Know CloudWatch in detail. CloudWatch is the key service in the AWS logging and monitoring suite of services. Know that it is a metric and logging collection service that has many additional utilities to manage, monitor, gain insights, and store the collected data. AWS and external applications export log and metric data into CloudWatch, and many of these services have integrations with CloudWatch that is as simple as enabling the service. Agents can be installed on compute instances to gather and export data with a great deal of customization options.
Understand access logs and which networking services generate them. Many AWS networking services generate log files when they are accessed. For example, when a DNS query is made to Route 53, an access log is generated and forwarded to CloudWatch. For the exam, know these in detail and be able to identify them based on scenario questions. Access logs are created by networking services such as CloudFront, Route 53, and ELB.
Know that Transit Gateway Manager is used to monitor and manage the AWS Transit Gateway Service. The Transit Gateway Service is an AWS SD-WAN offering that is used to integrate your company’s software-defined wide-area network into AWS. The Transit Gateway Manager is an add-on management and monitoring service that graphs out your SD-WAN and is used to manage operations. There may be scenario-based questions about using an AWS service to control your SD-WAN, which would be referring to the Transit Gateway Manager application.
Understand what the VPC Reachability Analyzer does. The Reachability Analyzer is used to validate your network connectivity, perform connectivity troubleshooting, identify network configuration issues, and automate validations for network connectivity after configuration changes or new deployments. The VPC Reachability Analyzer checks the network path taken by a packet from source to destination. The tool creates a logical model of the configuration and then checks for connectivity.
Understand the X-Ray service. X-Ray traces request and response actions between application workflows. By enabling X-Ray, you can view the actions inside of your applications and services and how they interact with each other including microservices, databases, APIs, and other AWS services. By collecting this information, you can filter and view your data to locate problems and get insight into the interactions between the application and service flows. X-Ray Insights analyzes the data generated by the AWS X-Ray service, identifies anomalies, and generates notifications on what the anomaly is and why it was triggered.
Understand Flow Logs. Flow Logs capture data on IP traffic flows between interfaces in a VPC. You select the source and destination of the flow you want to analyze, and the service will show you the path between the two in AWS. The Flow Log captures are external to the actual data flow in your VPC, so the captures do not affect network latency or throughput of your production traffic.
Know what AWS Inspector is and what it is used for. Inspector is the AWS managed service that performs security and vulnerability analysis and assessments for EC2, ECR container instances, applications, network accessibility, and how security is configured for the applications on the instances. Inspector can replace scanning utilities that are generally use- restricted by AWS in a VPC.
Understand Insights. Application Insights is an AWS managed service that can automatically perform discovery on resources and workloads that it supports. After the discovery process is completed, the service will configure a CloudWatch agent, alarms, metrics, and logs based on AWS best practices. The service helps you identify issues and resolve problems with your applications, databases, and workloads.