1. Access Log 구성

Update : 2024.06.07

Step1. Access Logging 구성

"Service Network"에 대한 로그를 S3 버킷으로 전송하는 구성을 먼저합니다.

"VPC Lattice" - "Service networks"- "supersvcnetwork"-Edit monitoring settings 를 선택합니다.

아래와 같이 액세스 로그를 활성화합니다. S3 버킷을 Browse S3 목록에서 찾아서 선택합니다. (예.superappsvcnetworklogs'AWS-Account-id' ).

Parking Service에 대한 Log를 CloudWatch에 전송하는 구성을 해 봅니다.

"VPC Lattice" - "Service"- "parking"-Edit monitoring settings 를 선택합니다.

아래와 같이 액세스 로그를 활성화합니다. CloudWatch Log group에서"latticeworkshop/parking-svc-logs"를 찾아서 선택합니다.

Setp2. Logging 검증

SSM(SystemCenter Session Manager) 콘솔이 닫힌 경우 재접속 후에 IAM 자격을 다시 입력해 줍니다.

InstanceClient1에서 먼저 아래와 같은 작업을 수행합니다.

aws ssm start-session --target $InstanceClient1
source ~/.bash_profile
AWS_SESSION_TOKEN=$(curl http://169.254.169.254/latest/meta-data/iam/security-credentials/${InstanceClient_IAM_ROLE} | jq -r '.Token')
AWS_ACCESS_KEY_ID=$(curl http://169.254.169.254/latest/meta-data/iam/security-credentials/${InstanceClient_IAM_ROLE}  | jq -r '.AccessKeyId')
AWS_SECRET_ACCESS_KEY=$(curl http://169.254.169.254/latest/meta-data/iam/security-credentials/${InstanceClient_IAM_ROLE}  | jq -r '.SecretAccessKey')

LatticeWorkshop InstanceClient1에 SSM을 통해서 로그인하고 다음 명령을 실행하여 일부 액세스 로그를 생성합니다.

cd /home/ssm-user 
for ((i=1;i<=30;i++)); do curl http://${parking_svc_dns}/rates --aws-sigv4 "aws:amz:us-west-2:vpc-lattice-svcs" --user "$AWS_ACCESS_KEY_ID:$AWS_SECRET_ACCESS_KEY" --header "x-amz-security-token:$AWS_SESSION_TOKEN" --header "x-amz-content-sha256:UNSIGNED-PAYLOAD"; done
for ((i=1;i<=30;i++)); do curl http://${parking_svc_dns}/payments --aws-sigv4 "aws:amz:us-west-2:vpc-lattice-svcs" --user "$AWS_ACCESS_KEY_ID:$AWS_SECRET_ACCESS_KEY" --header "x-amz-security-token:$AWS_SESSION_TOKEN" --header "x-amz-content-sha256:UNSIGNED-PAYLOAD"; done
for ((i=1;i<=30;i++)); do python3 signSigV4.py https://${rerservation_svc_dns} POST; done
for ((i=1;i<=30;i++)); do python3 signSigV4.py https://${rerservation_svc_dns} GET; done
for ((i=1;i<=30;i++)); do curl https://${rerservation_svc_dns} --aws-sigv4 "aws:amz:us-west-2:vpc-lattice-svcs" --user "$AWS_ACCESS_KEY_ID:$AWS_SECRET_ACCESS_KEY" --header "x-amz-security-token:$AWS_SESSION_TOKEN" --header "x-amz-content-sha256:UNSIGNED-PAYLOAD"; done

InstanceClient2에서 아래와 같은 작업을 수행합니다.

aws ssm start-session --target $InstanceClient2
source ~/.bash_profile
AWS_SESSION_TOKEN=$(curl http://169.254.169.254/latest/meta-data/iam/security-credentials/${InstanceClient_IAM_ROLE} | jq -r '.Token')
AWS_ACCESS_KEY_ID=$(curl http://169.254.169.254/latest/meta-data/iam/security-credentials/${InstanceClient_IAM_ROLE}  | jq -r '.AccessKeyId')
AWS_SECRET_ACCESS_KEY=$(curl http://169.254.169.254/latest/meta-data/iam/security-credentials/${InstanceClient_IAM_ROLE}  | jq -r '.SecretAccessKey')

LatticeWorkshop InstanceClient2에 SSM을 통해서 로그인하고 다음 명령을 실행하여 일부 액세스 로그를 생성합니다.

cd /home/ssm-user
for ((i=1;i<=30;i++)); do curl http://${parking_svc_dns}/rates --aws-sigv4 "aws:amz:us-west-2:vpc-lattice-svcs" --user "$AWS_ACCESS_KEY_ID:$AWS_SECRET_ACCESS_KEY" --header "x-amz-security-token:$AWS_SESSION_TOKEN" --header "x-amz-content-sha256:UNSIGNED-PAYLOAD"; done
for ((i=1;i<=30;i++)); do curl http://${parking_svc_dns}/payments --aws-sigv4 "aws:amz:us-west-2:vpc-lattice-svcs" --user "$AWS_ACCESS_KEY_ID:$AWS_SECRET_ACCESS_KEY" --header "x-amz-security-token:$AWS_SESSION_TOKEN" --header "x-amz-content-sha256:UNSIGNED-PAYLOAD"; done
for ((i=1;i<=30;i++)); do curl http://${parking_svc_dns}/payments hello=world --aws-sigv4 "aws:amz:us-west-2:vpc-lattice-svcs" --user "$AWS_ACCESS_KEY_ID:$AWS_SECRET_ACCESS_KEY" --header "x-amz-security-token:$AWS_SESSION_TOKEN" --header "x-amz-content-sha256:UNSIGNED-PAYLOAD"; done

"VPC Lattice" - "Service Networks"를 선택하고, 하단의 monitoring에서 S3 Bucket을 로컬로 다운로드 받아서 확인해 봅니다.

로컬로 다운로드 받고, 내용을 살펴봅니다.

아래와 같은 형식으로 로그가 남아 있습니다.

{"hostHeader":"lambda","sslCipher":"ECDHE-RSA-AES128-GCM-SHA256","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"-","requestMethod":"POST","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0f378057f0bbf824d","tlsVersion":"TLSv1.2","userAgent":"-","serverNameIndication":"reservation-09bb2a1b2bc13ecc9.7d67968.vpc-lattice-svcs.us-west-2.on.aws","destinationVpcId":"-","sourceIpPort":"10.0.0.43:56038","targetIpPort":"34.223.17.88:443","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-09bb2a1b2bc13ecc9","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/","startTime":"2024-01-14T13:52:49Z","protocol":"HTTP/1.1","responseCode":200,"bytesReceived":306,"bytesSent":2584,"duration":429,"requestToTargetDuration":28,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"lambda","sslCipher":"ECDHE-RSA-AES128-GCM-SHA256","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"-","requestMethod":"POST","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0f378057f0bbf824d","tlsVersion":"TLSv1.2","userAgent":"-","serverNameIndication":"reservation-09bb2a1b2bc13ecc9.7d67968.vpc-lattice-svcs.us-west-2.on.aws","destinationVpcId":"-","sourceIpPort":"10.0.0.43:49846","targetIpPort":"34.223.17.88:443","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-09bb2a1b2bc13ecc9","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/","startTime":"2024-01-14T13:52:54Z","protocol":"HTTP/1.1","responseCode":200,"bytesReceived":306,"bytesSent":2584,"duration":26,"requestToTargetDuration":8,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"lambda","sslCipher":"ECDHE-RSA-AES128-GCM-SHA256","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"-","requestMethod":"POST","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0f378057f0bbf824d","tlsVersion":"TLSv1.2","userAgent":"-","serverNameIndication":"reservation-09bb2a1b2bc13ecc9.7d67968.vpc-lattice-svcs.us-west-2.on.aws","destinationVpcId":"-","sourceIpPort":"10.0.0.43:49874","targetIpPort":"34.223.17.88:443","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-09bb2a1b2bc13ecc9","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/","startTime":"2024-01-14T13:52:55Z","protocol":"HTTP/1.1","responseCode":200,"bytesReceived":306,"bytesSent":2584,"duration":41,"requestToTargetDuration":8,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"lambda","sslCipher":"ECDHE-RSA-AES128-GCM-SHA256","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"-","requestMethod":"POST","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0f378057f0bbf824d","tlsVersion":"TLSv1.2","userAgent":"-","serverNameIndication":"reservation-09bb2a1b2bc13ecc9.7d67968.vpc-lattice-svcs.us-west-2.on.aws","destinationVpcId":"-","sourceIpPort":"10.0.0.43:49914","targetIpPort":"34.223.17.88:443","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-09bb2a1b2bc13ecc9","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/","startTime":"2024-01-14T13:52:56Z","protocol":"HTTP/1.1","responseCode":200,"bytesReceived":306,"bytesSent":2584,"duration":35,"requestToTargetDuration":7,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"parking-0dcc67d057e4a5626.7d67968.vpc-lattice-svcs.us-west-2.on.aws","sslCipher":"-","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"Service","requestMethod":"GET","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0d03b91965631d4ba","tlsVersion":"-","userAgent":"curl/8.3.0","serverNameIndication":"-","destinationVpcId":"vpc-0dc8ab27edbe66b7a","sourceIpPort":"10.0.0.43:45632","targetIpPort":"-","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-0dcc67d057e4a5626","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/payments","startTime":"2024-01-14T13:52:48Z","protocol":"HTTP/1.1","responseCode":403,"bytesReceived":82,"bytesSent":2213,"duration":37,"requestToTargetDuration":0,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"lambda","sslCipher":"ECDHE-RSA-AES128-GCM-SHA256","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"-","requestMethod":"POST","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0f378057f0bbf824d","tlsVersion":"TLSv1.2","userAgent":"-","serverNameIndication":"reservation-09bb2a1b2bc13ecc9.7d67968.vpc-lattice-svcs.us-west-2.on.aws","destinationVpcId":"-","sourceIpPort":"10.0.0.43:49892","targetIpPort":"34.223.19.176:443","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-09bb2a1b2bc13ecc9","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/","startTime":"2024-01-14T13:52:56Z","protocol":"HTTP/1.1","responseCode":200,"bytesReceived":306,"bytesSent":2584,"duration":56,"requestToTargetDuration":28,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
...
{"hostHeader":"parking-0dcc67d057e4a5626.7d67968.vpc-lattice-svcs.us-west-2.on.aws","sslCipher":"-","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"-","requestMethod":"GET","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0f2f015501781f5c5","tlsVersion":"-","userAgent":"curl/8.3.0","serverNameIndication":"-","destinationVpcId":"vpc-0d1a75e575edbc697","sourceIpPort":"10.0.0.43:45200","targetIpPort":"10.0.0.186:4242","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-0dcc67d057e4a5626","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/rates","startTime":"2024-01-14T13:52:47Z","protocol":"HTTP/1.1","responseCode":200,"bytesReceived":95,"bytesSent":862,"duration":80,"requestToTargetDuration":79,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"parking-0dcc67d057e4a5626.7d67968.vpc-lattice-svcs.us-west-2.on.aws","sslCipher":"-","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"Service","requestMethod":"GET","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0d03b91965631d4ba","tlsVersion":"-","userAgent":"curl/8.3.0","serverNameIndication":"-","destinationVpcId":"vpc-0dc8ab27edbe66b7a","sourceIpPort":"10.0.0.43:45586","targetIpPort":"-","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-0dcc67d057e4a5626","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/payments","startTime":"2024-01-14T13:52:48Z","protocol":"HTTP/1.1","responseCode":403,"bytesReceived":82,"bytesSent":2213,"duration":2,"requestToTargetDuration":0,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"parking-0dcc67d057e4a5626.7d67968.vpc-lattice-svcs.us-west-2.on.aws","sslCipher":"-","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"Service","requestMethod":"GET","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0d03b91965631d4ba","tlsVersion":"-","userAgent":"curl/8.3.0","serverNameIndication":"-","destinationVpcId":"vpc-0dc8ab27edbe66b7a","sourceIpPort":"10.0.0.43:45598","targetIpPort":"-","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-0dcc67d057e4a5626","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/payments","startTime":"2024-01-14T13:52:48Z","protocol":"HTTP/1.1","responseCode":403,"bytesReceived":82,"bytesSent":2213,"duration":2,"requestToTargetDuration":0,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"parking-0dcc67d057e4a5626.7d67968.vpc-lattice-svcs.us-west-2.on.aws","sslCipher":"-","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"Service","requestMethod":"GET","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0d03b91965631d4ba","tlsVersion":"-","userAgent":"curl/8.3.0","serverNameIndication":"-","destinationVpcId":"vpc-0dc8ab27edbe66b7a","sourceIpPort":"10.0.0.43:45646","targetIpPort":"-","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-0dcc67d057e4a5626","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/payments","startTime":"2024-01-14T13:52:48Z","protocol":"HTTP/1.1","responseCode":403,"bytesReceived":82,"bytesSent":2213,"duration":3,"requestToTargetDuration":0,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
{"hostHeader":"parking-0dcc67d057e4a5626.7d67968.vpc-lattice-svcs.us-west-2.on.aws","sslCipher":"-","serviceNetworkArn":"arn:aws:vpc-lattice:us-west-2:197153502150:servicenetwork/sn-07a2d0dfd35562471","resolvedUser":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","authDeniedReason":"Service","requestMethod":"GET","targetGroupArn":"arn:aws:vpc-lattice:us-west-2:197153502150:targetgroup/tg-0d03b91965631d4ba","tlsVersion":"-","userAgent":"curl/8.3.0","serverNameIndication":"-","destinationVpcId":"vpc-0dc8ab27edbe66b7a","sourceIpPort":"10.0.0.43:45662","targetIpPort":"-","serviceArn":"arn:aws:vpc-lattice:us-west-2:197153502150:service/svc-0dcc67d057e4a5626","sourceVpcId":"vpc-0b22e462f621e6dac","requestPath":"/payments","startTime":"2024-01-14T13:52:48Z","protocol":"HTTP/1.1","responseCode":403,"bytesReceived":82,"bytesSent":2213,"duration":2,"requestToTargetDuration":0,"responseFromTargetDuration":0,"sourceVpcArn":"","callerPrincipal":"arn:aws:sts::197153502150:assumed-role/latticebaseinfrawithapiserver-SSMRole-ey7Ooy31ZeaR/i-063ccbb973d44f59c","callerPrincipalOrgID":"o-t5jre6eun3","callerX509IssuerOU":"-","callerX509SubjectCN":"-","callerX509SANNameCN":"-","callerX509SANDNS":"-","callerX509SANURI":"-"}
...

"VPC Lattice" - "Service " - "Parking Service"를 선택하고, 하단의 "CloudWatch Log group"를 선택합니다.

아래와 같이 "Parking Service"에 대한 로그를 확인할 수 있습니다.

Previous04. Observability Next05.Gateway API Controller

Last updated 1 year ago

hashtagStep1. Access Logging 구성

hashtagSetp2. Logging 검증

Step1. Access Logging 구성

Setp2. Logging 검증