---
names: 
  full: "Google GCE Network DNS Policy Logging is not enabled"
  contextual: "GCE Network DNS Policy Logging is not enabled"
description: "Cloud DNS logging records the queries from the name servers within your VPC to Stackdriver. \
  Logged queries can come from Compute Engine VMs, GKE containers, or other GCP resources provisioned \ 
  within the VPC. "
type: "COMPLIANCE_POLICY"
categories:
  - "SECURITY"
frameworkMappings:
  - "/frameworks/cis-gcp-v4.0.0/02/12"
  - "/frameworks/cloudaware/logging-and-monitoring/logging-and-monitoring-configuration"
  - "/frameworks/nist-sp-800-53-r5/au/06"
  - "/frameworks/nist-sp-800-53-r5/au/07"
  - "/frameworks/pci-dss-v4.0/10/04/01"
  - "/frameworks/pci-dss-v4.0/10/04/01/01"
  - "/frameworks/pci-dss-v4.0/10/04/02"
  - "/frameworks/pci-dss-v4.0/10/04/03"
  - "/frameworks/iso-iec-27001-2022/05/25"
  - "/frameworks/nist-csf-v1.1/de-ae/02"
  - "/frameworks/nist-csf-v1.1/pr-pt/01"
  - "/frameworks/nist-csf-v1.1/rs-an/01"
  - "/frameworks/soc-2/cc4/01/01"
  - "/frameworks/soc-2/cc4/01/02"
  - "/frameworks/soc-2/cc4/01/03"
  - "/frameworks/soc-2/cc4/01/04"
  - "/frameworks/soc-2/cc4/01/05"
  - "/frameworks/soc-2/cc4/01/06"
  - "/frameworks/soc-2/cc4/01/07"
  - "/frameworks/soc-2/cc4/01/08"
  - "/frameworks/soc-2/cc7/03/01"
  - "/frameworks/soc-2/cc7/03/02"
  - "/frameworks/soc-2/cc7/03/03"
  - "/frameworks/soc-2/cc7/03/04"
  - "/frameworks/soc-2/cc7/03/05"
similarPolicies:
  cloudConformity:
    - url: "https://www.trendmicro.com/cloudoneconformity/knowledge-base/gcp/CloudVPC/dns-logging-for-vpcs.html"
      name: "Enable Cloud DNS Logging for VPC Networks"