Skip to main content

Configure VPC Endpoint Unused Traffic Detection

Quick Links

Configure VPC Endpoint Unused Traffic Detection
Use Case for VPC Endpoint Unused Traffic Detection
Triage Guides by Violation Type
1. Triage VPC Endpoint Unused Traffic Detection BYTES_PROCESSED_BELOW_THRESHOLD
2. Triage VPC Endpoint Unused Traffic Detection NEW_CONNECTIONS_BELOW_THRESHOLD

How do I enable this policy?

Signature:
  Type: Pyrae::Policy::PolicyDocument::Signatory
  Properties:
    SignatureTeamUrn: { "PyRef": "PyraeTeam" }
    PolicyUrn: "urn:pyrae:policy:us-west-2:sAutx4ZxiqTJUzJdvky2km:policy/VpcEndpointUnusedTrafficDetection"

What permissions does this policy require in my AWS account?

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "cloudwatch:GetMetricData"
      ],
      "Resource": "*"
    }
  ]
}

What resources match this policy?

Type: Pyrae::Observer::MatchingRule
Properties:
  MatchAccountType: aws
  MatchUrnService: ec2
  MatchUrnResourceType: vpc-endpoint

Quick Links
How do I enable this policy?
What permissions does this policy require in my AWS account?
What resources match this policy?