How can I find the resource that owns the unknown IP addresses in my Amazon VPC?


I trying to find the top contributors to traffic through the NAT gateway in my VPC. Therefore I've obtained a IP list through VPC flow logs. (

However there are some IPs that I can't find either using the network interface console or describe-network-interfaces aws cli command. (

Is there any other way to find them?

1 Answer

These mysterious IPs could be in use by AWS Services. To determine this, you can use custom logging [1] that includes the fields pkt-src-aws-service and pkt-dst-aws-service. If this traffic is going to or from an AWS Service, this should show up clearly in these fields.


profile pictureAWS
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions