CloudWatch struktur log untuk Transfer Family - AWS Transfer Family
Log terstruktur JSON untuk Transfer FamilyLog lama untuk Transfer Family

Terjemahan disediakan oleh mesin penerjemah. Jika konten terjemahan yang diberikan bertentangan dengan versi bahasa Inggris aslinya, utamakan versi bahasa Inggris.

CloudWatch struktur log untuk Transfer Family

Topik ini menjelaskan bidang yang diisi dalam log Transfer Family: baik untuk entri log terstruktur JSON maupun entri log lama.

Log terstruktur JSON untuk Transfer Family

Tabel berikut berisi rincian untuk bidang entri log untuk tindakan Transfer Family SFTP/FTP/FTPS, dalam format log terstruktur JSON yang baru.

Bidang Deskripsi Entri contoh
activity-type The action by the user

BUKA | TUTUP | PARTIAL_CLOSE | TERPUTUS | TERHUBUNG
bytes-in Number of bytes uploaded by the user 29238420042
bytes-out Number of bytes downloaded by the user 23094032490328
ciphers Specifies the SSH cipher negotiated for the connection (available ciphers are listed in Algoritma kriptografi) aes256-gcm@openssh.com
client The user's client software SSH-2.0-OpenSSH_7.4
home-dir The directory that the end user lands on when they connect to the endpoint if their home directory type is PATH: if they have a logical home directory, this value is always / /user-home-bucket/test
kex Specifies the negotiated SSH key exchange (KEX) for the connection (available KEX are listed in Algoritma kriptografi) diffie-hellman-group14-sha256
message Provides more information related to the error <string>
method The authentication method publickey
mode Specifies how a client opens a file CREATE | TRUNCATE | WRITE
operation The client operation on a file OPEN | CLOSE
path Actual file path affected /user-test-bucket/test-file-1.pdf
resource-arn A system-assigned, unique identifier for a specific resource (for example, a server)

arn:aws:transfer: ap-timur laut- 1:12346789012: server/s-1234567890akeu2js2
role The IAM role of the user

arn:aws:iam: :0293883675: peran/testuser-role
session-id A system-assigned, unique identifier for a single session

9ca9a0e1cec6ad9d
source-ip Client IP address 18.323.0.129
user The end user's username myname192
user-policy The permissions specified for the end user: this field is populated if the user's policy is a session policy. The JSON code for the session policy that is being used

Log lama untuk Transfer Family

Tabel berikut berisi rincian untuk entri log untuk berbagai tindakan Transfer Family.

catatan

Entri ini tidak dalam format log terstruktur JSON yang baru.

Tabel berikut berisi rincian untuk entri log untuk berbagai tindakan Transfer Family, dalam format log terstruktur JSON yang baru.

Tindakan Log yang sesuai dalam CloudWatch Log Amazon
Kegagalan otentikasi

KESALAHAN AUTH_FAILURE METHOD=PublicKey User="RSA SHA256:lfz3r2nmly4rak+b7rb1rsvuibae+a+hxg0c7l1jiZ0" sourceIP=3.8.172.211

SALIN/TANDA/HAPUS/DEKRIPSI alur kerja

{"type”:” StepStarted “, "details”: {"input”: {"FileLocation”: {"backingStore” :"EFS”, "fileSystemId” :"fs-12345678", "path”:” /lhr/regex.py “}}, "stepType” :"TAG”, "stepName” :"successful_tag_step "}, "workFlowid” :"workFlowid” :"successful_tag_step "}, "workFlowid” :"workFlowid” :"stepName” :"successful_tag_step "}, "workFlowid” :"workFlowid” :"stepName” :"successful_tag_step "}, "workFlowid” :"workFlowid” :"stepName” "w-1111aaaa22bbbb3", "ExecutionID” :"81234abcd-1234-efgh-5678-ijklmnopqr90", "transferDetails”: {"serverID” :"s-1234abcd5678efghi”, "nama pengguna” :"lhr”, "sessionID” :"123456767890abcdef0"}}
Alur kerja langkah kustom

{"type”:” CustomStepInvoked “, "details”: {"output”: {"token” :"MZM4MjG5YWUTYT EzMy 00 YjIz LWI3OG MtYz U4OGI2 ZjQyMz E5"}, "StepType” :"CUSTOM”, "stepName” :"efs-s3_copy_2"}, "workFlowid” :"w-9283e49d33297c3f7", "executionID” :"1234abcd-1234-efgh-5678-ijklmnopqr90", "transferDetails”: {"serverID” :"s-zzzzzz11aaaa22223", "username” :"lhr”, "sessionID” :"1234567890abcdef0"}}
Menghapus

lhr.33a8fb495ffb383b HAPUS PATH=/ember/pengguna/123.jpg
Unduh

lhr.33a8fb495ffb383b JALUR TERBUKA =/ember/pengguna/mode 123.jpg =Baca

llhr.33a8fb495ffb383b JALUR TUTUP =/ember/pengguna/123.jpg = 3618546 BytesOut
Login/Logout

user.914984e553bcddb6 SUMBER TERHUBUNG = 1.22.111.222 pengguna = LHR = KLIEN LOGIS = SSH-2.0-openssh_7.4 peran = arn:aws: :iam: :123456789012: peran/sftp-s3-akses HomeDir

user.914984e553bcddb6 TERPUTUS
Mengganti nama

lhr.33a8fb495ffb383b GANTI NAMA PATH=/bucket/user/lambo.png =/ember/pengguna/ferrari.png NewPath

Contoh log kesalahan alur kerja

{"type”:” StepErrored “, "details”: {"ErrorType” :"BAD_REQUEST”, "ErrorMessage” :"Tidak dapat menandai berkas Efs”, "stepType” :"stepName” :"successful_tag_step "}, "workFlowid” :"w-1234abcd5678efghi”, "ExecutionID” :"81234abcd5678efghi”, "ExecutionID” :"81234abcd5678efghi” :"ExecutionID” :"81234abcd5678efghi” :"ExecutionID” :"81234abcd5678efghi” :"ExecutionId” :"81234abcd534abcd-1234-efgh-5678-ijklmnopqr90", "transferDetails”: {"serverID” :"s-1234abcd5678efghi”, "nama pengguna” :"lhr”, "sessionID” :"1234567890abcdef0"}}

Symlink

lhr.eb49cf7b8651e6d5 CREATE_SYMLINK =/fs-12345678/lhr/pqr.jpg =abc.jpg LinkPath TargetPath

Unggahan

lhr.33a8fb495ffb383b JALUR TERBUKA =/bucket/pengguna/mode 123.jpg =Buat | memotong|tulis

lhr.33a8fb495ffb383b JALUR TUTUP =/ember/pengguna/123.jpg = 3618546 BytesIn
Alur Kerja

{"type”:” ExecutionStarted “, "details”: {"input”: {” “: {" backingStore” :"EFS”, "fileSystemId” :"fs-12345678", "path”:” /lhr/regex.py initialFileLocation “}}}, "workFlowid” :"w-1111aaaa22bbbb3", "ExecutionId” :"1234abcd-1234-efgh-5678-ijklmnopqr90", "transferDetails”: {"serverID” :"s-zzzz1111aaaa22223", "nama pengguna” :"lhr”, "sessionID” :"1234567890abcdef0"}}

{"type”:” StepStarted “, "details”: {"input”: {"FileLocation”: {"backingStore” :"EFS”, "fileSystemId” :"fs-12345678", "path”:” /lhr/regex.py “}}, "stepType” :"CUSTOM”, "stepName” :"efs-s3_copy_2"}, "workFlowid” :"w-9283e49d33297c3f7", "ExecutionID” :"1234abcd-1234-efgh-5678-ijklmnopqr90", "transferDetails”: {"serverID” :"s-18ca49dce5d842e0b”, "username” :"lhr”, "sessionID” :"1234567890abcdef0"}}