Madhurima Rawat

Posted on May 19 • Originally published at github.com

📊 Implementing Cloud Monitoring and Logging 🛠️

#aws #cloud #cloudcomputing #tutorial

📊 Hello Access Managers!!

From setting secure roles to watching them in action — let’s move from IAM to real-time monitoring and logging! 🔐➡️📊

📚 All code, docs, and resources are available in my GitHub repository:

madhurimarawat / Cloud-Computing

This repository focuses on cloud computing and demonstrates how to set up virtual machines, S3, and other services using LocalStack. It provides a comprehensive guide to simulating AWS services locally for development and testing purposes.

Cloud-Computing

This repository focuses on cloud computing and demonstrates how to set up virtual machines, S3, and other services using LocalStack. It provides a comprehensive guide to simulating AWS services locally for development and testing purposes.

Tools and Technologies ⚙️💻

1. AWS CLI

AWS Command Line Interface (CLI) is a powerful tool that allows users to interact with AWS services directly from the terminal. It simplifies managing cloud resources by providing commands for a wide range of AWS services, enabling tasks such as provisioning, managing, and automating workflows with ease.

2. LocalStack

LocalStack is a fully functional, local testing environment for AWS services. It enables developers to simulate AWS services on their local machines, facilitating the development and testing of cloud-based applications without needing access to an actual AWS account.

3. Docker

Docker is a containerization platform that allows developers to build, share, and run applications in isolated environments called…

View on GitHub

In the last post,

👥 Cloud Identity and Access Management (IAM) 🔓

Madhurima Rawat ・ May 17

#cloud #cloudcomputing #aws #iam

we explored Cloud Identity and Access Management (IAM) and how to secure your cloud infrastructure with fine-grained access control.

Today, we’re gonna dive into something equally vital,
📊 Cloud Monitoring and Logging!

First, I’ll explain what monitoring and logging actually mean, why they’re absolutely essential in any cloud setup, and share some real-life use cases that show their impact.
Then we’ll move ahead with the implementation.

What is AWS CloudWatch?

AWS CloudWatch is a monitoring and observability service that collects and tracks metrics, logs, and events to provide insights into cloud resources and applications.

🔹 Key Features of CloudWatch:

Metrics Monitoring 📊: Collects and analyzes performance metrics for AWS services.
Log Management 📜: Stores and processes logs for applications and infrastructure.
Alarms & Notifications 🚨: Triggers alerts based on threshold values.
Dashboards & Visualization 📈: Provides real-time monitoring dashboards.
Event-driven Automation ⚙️: Automates actions based on events.

Understanding Log Management

Log management is a crucial part of cloud monitoring and involves the collection, storage, and analysis of logs.

💡 Six Components of Log Management:

Log Collection 🏗️: Logs are gathered from various sources (servers, applications, cloud services).
Log Aggregation 🗃️: Logs are combined and stored in a centralized system like CloudWatch Logs.
Log Storage 🏢: Logs are kept in CloudWatch Log Groups and Log Streams.
Log Analysis 🔍: Tools like AWS CloudWatch Insights analyze log data for patterns and trends.
Log Monitoring & Alerts 🚨: CloudWatch can send alerts based on predefined conditions.
Compliance & Retention ✅: Logs are archived based on security and compliance requirements.

What Are Log Streams?

Log streams represent a sequence of log events from the same source (e.g., an application instance, EC2 instance, or microservice).

🔹 Example:

A web server might have separate log streams for each instance it runs on.
CloudWatch logs are organized in log groups, and each log group contains multiple log streams.

Real-life Use Case: CloudWatch Logs & Metrics

Scenario:

A company hosts its web application on AWS EC2 instances and wants to monitor CPU usage and analyze logs for errors.

Steps in AWS CloudWatch:

1️⃣ Enable CloudWatch Logs on EC2 instances to store application logs.

2️⃣ Create a log group /my/app/logs and define log streams for different instances.

3️⃣ Send logs & metrics (e.g., CPU usage, errors, response time) to CloudWatch.

4️⃣ Set up alarms to notify the DevOps team when CPU usage exceeds 80%.

5️⃣ Analyze logs using CloudWatch Insights to detect anomalies.

🖼️ About the Cover Image:
It begins with a speedometer icon, representing metrics and performance monitoring — capturing real-time data like logs, usage stats, and resource health.
Next, a checkbox with a right tick symbolizes that all essential cloud services are being actively monitored and running smoothly ✅.
Following that, a warning icon appears to indicate that if anything goes wrong, the system will trigger alerts and notifications ⚠️.
Finally, a heart with a heartbeat line represents the idea of continuous, real-time monitoring — ensuring your cloud stays alive, healthy, and responsive 💓📡.

AWS CLI Commands for LocalStack (CloudWatch and Logs)

1. Create a Log Group

aws --endpoint-url=http://localhost:4566 logs create-log-group
--log-group-name /my/app/logs

Description:

Creates a log group named /my/app/logs in AWS CloudWatch Logs.

2. Create a Log Stream

aws --endpoint-url=http://localhost:4566 logs create-log-stream
--log-group-name /my/app/logs --log-stream-name my-stream

Description:

Creates a log stream named my-stream within the /my/app/logs log group.

3. Put Log Events

aws --endpoint-url=http://localhost:4566 logs put-log-events --
log-group-name /my/app/logs --log-stream-name my-stream --log-
events "[{\"timestamp\":1741348140000,\"message\":\"Test log entry\"}]"

Description:

Adds a log entry with a timestamp (1741348140000) and message (Test log entry) to the my-stream log stream.

Output:

-----------------------------------------------------------------------------------
|                                  PutLogEvents                                   |
+--------------------+------------------------------------------------------------+
|  nextSequenceToken |  00000000000000000000000000000000000000000000000000000001  |
+--------------------+------------------------------------------------------------+
||                             rejectedLogEventsInfo                             ||
|+-------------------------------------------------------------------+-----------+|
||  tooNewLogEventStartIndex                                         |  0        ||
|+-------------------------------------------------------------------+-----------+|

4. Put Metric Data

aws --endpoint-url=http://localhost:4566 cloudwatch put-metric-
data --namespace "MyApp" --metric-name "CPUUsage" --value 75

Description:

Publishes a custom CloudWatch metric CPUUsage with a value of 75 in the MyApp namespace.

5. List CloudWatch Metrics

aws --endpoint-url=http://localhost:4566 cloudwatch
list-metrics --namespace "MyApp"

Description:

Lists all CloudWatch metrics under the MyApp namespace.

Output:

-------------------------------
|         ListMetrics         |
+-----------------------------+
||          Metrics          ||
|+-------------+-------------+|
|| MetricName  |  Namespace  ||
|+-------------+-------------+|
||  CPUUsage   |  MyApp      ||
|+-------------+-------------+|

6. Describe Log Groups

aws --endpoint-url=http://localhost:4566 logs describe-log-groups

Description:

Retrieves details of all log groups available in CloudWatch Logs.

Output:

-----------------------------------------------------------------------------------------
|                                   DescribeLogGroups                                   |
+---------------------------------------------------------------------------------------+
||                                      logGroups                                      ||
|+-------------------+-----------------------------------------------------------------+|
||  arn              |  arn:aws:logs:us-east-1:000000000000:log-group:/my/app/logs:*   ||
||  creationTime     |  1741322075726                                                  ||
||  logGroupName     |  /my/app/logs                                                   ||
||  metricFilterCount|  0                                                              ||
||  storedBytes      |  0                                                              ||
|+-------------------+-----------------------------------------------------------------+|

7. Retrieve Log Events

aws --endpoint-url=http://localhost:4566 logs get-log-events
--log-group-name /my/app/logs --log-stream-name my-stream

Description:

Fetches the log events from my-stream under /my/app/logs.

Output:

-------------------------------------------------------------------------------------
|                                   GetLogEvents                                    |
+--------------------+--------------------------------------------------------------+
|  nextBackwardToken |  b/00000000000000000000000000000000000000000000000000000000  |
|  nextForwardToken  |  f/00000000000000000000000000000000000000000000000000000000  |
+--------------------+--------------------------------------------------------------+

Want to see how it all worked step by step? Check it out here:
🔗 Experiment 9 Output (PDF)

🧠 Curious about how each command runs and responds? See the detailed input-output flow here:
🖥️ Monitoring Setup Input-Output Flow (PDF)

🎉 And that’s a wrap on Cloud Monitoring and Logging!

📚 Found great monitoring tools, cheat sheets, or observability hacks? Drop them in the comments. I’d love to check them out and share with the community!

🚀 Stay tuned for the next article!
Up next, we’ll dive into Setting Up a Cloud-based CI/CD Pipeline — where you’ll learn how to automate deployment and streamline your cloud workflows like a pro. 🔄☁️💻