Amazon VPC Flow Logs introduces additional metadata

Amazon VPC Flow Logs now supports EC2 resource tags and next-hop interface metadata, simplifying network monitoring and troubleshooting

Published: 2026-06-11

Amazon VPC Flow Logs now supports EC2 resource tags and next-hop interface metadata. With EC2 resource tag support, you can embed tag values from your network interfaces, EC2 instances, and auto scaling groups. This eliminates the need to join flow log data with separate tag metadata to correlate records with specific workloads. With next-hop metadata support, you can capture details about the next-hop network interface for each flow, including its interface ID, subnet, Availability Zone, VPC, and interface type. These fields help you understand how traffic traverses through network resources such as NAT Gateways, Network Load Balancers, and Transit Gateways without requiring manual correlation of multiple data sources.

Amazon VPC

Read the original AWS announcement

Related articles and terms

Amazon VPCA service for building a logically isolated virtual network within the AWS cloud, giving you full control over IP address ranges, routing, and security Tag Design Determines Operations - Trivia and Practical Naming Conventions for AWS Resource Tagging StrategyWe explain why AWS resource tags are not just labels but the foundation for cost allocation, access control, and automation, covering tag key naming conventions, how to use the 50-tag limit, and governance through tag policies.AWS PrivateLinkConnect privately from your VPC to AWS services and third-party services without traversing the internet Amazon VPC Network Design - Subnet Architecture and NAT Gateway OptimizationLearn how to design public/private subnet separation, layered security group management, and reduce NAT Gateway costs with Gateway VPC Endpoints.The Truth Behind EC2 Metadata at 169.254.169.254 - Link-Local Addresses and IMDSv2 DesignLearn why the EC2 Instance Metadata Service endpoint 169.254.169.254 is a link-local address, the history of SSRF exploitation, and how IMDSv2's token-based authentication came to be.

Updates from around the same time

New featureMedium

Amazon EC2 M9g and M9gd general purpose instances are now available

Amazon EC2 M9g and M9gd instances are now generally available, powered by AWS Graviton5 processors, delivering up to 25% better compute performance compared to previous generations.

Amazon EC2

2026-06-11View details on AWS

New featureMedium

Gemma 4 models now available on Amazon Bedrock

Amazon Bedrock now offers the Gemma 4 family from Google DeepMind, enabling generative AI applications across reasoning, multimodal understanding, and software engineering workflows.

2026-06-11View details on AWS

New featureMedium

Amazon EC2 Capacity Blocks for ML is now available in AWS GovCloud (US) Regions

Amazon EC2 Capacity Blocks for ML is now available in AWS GovCloud (US) regions, allowing government and regulated-industry customers to reserve GPU capacity for machine learning workloads.

Amazon EC2

2026-06-12View details on AWS

New featureMedium

Amazon ECS Managed Daemons now support inter-task visibility and communication

Amazon ECS Managed Daemons now allow configuration of pidMode and ipcMode settings, enabling daemon processes to access instance-wide resources and shared namespaces with other containers

Amazon ECS

2026-06-11View details on AWS

New featureMedium

Amazon EC2 High Memory U7i-8TB instances now available in AWS Europe (Paris) region

Amazon EC2 High Memory U7i-8TB instances feature 4th-gen Intel Xeon Scalable processors and 8 TiB of DDR5 memory, ideal for mission-critical in-memory databases like SAP HANA, Oracle, and SQL Server.

Amazon EC2

2026-06-12View details on AWS

New featureMedium

Amazon EC2 Future-dated Capacity Reservations Now Supports Cancellation

Amazon EC2 future-dated Capacity Reservations now allow cancellation of reservations, with potential charges displayed for review before proceeding.

Amazon EC2

2026-06-11View details on AWS