Topic 1 Question 32
3 つ選択A company is implementing an Amazon Elastic Container Service (Amazon ECS) cluster to run its workload. The company architecture will run multiple ECS services on the cluster. The architecture includes an Application Load Balancer on the front end and uses multiple target groups to route traffic. A DevOps engineer must collect application and access logs. The DevOps engineer then needs to send the logs to an Amazon S3 bucket for near-real-time analysis. Which combination of steps must the DevOps engineer take to meet these requirements?
Download the Amazon CloudWatch Logs container instance from AWS. Configure this instance as a task. Update the application service definitions to include the logging task.
Install the Amazon CloudWatch Logs agent on the ECS instances. Change the logging driver in the ECS task definition to awslogs.
Use Amazon EventBridge to schedule an AWS Lambda function that will run every 60 seconds and will run the Amazon CloudWatch Logs create-export-task command. Then point the output to the logging S3 bucket.
Activate access logging on the ALB. Then point the ALB directly to the logging S3 bucket.
Activate access logging on the target groups that the ECS services use. Then send the logs directly to the logging S3 bucket.
Create an Amazon Kinesis Data Firehose delivery stream that has a destination of the logging S3 bucket. Then create an Amazon CloudWatch Logs subscription filter for Kinesis Data Firehose.
ユーザの投票
コメント(6)
- 正解だと思う選択肢: BDF
B D F for me
👍 2Dimidrol2023/04/05 - 正解だと思う選択肢: BDF
B - get application logs to CW D - get access logs to S3 F - get application logs from CW to S3 in near-real time
👍 2ele2023/04/15 - 正解だと思う選択肢: BDF
Option BDE can be cumbersome to manage in a large environment and may not be ideal for applications that generate large amounts of logs. Option BDF, on the other hand, captures both application and access logs, and uses the CloudWatch Logs driver to stream logs directly to CloudWatch Logs. This solution is more scalable as it does not require the CloudWatch Logs agent to be installed on each instance, and it can capture logs from multiple ECS tasks running on the same instance. In addition, the logs can be sent to an S3 bucket using a Kinesis Data Firehose delivery stream, which provides near-real-time analysis capabilities.
👍 1jqso2342023/04/14
シャッフルモード