Supported AWS services
Most of the supported AWS services output logs to Amazon CloudWatch Logs, Amazon S3, Amazon Kinesis Data Streams, or Amazon Kinesis DataFirehose. The log outputs must be in the same AWS Region as the Centralized Logging with OpenSearch solution.
The following table lists the supported AWS services and the supported log analytics engines.
AWS Service | Log Type | OpenSearch Engine Support | Light Engine Support |
---|---|---|---|
AWS CloudTrail | N/A | Yes | Yes |
Amazon S3 | Access logs | Yes | No |
Amazon RDS/Aurora | MySQL Logs | Yes | Yes |
Amazon CloudFront | Standard access logs | Yes | Yes |
Application Load Balancer | Access logs | Yes | Yes |
AWS WAF | Web ACL logs | Yes | Yes |
AWS Lambda | N/A | Yes | No |
Amazon VPC | Flow logs | Yes | Yes |
AWS Config | N/A | Yes | No |
The solution supports detects the log location of the resource automatically, reads the logs, and then ingests them into the log analytics engines. The solution also provides dashboard templates for all supported AWS service. It automatically ingests logs into the log analytics engine. You can go to the OpenSearch Dashboards or Grafana to view the dashboards after the pipeline being provisioned.
In this chapter, you will learn how to create log ingestion and dashboards for the following AWS services: