Having visibility into the Amazon VPC infrastructure is a foundational element that any cloud administrator needs to maintain and operate an AWS infrastructure that is secure and functional. Visibility into your AWS infrastructure becomes increasingly important as it scales, because it gives you the ability to make key planning decisions and maintain security. This session is intended for anyone wanting to learn about network visibility on AWS, and it includes information about partners and real-life customer use cases. Come see how you, too, can gain insights into the network traffic that is traversing your AWS infrastructure.
42. The destination for mirrored traffic
A Traffic Mirror session establishes a relationship between a Traffic
Mirror source and a Traffic Mirror target
43. The destination for mirrored traffic
A Traffic Mirror session has three components:
44. The destination for mirrored traffic
Each Traffic Mirror source can support up to three sessions
Note: Session number determines priority, with
the lowest ID given the highest priority—a
packet can be mirrored only once
91. Other considerations
1. Mirrored traffic is not subject to the outbound security group
2. Flow Logs do not capture mirrored traffic
3. Packets will be mirrored only if they pass the
inbound security group or ACL
92. Other considerations
4. Data transfer when mirroring traffic
5. Routing mirrored traffic
6. Prioritization of production traffic
7. MTU size of mirrored traffic