{"id":"vpc-flow-logs-asymmetric-firewall-visibility","text":"VPC Flow Logs provide asymmetric visibility into firewall-blocked traffic: egress denied packets are captured (sampled before egress firewall evaluation) but ingress denied packets are not captured — creating a systematic blind spot for inbound attack detection that must be supplemented with firewall rule logging or other network security tooling.","truth_value":"IN","source":"","source_url":"","source_hash":"","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"vpc-flow-logs-asymmetric-firewall-visibility","truth_value":"IN","reason":"premise"}]}}