AWS Monitoring, Audit & Performance

Maarek SAA-C03 Slides v45 — Chapter 22. Personal study extract.

Key content

• AWS Monitoring, Audit and
• Performance
• CloudWatch, CloudTrail & AWS Config
• Amazon CloudWatch Metrics
• CloudWatch Metric Streams
• metrics to a destination of your choice,
• with near-real-time delivery and low
• latency.
• its destinations)
• Dynatrace, New Relic, Splunk, Sumo
• Logic…
• a subset of them
• CloudWatch Metrics
• Amazon S3 Amazon
• Redshift
• Amazon
• OpenSearch
• Kinesis Data Firehose
• Athena
• Stream near-real-time
• CloudWatch Logs
• CloudWatch Logs - Sources
• CloudWatch Logs Insights
• CloudWatch Logs Insights
• "ERROR" in your logs…
• events
• aggregate statistics, sort events, limit number of events…
• CloudWatch Logs – S3 Export
• become available for export
• Logs Subscriptions instead
• CloudWatch Logs Amazon S3
• CloudWatch Logs Subscriptions
• CloudWatch Logs Subscription Filter
• Lambda
• Kinesis Data Firehose
• Kinesis Data Streams
• OpenSearch
• Service
• S3
• logs
• real-time
• near
• real-time
• KDF KDA EC2 Lambda
• …
• CloudWatch Logs Aggregation
• Multi-Account & Multi Region
• CloudWatch Logs Subscription Filter
• CloudWatch Logs Subscription Filter
• CloudWatch Logs Subscription Filter
• Kinesis Data Streams Kinesis Data Firehose
• Near
• Real Time
• Amazon S3
• ACCOUNT A
• REGION 1
• ACCOUNT B
• REGION 2
• ACCOUNT B
• REGION 3
• CloudWatch Logs Subscriptions
• AWS account (KDS, KDF)
• Account – Sender
• (111111111111)
• CloudWatch
• Logs
• Subscription
• Filter
• logs
• Account – Recipient
• (999999999999)
• Kinesis Data Streams
• (RecipientStream)
• Subscription
• Destination
• Destination
• Access Policy
• IAM Role
• IAM Role
• (Cross-Account)
• Destination
• Access Policy
• logs
• Can be assumed
• allow PutRecord
• CloudWatch Logs for EC2
• machine will go to CloudWatch
• agent on EC2 to push the log files
• you want
• correct
• setup on-premises too EC2 Instance
• CloudWatch
• Logs Agent
• On Premise
• Server
• CloudWatch
• Logs Agent
• CloudWatch Logs
• CloudWatch Logs Agent & Unified Agent
• CloudWatch Unified Agent – Metrics
• CloudWatch Alarms
• CloudWatch Alarm Targets
• Amazon EC2 EC2 Auto Scaling Amazon SNS
• CloudWatch Alarms – Composite Alarms
• CW Alarm - A
• EC2 Instance
• CW Alarm - B
• monitor CPU
• monitor IOPS
• Composite Alarm
• Amazon SNS
• ALARM
• ALARM
• trigger
• EC2 Instance Recovery
• CloudWatch Alarm
• StatusCheckFailed_System
• EC2 Instance
• monitor
• EC2 Instance Recovery
• SNS Topic
• alert
• CloudWatch Alarm: good to know
• aws cloudwatch set-alarm-state --alarm-name "myalarm" --state-value
• ALARM --state-reason "testing purposes"
• CW Logs
• CloudWatch
• CW Alarm
• Alert
• Amazon SNS
• Metric Filter
• Amazon EventBridge
• (formerly CloudWatch Events)
• IAM Root User Sign in Event SNS Topic with Email Notification
• Schedule Every hour Trigger script on Lambda function
• Amazon EventBridge Rules
• Example Source
• EC2 Instance
• (ex: Start Instance)
• CodeBuild
• (ex: failed build)
• S3 Event
• (ex: upload object)
• Trusted Advisor
• (ex: new Finding)
• CloudTrail
• (any API call)
• Schedule or Cron
• (ex: every 4 hours)
• Amazon

…186 more lines in source.

Study checklist

• Read chapter once in English (no full translation)
• Add 7–10 terms → /admin/aws-english/vocab
• Practice 5 questions → /admin/aws-english/reader (tags: aws, cloudwatch)
• SRS review → /flashcards/aws-english