Shipping FSx for ONTAP Logs to Datadog — The Serverless Way
The article outlines a serverless method to ship Amazon FSx for ONTAP audit logs to Datadog using AWS CloudFormation, Lambda, and EventBridge Scheduler. It eliminates the need for EC2 instances, NFS mounts, or agents by leveraging S3 Access Points and structured log forwarding. The solution enables real-time observability with searchable, structured log attributes in Datadog.
- ▪The architecture uses FSx for ONTAP audit volume, S3 Access Point, EventBridge Scheduler, Lambda, and Datadog for log shipping.
- ▪A CloudFormation stack deploys Lambda, Scheduler, DLQ, alarms, and a CloudWatch dashboard for monitoring.
- ▪Structured log attributes like @attributes.svm, @attributes.user, and @attributes.path are available in Datadog for filtering and analysis.
- ▪ONTAP audit logging must be enabled with proper SACLs or NFSv4 ACLs to generate file access events.
- ▪The integration requires a Datadog API key stored in AWS Secrets Manager and an S3 Access Point attached to the audit volume.
Opening excerpt (first ~120 words) tap to expand
try { if(localStorage) { let currentUser = localStorage.getItem('current_user'); if (currentUser) { currentUser = JSON.parse(currentUser); if (currentUser.id === 1143688) { document.getElementById('article-show-container').classList.add('current-user-is-article-author'); } } } } catch (e) { console.error(e); } Yoshiki Fujiwara(藤原 善基)@AWS Community Builder for AWS Community Builders Posted on May 17 Shipping FSx for ONTAP Logs to Datadog — The Serverless Way #aws #serverless #datadog #amazonfsxfornetappontap Serverless Observability for Amazon FSx for NetApp ONTAP (3 Part Series) 1 Why Your FSx for ONTAP Audit Logs Deserve Better Than EC2 2 Shipping FSx for ONTAP Logs to Datadog — The Serverless Way 3 Event-Driven Ransomware Detection with ONTAP ARP + Datadog TL;DR Deploy a CloudFormation…
Excerpt limited to ~120 words for fair-use compliance. The full article is at DEV.to (Top).
Discussion
0 commentsMore from DEV.to (Top)
