Checks whether the access log feature is enabled for each Server Load Balancer (SLB) instance. If so, the evaluation result is Compliant.
Scenarios
As an Internet access point, SLB distributes a large number of access requests. You can use access logs to analyze the behavior and geographical distribution of client users and troubleshoot issues.
Risk level
Default risk level: low.
When you apply this rule, you can change the risk level based on your business requirements.
Compliance evaluation logic
If the access log feature is enabled for each SLB instance, the evaluation result is Compliant.
If the access log feature is not enabled for an SLB instance, the evaluation result is Non-compliant.
If Layer 7 monitoring is not enabled for SLB instances, the access log feature cannot be enabled and the evaluation result is Not Applicable.
Rule details
Item | Description |
Rule name | slb-instance-log-enabled |
Rule ID | |
Tag | SLB and LoadBalancer |
Automatic remediation | Not supported |
Trigger type | Periodic execution |
Evaluation frequency | Every 24 hours |
Supported resource type | SLB instance |
Input parameter | None |
Non-compliance remediation
Enable the access log feature for each SLB instance. For more information, see Configure access logs.