Alert Logic® log management can be configured to collect Amazon Web Services (AWS) VPC flow logs but first you will need to export the AWS CloudWatch logs to an S3 bucket. Instructions on exporting AWS CloudWatch logs to an S3 bucket are available on the Alert Logic public GitHub page.
Once the AWS CloudWatch logs are exported to S3, they can be collected using S3 log sources in the usual way. This is supported by the Alert Logic Product Support team. You can find information on configuring S3 log sources for collection within our Log Management Collection Sources documentation.
Note: This information applies only to customers with Alert Logic® Cloud Defender™ or Alert Logic Log Manager™ entitlements. If you are an MDR customer, please refer to the following document.
Note: The Alert Logic public GitHub is made available to customers strictly for informational purposes and is not supported by the Alert Logic Product Support team at this time.