Bash Script to Enable VPC Flow Logs on all subnets in a GCP Project

UpdatedMarch 8, 2023

•1 min read

Bash Script to Enable VPC Flow Logs on all subnets in a GCP Project

Hi there, I'm a prior hybrid network engineer transformed cloud engineer, and I enjoy writing posts about my technical journey including implementation guides, insights, tips, scripts and graphics from what I've gleaned along the way.

Part of seriesGCP

Here's a super simple bash script to enable VPC flow logs on every subnet across a specified GCP project with an option to include or exclude logging metadata that I wrote. It has the aggregation interval set to 10-min however, you could modify this to your needs in addition to setting additional flags available for the VPC flow log settings.

Here are some use cases for enabling VPC flow logs:

Network monitoring: diagnostics and capacity forecasting
Network traffic optimization expenses: inter-region and zone traffic analysis
Network forensics: examine compromised IPs
Real-time security analysis: SIEM integration

Link to script: https://github.com/jksprattler/gcp-networking/blob/main/scripts/enable-flowlogs.sh

#google-cloud #vpc #bash #networking

52 views

Comments

Join the discussion

No comments yet. Be the first to comment.

GCP

Part 3 of 3

Start from the beginning

Create GCP Compute Commitments Across a Project | Bash Script

Overview Create GCP compute commitments across an entire project running a fleet of globally distributed resources using my latest bash script. The script is configured to purchase 12-month committed resources based on multiple required input values ...

More from this blog

AWS IAM User Management | Terraform & Boto3 Scripts

Overview Finding the balance between ensuring the security of user identities while providing a self-service user experience takes continuous effort. With the constantly evolving cloud landscape and the security around it, IAM user administration can...

Sep 20, 20236 min read87

AWS IAM User Management | Terraform & Boto3 Scripts

Detect Your VM's Cloud Provider and Region | Bash Script

Overview Managing a global fleet of virtual machines (VMs) across various cloud service providers (CSPs) can be a challenging task. Depending on the naming convention applied to your hostnames, quickly identifying the CSP and region for a VM could be...

Aug 9, 20233 min read138

Detect Your VM's Cloud Provider and Region | Bash Script

AWS S3 Object Finder | Boto3 Script

Overview 🔎 Quickly find AWS S3 Objects inside buckets hosting huge volumes of files using my latest Boto3 script! You can easily locate specific objects in your AWS profile by providing a few command line arguments. By specifying the AWS profile, bu...

Jun 12, 20238 min read144

AWS Kubernetes Cluster Checkouts | Bash Script

Overview Perform checkouts against your AWS Kubernetes cluster before and after implementing changes such as upgrades by using my latest Bash shell script! I took my AKS checkouts script from a couple of weeks ago and converted it into an EKS checkou...

Jun 6, 20232 min read61

AWS Kubernetes Cluster Checkouts | Bash Script

AWS Find AMIs | Boto3 Script

Overview Capture a list of available AWS AMIs for a specified region and OS version with my latest boto3 script. This Python script will output a color-coded table listing AMIs that have been released within the last 30 days with the owner alias set ...

May 31, 20235 min read198

Jenna's Runbooks

24 posts

Writing about topics such as Multi-Cloud Infrastructure, Security, DevOps, Networking, and Automation on AWS, Azure, and GCP

Command Palette

Comments

GCP

Create GCP Compute Commitments Across a Project | Bash Script

More from this blog