Book Image

Simplifying Hybrid Cloud Adoption with AWS

By : Frankie Costa Negro
Book Image

Simplifying Hybrid Cloud Adoption with AWS

By: Frankie Costa Negro

Overview of this book

The hybrid edge specialty is often misunderstood because it began with an on-premises-focused view encompassing everything not running inside the traditional data center. If you too have workloads that need to live on premises and need a solution to bridge the gap between both worlds, this book will show you how AWS Outposts allows workloads to leverage the benefits of the cloud running on top of AWS technology. In this book, you’ll learn what the Edge space is, the capabilities to look for when selecting a solution to operate in this realm, and how AWS Outposts delivers. The use cases for Outposts are thoroughly explained and the physical characteristics are detailed alongside the service logical constructs and facility requirements. You’ll gain a comprehensive understanding of the sales process—from order placement to rack delivery to your location. As you advance, you’ll explore how AWS Outposts works in real life with step-by-step examples using AWS CLI and AWS Console before concluding your journey with an extensive overview of security and business continuity for maximizing the value delivered by the product. By the end of this book, you’ll be able to create compelling hybrid architectures, solve complex use cases for hybrid scenarios, and get ready for your way forward with the help of expert guidance.
Table of Contents (14 chapters)
1
Part 1: Understanding AWS Outposts – What It Is, Its Components, and How It Works
5
Part 2: Security, Monitoring, and Maintenance
9
Part 3: Maintenance, Architecture References, and Additional Information

Logging with CloudTrail

CloudWatch is a metric gatherer and orchestration service. Metrics can be collected by the service components embedded in other services or sent by agents installed inside operating systems that can run anywhere, including your own premises.

However, CloudWatch is unable to track API calls invoked by AWS identities. The service designed to perform this task is AWS CloudTrail, which helps you record actions taken by users, roles, or other AWS services as events in CloudTrail.

These events can be sent as log files to an Amazon S3 bucket for storage and further analysis of who is doing what and when. An extensive record of data related to the API activity is provided, including the following:

  • The identity of an API caller
  • The time of the API call
  • The source IP address of the API caller
  • Request parameters
  • Response elements returned by the called AWS service

AWS CloudTrail provides capabilities that help you to enable governance...