/aws-firehose-log-sender

AWS Lambda to send logs to Kinesis Firehose for testing https://github.com/saurabh-hirani/terraform-aws-firehose-elasticsearch

Primary LanguagePythonApache License 2.0Apache-2.0

aws-firehose-log-sender

AWS Lambda to send logs to a Kinesis Firehose hosted in same/different account. Also used for testing sender example setup for https://github.com/saurabh-hirani/terraform-aws-firehose-elasticsearch

Local setup

  1. Setup and activate virtualenv as per instructions provided here.

Package for uploading to AWS

  • Run the following command

    # ./package.sh firehose_log_sender.py

    This will create a file firehose_log_sender.zip which can be used to upload to AWS Lambda.

Pre-requisites

  1. Setup a receiver AWS account with AWS Kinesis Firehose as described here.
  2. Setup a sender AWS account with this lambda as described here.

Test locally - receiver AWS account to receiver AWS account

  1. Ensure that you have the receiver AWS account infra setup - as explained in the Pre-requisites section.

  2. Ensure that you have the AWS credentials set in your environment for the receiver AWS account which hosts the AWS Kinesis firehose.

  3. Update the config file test-localhost.json if required:

    {
    "TMPL_VAR_LOG_TIMESTAMP": "log_timestamp",
    "TMPL_VAR_LOG_NUMBER": "log_number",
    "LOG_COUNT": 10,
    "LOG_INTERVAL_MS": 10,
    "LOG_LEVEL": "DEBUG",
    "AWS_REGION": "us-east-1",
    "AWS_FIREHOSE_STREAM_NAME": "test-firehose"
}

    where

    Sr. No. Item Description
    1 TMPL_VAR_LOG_TIMESTMAP Timestamp field template var in templates/log_record.json
    2 TMPL_VAR_LOG_NUMBER Log number field template var in templates/log_record.json
    3 LOG_COUNT No. of log records to send - max value - 500
    4 LOG_LEVEL Log level
    5 AWS_REGION AWS region to use while creating AWS session
    6 AWS_FIREHOSE_STREAM_NAME AWS Firehose stream to send logs to

  4. Run the following command:

    ./test-localhost.sh test-localhost.json

    Verify the terminal logs last line to check HTTPStatusCode of the log submission call.

    "ResponseMetadata": {
  "RequestId": "xxx-xxx-xxx",
  "HTTPStatusCode": 200,
  "HTTPHeaders": {
    "x-amzn-requestid": "xxx-xxx-xx",
    "x-amz-id-2": "xxx-xxx-xxx",
    "content-type": "application/x-amz-json-1.1",
    "content-length": "1234",
    "date": "Sat, 08 Feb 2020 00:00:00 GMT"
  },
  "RetryAttempts": 0
}

  5. Check AWS Kinesis Firehose and AWS Elasticsearch dashboards in the receiver AWS account to verify if logs have reached the destination.

Test cross account - sender AWS account to receiver AWS account

  1. Ensure that you have this Lambda deployed in the sender AWS account - as explained in the Pre-requisites section.

  2. Ensure that you have the AWS credentials set in your environment for the sender AWS account which hosts this Lambda.

  3. Update the config file test-lambda.json if required:

    {
    "AWS_ASSUME_ROLE_ARN": "arn:aws:iam::12345678:role/test-firehose-kinesis_agent",
    "AWS_FIREHOSE_STREAM_NAME": "test-firehose"
}

    where

    Sr. No. Item Description
    1 AWS_ASSUME_ROLE_ARN AWS role to assume of the receiver AWS account
    2 AWS_FIREHOSE_STREAM_NAME AWS Firehose stream to send logs to

  4. Run the following command:

    export AWS_DEFAULT_REGION=us-east-1
./test-lambda.sh test-lambda.json

  5. You should see a response like the following:

    {
    "StatusCode": 200,
    "ExecutedVersion": "$LATEST"
}
Lambda function returned "SUCCESS"

  6. Check AWS Kinesis Firehose and AWS Elasticsearch dashboards in the receiver AWS account to verify if logs have reached the destination.