Enable VPC flow logs and intranode visibility

Error: VPC flow logs and intranode visibility are disabled

Bridgecrew Policy ID: BC_GCP_KUBERNETES_18
Checkov Check ID: CKV_GCP_61
Severity: MEDIUM

VPC flow logs and intranode visibility are disabled

Description

Enable VPC Flow Logs and Intranode Visibility to see pod-level traffic, even for traffic within a worker node. With this feature, you can use VPC Flow Logs or other VPC features for intranode traffic.

Fix - Buildtime

Terraform

Resource: google_container_cluster
Argument: enable_intranode_visibility

resource "google_container_cluster" "example" {
  name               = var.name
  location           = var.location
  project            = data.google_project.project.name
+ enable_intranode_visibility = true

Updated 4 months ago