13. 複数アカウント・リージョン管理理可能
One AWS Account With Resources in Multiple AWS Regions
Multiple AWS Accounts with Resources in One AWS Region
Multiple AWS Accounts With Resources in Multiple AWS Regions
21. CloudTrail + CloudSearch
② ③ ④
CloudTrail Amazon SNS
Topics
Amazon SQS
Queue
Amazon
⑦
ElasticBeanstalk
Worker Role
Amazon S3
Backet
Amazon
CloudSearch
①
⑤ ⑥
https://medium.com/aws-activate-startup-blog/searching-cloudtrail-logs-easily-with-amazon-cloudsearch-2d716e23efee
22. CloudTrail + Amazon Lambda
CloudTrail Amazon
Lambda
Amazon S3
Backet
Amazon
CloudSearch
① ②
③
23. CloudTrail + ElasticSearch + Kibana
② ③ ④
CloudTrail Amazon SNS
Topics
Amazon SQS
Queue
ElasticSearch
Amazon S3
Backet
①
⑤ ⑥
⑦
https://blogs.amazon.com/aws_̲solutions/archive/2014/10/processing-‐‑‒cloudtrail-‐‑‒logs-‐‑‒into-‐‑‒
logstashelasticsearchkibana.html
24. CloudTrail Processing Libraryの活⽤用
• AWS SDK for Javaに新しく追加された機能
• CloudTrailにログが転送されたタイミングでアクションをとりたい
• CloudTrail Processing Libraryを利利⽤用することで、簡単にイベント
ドリブン型の操作を実装可能
re:Invent2014で紹介された例例
– Reads messages delivered to SNS/SQS
– Downloads and reads S3 log files continuously
– Serializes the events into a Plain Old Java Object
– Allows you to implement your own custom logic to process
– Fault tolerant and supports multi threading
25. CloudTrail + CloudTrail Processing Library
CloudTrail Amazon SNS
Topics
Amazon SQS
Queue
http://www.slideshare.net/AmazonWebServices/sec306-turn-on-cloudtrail-log-api-
activity-in-your-aws-account-aws-reinvent-2014
Amazon
CloudTrail
Processing
Liibrary
Amazon S3
Backet
3rd Party
①
② ③ ④
⑤ ⑥
⑦
Amazon
DynamoDB
Amazon
Redshift
Amazon
CloudWatch
Amazon
SNS
42. CloudWatch Logsの設定(Linux)(1/3)
• Linuxの設定は、Pythonスクリプトで設定
[ec2-user@ip-10-0-10-104 ~]$ wget https://s3.amazonaws.com/aws-cloudwatch/downloads/awslogs-agent-setup-
v1.0.py
[ec2-user@ip-10-0-10-104 ~]$ sudo python ./awslogs-agent-setup-v1.0.py --region us-east-1
Launching interactive setup of CloudWatch Logs agent ...
Step 1 of 5: Installing pip ...DONE
Step 2 of 5: Downloading the latest CloudWatch Logs agent bits ... DONE
Step 3 of 5: Configuring AWS CLI ...
AWS Access Key ID [****************WLGA]:
AWS Secret Access Key [****************qVIu]:
Default region name [None]:
Default output format [None]:
Step 4 of 5: Configuring the CloudWatch Logs Agent ...
Path of log file to upload [/var/log/messages]:
Destination Log Group name [Linux Syslog Group]:
①Pythonスクリプトのダウンロード・実⾏行行
②Access Key/Secret Access Keyの⼊入⼒力力
※IAMロールの利利⽤用も可能
③Regionの⼊入⼒力力
④ファイルフォーマットの選択
⑤モニタリングするログファイルパスの⼊入⼒力力
⑥Log Groupの⼊入⼒力力
43. CloudWatch Logsの設定(Linux)(2/3)
Choose Log Stream name:
1. Use EC2 instance id.
2. Use hostname.
3. Custom.
Enter choice [1]:
Choose Log Event timestamp format:
1. %b %d %H:%M:%S (Dec 31 23:59:59)
2. %d/%b/%Y:%H:%M:%S (10/Oct/2000:13:55:36)
3. %Y-%m-%d %H:%M:%S (2008-09-08 11:52:54)
4. Custom
Enter choice [1]: 3
Choose initial position of upload:
1. From start of file.
2. From end of file.
Enter choice [1]: 1
More log files to configure? [Y]: n
Step 5 of 5: Setting up agent as a daemon ...DONE
⑦表⽰示されるインスタンスの選択
・インスタンスIDの利利⽤用
・ホスト名の利利⽤用
・カスタム⼊入⼒力力
⑧タイムスタンプの表⽰示形式設定
⑨ログの転送位置の設定
・ログファイルの初めから転送
・次回発⽣生するログから転送
49. Cloudwatch logs Agent
• Agent ログディレクトリ
– Linux: /var/log/awslogs.log, /var/log/awslogs-‐‑‒agent-‐‑‒setup.log
– Windows: C:Program FilesAmazonEc2ConfigServiceLogsEc2ConfigLog.txt
• Agent Requirement
• Python version 2.6, 2.7, 3.0, or 3.3
• Amazon Linux version 2014.03.02
• Ubuntu Server version 12.04, or 14.04
• CentOS version 6, 6.3, 6.4, or 6.5
• Red Hat Enterprise Linux (RHEL) version 6.5 or 7.0
• Windows
http://docs.aws.amazon.com/AmazonCloudWatch/latest/DeveloperGuide/CWL_GettingStarted.html