To capture the AWS flows in Network Insight, enable the flow logging in the AWS console.


Create a CloudWatch log group in AWS for publishing VPC level flow logs and then Flow Logs per the VPC of interest using the same log group.

Create a flow logs role that has sufficient permission to publish the flow log to the CloudWatch Logs log group. See


  1. Navigate to the CloudWatch Logs page.
  2. Create a Log Group.
  3. Change the retention period to the appropriate duration based on the required analysis period.
  4. Choose a VPC, and click Create Flow Log.
  5. Enter the required information to configure the flow logs.