Ensure Tencent Cloud VPC flow logs are enabled

Description

This policy checks whether VPC flow logs are enabled for Tencent Cloud VPC. VPC flow logs provide valuable information about the traffic flowing through a VPC, which can be used for security monitoring, troubleshooting, and compliance. Enabling VPC flow logs is essential for detecting and responding to potential security threats. By ensuring that VPC flow logs are enabled, organizations can improve their overall security posture and meet regulatory requirements.

Code Example

terraform

resource "tencentcloud_vpc_flow_log" "example" {
  vpc_id = tencentcloud_vpc.example.id
  flow_log_name = "example"
  enable = true
}

Remediation

Enable VPC flow logs by setting the 'enable' attribute to True.

Rule Details

Field	Value
ID	IAC-1331
Severity	MEDIUM
IaC Type	Terraform
Frameworks	tencentcloud_vpc_flow_log_config
Checkov ID	CKV_TC_14

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Ensure Tencent Cloud VPC flow logs are enabled

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Ensure Tencent Cloud VPC flow logs are enabled ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Ensure Tencent Cloud VPC flow logs are enabled

Description

Code Example

Remediation

Rule Details

References