How I can retrieve the AWS services statuses programmatically? Is there any API which will provide me the status like below URL, which can give me health status of desired services which my cloud formation stack will use.
https://status.aws.amazon.com/
You can get the status of the services that you are using.
For API access, see: AWS Health API
The AWS Health API provides programmatic access to the AWS Health
information that is presented in the AWS Personal Health Dashboard.
You can get information about events that affect your AWS resources
Related
I installed managed Anthos on a GKE cluster. Anthos Service Mesh is working and is displaying my API. Thanks to that Services that are in Monitoring automatically detect my API. This is great as it enables me to easily set SLOs and Error Budget for my API.
However I would like to be able to easily set SLOs for individual endpoints in my api. Services(in Monitoring) detect only my API and not the endpoints within my API(my API is one pod/container + sidecar). I tried to add endpoints to Services in Monitoring but it looks like it is only possible to add Kubernetes Objects there.
Is there a way to use Services in Monitoring with endpoints? Is the only way to do so to break endpoints to separate microservices?
You can monitor your endpoints using Cloud Endpoints with OpenAPI, which allows you to monitor the health of APIs you own by using the logs and metrics Cloud Endpoints maintains for you automatically. When users make requests to your API, Endpoints logs information about the requests and responses and also tracks three of the four golden signals of monitoring: latency, traffic, and errors. These usage and performance metrics help you monitor your API.
The following URL Configuring Cloud Endpoints has the configuration process for Cloud Endpoints. Use this URL Monitoring your API as a reference on the monitoring process for your API, and this last URL for the Cloud Endpoint’s overview.
Is there anyway to Query AWS Service Status e.g. if Kinesis Stream is Up or not, or S3 Storage Service is available or not ? And on the basis of status, I want to execute certain CURL commands ?
I am looking to get a status for below services and then use it in our custom StatusPage
S3
API Gwy
Kinesis
SQS
Route53 + Cloudfront
I know there is statuspage for AWS Services but not sure how to use it programmatically and publish a CURL command.
The Service Health Dashboard is usually delayed and not very useful for real-time monitoring of AWS health status.
Instead, you could use AWS Health from your account, which provides much more up-to-date events. What's more you can setup automated notifications and response to any issues detected as described in:
Monitoring AWS Health events with Amazon CloudWatch Events
Hi dear StackOverflow community,
These below amazon concepts are confusing to me, I do not get to establish the key difference among them at once:
Amazon inspector vs trusted advisor vs cloudwatch vs Personal Health Dashboard vs AWS cloud trail.
Could you help me to get clarity in the key difference among them?
Thank you very much in advance
Trusted Advisor
Trusted Advisor offers recommendations to lower cost and improve security, performance and fault tolerance. Some are provided for free, while all of the recommendations are only available to subscribers to AWS Support.
Personal Health Dashboard
AWS Personal Health Dashboard shows issues and outages that might affect your usage of AWS services.
Amazon CloudWatch
Amazon CloudWatch stores metrics and allows Alarms to be configured based on those metrics. Many AWS services send metrics to CloudWatch, such as Amazon EC2 providing CPU metrics and Amazon S3 providing storage metrics. It also has CloudWatch Logs that can store log files and respond to log messages, and CloudWatch Events that can trigger actions in response to certain events).
AWS CloudTrail
AWS CloudTrail is an audit trail of API calls made to AWS. It tracks details of all requests, such as the user, source IP, timestamp, request parameters and the success of the API call. Just like a security company keeps track of every time you use a swipe-card, CloudTrail keep track of every time a request is made to an AWS service.
Amazon Inspector
Amazon Inspector runs on Amazon EC2 instances and scans the computer for known vulnerabilities in the operating system and applications.
Suppose multiple aws services are running (like EC2,S3) and If someone changes the configuration of these services , I want to know immediately and want to pull the updated configuration. So how can i listen to these services to pull configuration immediately . I went through couple of options like aws SNS and all. But i don't want to implement this using any aws services for this.
I am using spring boot application. Any help is appreciated , Thanks in advance.
The two services you should be interested in are:
AWS CloudTrail:
AWS CloudTrail is an AWS service that helps you enable governance, compliance, and operational and risk auditing of your AWS account. Actions taken by a user, role, or an AWS service are recorded as events in CloudTrail. Events include actions taken in the AWS Management Console, AWS Command Line Interface, and AWS SDKs and APIs.
AWS Config:
AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. This includes how the resources are related to one another and how they were configured in the past so that you can see how the configurations and relationships change over time.
You can also configure Amazon CloudWatch Events rules that trigger when a particular API call is made (eg when a user changes some configuration). This could trigger a notification, a Lambda function, etc.
See:
Creating a CloudWatch Events Rule That Triggers on an AWS API Call Using AWS CloudTrail - Amazon CloudWatch Events
How to monitor AWS account activity with Cloudtrail, Cloudwatch Events and Serverless
We have implemented Dynatrace and we need to add our AWS account to pull CloudWatch logs.
The problem: We have a corporate proxy and firewall which is super locked down and seems to block whichever requests Dynatrace is trying to make to AWS to authenticate with the key and secret.
The infra guys has allowed a bunch of AWS domains per region to read CloudWatch logs, but we still can't authenticate (see image below).
I have set up a Dynatrace security gateway in AWS which our local gateways are able to access. We are successfully getting logs form OneAgents through the SGW. The problem is getting the CloudWatch logs/integration going.
The error in the image below leads me to believe that Dynatrace is not able to communicate to the AWS auth servers at all.
Any advice would be appreciated.
I'm just a dev
We are not allowed to open the amazon domain.
#corporate-devlife