Traffic mirror targets - Amazon Virtual Private Cloud
Create a traffic mirror targetView traffic mirror target detailsModify traffic mirror target tagsDelete a traffic mirror target
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Traffic mirror targets

A traffic mirror target is the destination for mirrored traffic. For more information, see Traffic mirror target concepts.

After you create a target, assign it to a traffic mirror session. For more information, see Create a traffic mirror session.

You must configure a security group for the traffic mirror target that allows VXLAN traffic (UDP port 4789) from the traffic mirror source.

You can share a traffic mirror target across accounts. For more information, see Cross-account targets.

Create a traffic mirror target

To create a traffic mirror target using the console

  1. Open the Amazon VPC console at https://console.amazonaws.cn/vpc/.

  2. In the Region selector, choose the Amazon Region that you used when you created the mirror target.

  3. On the navigation pane, choose Traffic Mirroring, Mirror targets.

  4. Choose Create traffic mirror target.

  5. (Optional) For Name tag, enter a name for the traffic mirror target.

  6. (Optional) For Description, enter a description for the traffic mirror target.

  7. For Target type, choose the type of the traffic mirror target:

    • Network interface

    • Network Load Balancer

    • Gateway Load Balancer endpoint

  8. For Target, choose the traffic mirror target. We display targets based on the target type that you selected in the previous step.

  9. (Optional) For each tag to add, choose Add new tag and enter the tag key and tag value.

  10. Choose Create.

To create a traffic mirror target using the Amazon CLI

Use the create-traffic-mirror-target command.

View traffic mirror target details

To view your traffic mirror targets using the console

  1. Open the Amazon VPC console at https://console.amazonaws.cn/vpc/.

  2. On the navigation pane, choose Traffic Mirroring, Mirror targets.

  3. Select the ID of the traffic mirror target to open its details page.

To view your traffic mirror targets using the Amazon CLI

Use the describe-traffic-mirror-targets command.

Modify traffic mirror target tags

To modify your traffic mirror target tags using the console

  1. Open the Amazon VPC console at https://console.amazonaws.cn/vpc/.

  2. On the navigation pane, choose Traffic Mirroring, Mirror targets.

  3. Select the ID of the traffic mirror target to open its details page.

  4. On the Tags tab, choose Manage tags.

  5. (Optional) For each tag to add, choose Add new tag and enter the tag key and tag value. For each tag to remove, choose Remove.

  6. Choose Save.

To modify your traffic mirror target tags using the Amazon CLI

Use the create-tags command to add a tag. Use the delete-tags command to remove a tag.

Delete a traffic mirror target

Before you can delete a traffic mirror target, you must remove it from any traffic mirror sessions.

To delete your traffic mirror target using the console

  1. Open the Amazon VPC console at https://console.amazonaws.cn/vpc/.

  2. On the navigation pane, choose Traffic Mirroring, Mirror targets.

  3. Select the traffic mirror target.

  4. Choose Delete.

  5. When prompted for confirmation, enter delete, and then choose Delete.

To delete a traffic mirror target using the Amazon CLI

Use the delete-traffic-mirror-target command.