Skip to main content

Configure VPC Endpoint Unused Traffic Detection

  1. Configure VPC Endpoint Unused Traffic Detection
  2. Use Case for VPC Endpoint Unused Traffic Detection
  3. Triage Guides by Violation Type
    1. Triage VPC Endpoint Unused Traffic Detection BYTES_PROCESSED_BELOW_THRESHOLD
    2. Triage VPC Endpoint Unused Traffic Detection NEW_CONNECTIONS_BELOW_THRESHOLD

How do I enable this policy?

Signature:
Type: Pyrae::Policy::PolicyDocument::Signatory
Properties:
SignatureTeamUrn: { "PyRef": "PyraeTeam" }
PolicyUrn: "urn:pyrae:policy:us-west-2:sAutx4ZxiqTJUzJdvky2km:policy/VpcEndpointUnusedTrafficDetection"

What permissions does this policy require in my AWS account?

{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"cloudwatch:GetMetricData"
],
"Resource": "*"
}
]
}

What resources match this policy?

Type: Pyrae::Observer::MatchingRule
Properties:
MatchAccountType: aws
MatchUrnService: ec2
MatchUrnResourceType: vpc-endpoint