediately that can give its customers a brand new approach to monitor and optimize how their information flows between their servers within the Google Cloud and different Google Companies, on-premises deployments and just about every other web endpoint. Because the identify implies, VPC Flow Logs are meant for companies that already use Google’s Virtual Private Cloud options to isolate their sources from different customers.
VPC Stream Logs displays and logs all of the community flows (each UDP and TCP) which can be despatched from and acquired by the digital machines inside a VPC, together with site visitors between Google Cloud areas. All of that information could be exported to Stackdriver Logging or BigQuery, if you wish to preserve it within the Google Cloud, or you need to use Cloud Pub/Sub to export it to different real-time analytics or safety platforms. The information updates each 5 seconds and Google guarantees that utilizing this service has no affect on the efficiency of your deployed functions.
As the corporate notes in immediately’s announcement, this may permit community operators to get way more perception into the main points of how the Google community performs and to troubleshoot points in the event that they come up. As well as, it is going to permit them to optimize their community utilization and prices by giving them extra details about their international site visitors.
All of this information can be fairly helpful for performing forensics when it seems like any person might have gotten into your community, too. If that’s your important use case, although, you most likely wish to export your information to a specialised safety info and occasion administration (SIEM) platform from distributors like Splunk or ArcSight.