Get AWS CloudFront logs from S3

hmof · June 3, 2020, 10:49am

AWS CloudFront writes its logs to S3 in a bunch of files every few minutes. What’s the best way to fetch the latest files and ingest these with Graylog?

I am currently fetching them with Logstash and feeding them into Elastic for my old ELK stack, but I’m wondering if there’s a more Graylog way to do it. Logstash is kind of heavy to use just for this. But I installed logstash-output-gelf and connected it to Graylog and it is working.

hmof · June 11, 2020, 12:12am

(post withdrawn by author, will be automatically deleted in 24 hours unless flagged)

hmof · June 11, 2020, 12:20am

I see there’s graylog-plugin-s3 on github - but not updated for Graylog 3.x?

system · June 25, 2020, 12:20am

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Get AWS CloudFront logs to Graylog Graylog Central (peer support)	2	617	September 24, 2020
Read logs from S3 into Graylog Graylog Central (peer support)	2	6386	December 5, 2017
Pull access logs from S3 to Gralog Graylog Central (peer support)	1	661	August 27, 2020
Output logs to AWS S3 Graylog Central (peer support)	3	1203	November 1, 2021
Best way to ingest logs from an external API Graylog Central (peer support)	3	530	October 19, 2021

Get AWS CloudFront logs from S3

Related topics