![]() ![]() ![]() The CloudWatch logs input has several advanced options to fit specific use cases. When you configure the AWS integration, you can collect data from as many AWS services as you'd like.įor step-by-step instructions on how to set up an integration, see the If you want to collect data from two or more AWS services, consider using the AWS integration. Use this integration if you only need to collect data from the AWS WAF service. AWS Permissions to make sure the user you're using to connect has permission to share the relevant data.įor more details about these requirements, see the AWS integration documentation.AWS Credentials to connect with your AWS account.You can use our hosted Elasticsearch Service on Elastic Cloud, which is recommended, or self-manage the Elastic Stack on your own hardware.īefore using any AWS integration you will need: You need Elasticsearch for storing and searching your data and Kibana for visualizing and managing it. Note: The waf data stream is specifically for WAF logs. Logs collected by the AWS WAF integration include information on the rule that terminated a request, the source of the request, and more. Logs help you keep a record of events happening in AWS WAF. The AWS WAF integration collects one type of data: logs. Please refer to the AWS integration for more details. IMPORTANT: Extra AWS charges on AWS API requests will be generated by this integration. You can do this by looking at additional context in the logs, such as the source of the requests, and more. You could also use the data to review or troubleshoot the rules that have been set up to block these web exploits. Then visualize that data in Kibana, create alerts to notify you if something goes wrong,Īnd reference logs when troubleshooting an issue.įor example, you could use the data from this integration to spot unusual SQL injection and cross-site scripting attempts on your AWS-hosted websites and web applications, in a given time period. Use the AWS WAF integration to collect and parse logs related to firewall activity across your AWS infrastructure. The AWS WAF integration allows you to monitor AWS Web Application Firewall (WAF)-a web application firewall for protecting against common web exploits. Quick start: Get application traces into the Elastic Stack.Quick start: Get logs, metrics, and uptime data into the Elastic Stack.See the integrations quick start guides to get started: ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |