Points You cannot modify flow logs once you created it You’ll need to specify service role for vpc logs if the destination is bucket you would need to create a bucket policy also