Networking & Content Delivery
Category: Analytics
How to use Amazon Athena queries to analyze AWS WAF logs and provide the visibility needed for threat detection
Web application security is an ongoing process. AWS WAF enables real-time monitoring and blocking of potentially harmful web requests. Bot Control and Fraud Control use machine learning (ML) to detect and prevent sophisticated threats. Bot traffic can make up anywhere from 30% to 50% or even more of total web traffic. After enabling AWS WAF, […]
Understand your network traffic trends using AWS Transit Gateway Flow Logs
AWS Transit Gateway is a network transit hub that enables you to connect thousands of Amazon Virtual Private Clouds (Amazon VPCs) and your on-premises networks using a single gateway. This simplifies your network connection and puts an end to complex peering relationships. AWS Transit Gateway Flow Logs enables you to export detailed telemetry information, such as source/destination […]
Tracking pixel driven web analytics with Amazon CloudFront: Part 2
This post is a continuation of Tracking Pixel driven web analytics with AWS Edge Services. In Part 1 of this series, we discussed the usage of pixel tracking to provide insights into user behavior. A tracking pixel consists of using a 1×1 transparent pixel with a HTML element to leverage the loading call to send […]
Tracking Pixel driven web analytics with AWS Edge Services: Part 1
Being able to analyze web traffic and user behavior is essential to understanding the impacts of new features, content updates, or current product iterations for websites and applications. Tracking website activity can provide insight into who visits your website, where they come from, and what content they view. A web beacon is a common technique […]
How to analyze AWS Network Firewall logs using Amazon OpenSearch Service – Part 2
In part 1 of this blog-post series, we walked you through steps to configure Amazon OpenSearch Service to receive logs from AWS Network Firewall using Amazon Kinesis Data Firehose. In this part 2, we cover steps to generate test alerts, validating them and configure dashboards in Amazon OpenSearch Service to visualize and analyze log data. […]
How to analyze AWS Network Firewall logs using Amazon OpenSearch Service – Part 1
This two-part blog series demonstrates how to build network analytics and visualizations using data available through AWS Network Firewall logs. Network Firewall supports Amazon Kinesis Data Firehose as one of the logging destinations, and these logs can be streamed to Amazon OpenSearch Service as a delivery destination. Network Firewall logs contain several data points, such as source […]
Analyzing stale security group rules using serverless architecture
Security is a top priority for AWS and customers running workloads in AWS. The previous post Top 10 security items to improve in your AWS account, covered the top security items that AWS customers should pay special attention to if they want to improve their security posture. High on the list is the need to […]
Introducing Amazon VPC Flow Logs to Kinesis Data Firehose
Amazon Virtual Private Cloud (Amazon VPC) Flow Logs helps you understand network traffic patterns on AWS by providing network telemetry data about the IP traffic flowing to and from ENIs in your VPC. It lets you perform numerous analytics tasks, such as diagnosing overly restrictive security group rules, monitoring traffic that is reaching an instance, […]
Understand AWS Data transfer details in depth from cost and usage report using Athena query and QuickSight
Keeping applications up and running continuously requires architecting your application to prevent downtime, as well as the ability to recover from failure as quickly as possible with minimum data loss to achieve RTO-Recovery Time Objective and RPO– Recovery Point Objective. AWS helps you achieve high availability for cloud workloads across multiple dimensions, such as compute, databases, […]
Analyze Network Traffic of Amazon Virtual Private Cloud (VPC) by CIDR blocks
An update was made on October 15, 2024: With the release of Athena engine version 3, native support for IP address functions is available through the Trino project. This eliminates the need for the Lambda function approach outlined in this blog post. To take advantage of this new enhancement, it is necessary to update the […]