AWS Classroomnotes 25/Dec/2021

Log Insights Queries

Extracting fields from message using parse

fields @timestamp, @message
| parse @message "* - - [*] \"* * \"" as clientip, generated_time, request, other
| sort @timestamp desc

Preview

Further fields

fields @timestamp, @message
| parse @message "* - - [*] \"* / *\" * * * " as clientip, generated_time, request, http, statuscode, size, other
| sort @timestamp desc

Preview
* In the log analytics we can use some functions
* Lets get started from stats
Preview
* The above query returns a time series data
* Query to show only valid ip addresses responses

fields @timestamp, @message
| parse @message "* - - [*] \"* / *\" * * * " as clientip, generated_time, request, http, statuscode, size, other
| filter isValidIp('clientip')
| display clientip, statuscode
| sort @timestamp desc

Pricing of Cloud Watch Alarms Refer Here
Note: Refer Here for the json and yaml tutorial

By continuous learner

devops & cloud enthusiastic learner

View all of continuous learner's posts.

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Please turn AdBlock off

Animated Social Media Icons by Acurax Wordpress Development Company