Monitoring, Audit and Performance

Question 1

Cloudwatch

Answer 1

Provides metrics for every services in AWS

Question 2

CloudWatch Custom Metrics

Answer 2

Define and send your own custom metrics to CloudWatch

Question 3

CloudWatch Dashboards

Answer 3

Available globally across AWS

Question 4

CloudWatch Logs

Answer 4

Applications can send logs to CloudWatch using the SDK

Question 5

CloudWatch Logs Agent & Unified Agent

Answer 5

Needed for virtual servers (EC2 instances, on-premise servers…)

CloudWatch Logs Agent
• Old version of the agent
• Can only send to CloudWatch Logs

CloudWatch Unified Agent
• Collect additional system-level metrics such as RAM, processes, etc…
• Collect logs to send to CloudWatch Logs

Question 6

CloudWatch Alarms

Answer 6

Alarms are used to trigger notifications for any metric

Alarms can go to Auto Scaling, EC2 Actions, SNS notifications

Question 7

CloudWatch Events

Answer 7

Either have a scheduled event (cron job) or an event pattern i.e. a rule that reacts to a service doing something

Question 8

CloudTrail

Answer 8

Provides governance, compliance and audit for your AWS Account i.e. monitors everything you do in AWS. Turned on by default

Question 9

AWS Config

Answer 9

Helps with auditing and recording compliance of your AWS resources and records any configuration changes over time

i.e. make sure instances are tagged, do my buckets have public access etc.