github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/google/compute/AVD-GCP-0029/Terraform.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/google/compute/AVD-GCP-0029/Terraform.md (about)

     1  
     2  Enable VPC flow logs
     3  
     4  ```hcl
     5  resource "google_compute_subnetwork" "good_example" {
     6    name          = "test-subnetwork"
     7    ip_cidr_range = "10.2.0.0/16"
     8    region        = "us-central1"
     9    network       = google_compute_network.custom-test.id
    10    secondary_ip_range {
    11      range_name    = "tf-test-secondary-range-update1"
    12      ip_cidr_range = "192.168.10.0/24"
    13    }
    14    log_config {
    15      aggregation_interval = "INTERVAL_10_MIN"
    16      flow_sampling        = 0.5
    17      metadata             = "INCLUDE_ALL_METADATA"
    18    }
    19  }
    20  resource "google_compute_network" "custom-test" {
    21    name                    = "test-network"
    22    auto_create_subnetworks = false
    23  }
    24  
    25  ```
    26  
    27  #### Remediation Links
    28   - https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_subnetwork#enable_flow_logs
    29