AWS ECS

Scanner supports AWS ECS logs, which are logs generated by your containers running in ECS.

In order for Scanner to see your ECS logs, you can configure ECS to publish logs to CloudWatch, then configure the CloudWatch log groups to forward data to a Kinesis Data Firehose, which can then write the logs into an S3 bucket that Scanner is linked to.

Step 1: Configure ECS to publish logs to CloudWatch

You can follow AWS documentation to publish your ECS logs to one or more CloudWatch log groups. See: Send Amazon ECS logs to CloudWatch.

Step 2: Set up CloudWatch to push to Kinesis Data Firehose

You can follow the AWS documentation to configure your CloudWatch log groups to push their logs to a Kinesis Data Firehose. See: Send CloudWatch Logs to Firehose.

Step 3: Configure the Kinesis Data Firehose to write logs to S3

A Kinesis Data Firehose can push logs to various destinations. We want to push to an S3 bucket that Scanner is linked to. You can follow the AWS documentation to configure the Firehose to write to an S3 bucket. See: Understand data delivery in Amazon Data Firehose.

Step 4: Ingest via Scanner Collect

PreviousAWS CloudWatch NextAWS EKS

Last updated 8 hours ago

Was this helpful?