{"id":41107,"date":"2023-07-06T16:20:35","date_gmt":"2023-11-18T01:47:39","guid":{"rendered":"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/"},"modified":"2024-04-30T12:18:58","modified_gmt":"2024-04-30T04:18:58","slug":"%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96","status":"publish","type":"post","link":"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/","title":{"rendered":"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316"},"content":{"rendered":"<h1>\u9996\u5148<\/h1>\n<p>\u901a\u8fc7\u4f7f\u7528\u7531\u4e9a\u9a6c\u900a\u7f51\u7edc\u670d\u52a1\uff08AWS\uff09\u63d0\u4f9b\u7684\u670d\u52a1\uff0c\u5982Amazon CloudFront\u548cAmazon S3\u7684\u7ec4\u5408\uff0c\u53ef\u4ee5\u4ee5\u4f4e\u6210\u672c\u6784\u5efa\u7531HTML\u3001JavaScript\u3001\u56fe\u50cf\u548c\u89c6\u9891\u6784\u6210\u7684\u9759\u6001\u7f51\u7ad9\u7684\u5206\u53d1\u57fa\u7840\u8bbe\u65bd\u3002\u672c\u6587\u5c06\u901a\u8fc7\u4f7f\u7528\u80fd\u591f\u81ea\u52a8\u8fdb\u884c\u8d44\u6e90\u8bbe\u7f6e\u7684AWS CloudFormation\u6765\u8bf4\u660e\u5982\u4f55\u8fc5\u901f\u4e14\u65e0\u8bef\u5730\u6784\u5efa\u8fd9\u4e9b\u5206\u53d1\u57fa\u7840\u8bbe\u65bd\u7684\u6b65\u9aa4\u3002\u8bf7\u6ce8\u610f\uff0c\u672c\u6b21\u4f7f\u7528\u7684CloudFormation\u6a21\u677f\u5df2\u5728\u4ee5\u4e0b\u7684GitHub\u5b58\u50a8\u5e93\u4e2d\u516c\u5f00\u3002<\/p>\n<ul class=\"post-ul\">AWSCloudFormationTemplates\/static-website-hosting-with-ssl<\/ul>\n<h1>\u592a\u957f\u4e0d\u8bfb\u3002<\/h1>\n<p>\u901a\u8fc7\u6267\u884c\u4ee5\u4e0b\u7684CloudFormation\u6a21\u677f\uff0c\u60a8\u53ef\u4ee5\u5feb\u901f\u4e14\u8f7b\u677e\u5730\u5efa\u7acb\u4e00\u4e2a\u9759\u6001\u7f51\u7ad9\u6258\u7ba1\u57fa\u7840\u8bbe\u65bd\u3002\u53ea\u9700\u70b9\u51fb\u4e0b\u65b9\u6309\u94ae\uff0c\u5373\u53ef\u5728\u60a8\u7684AWS\u8d26\u6237\uff08\u4e9a\u592a\u5730\u533a\u4e1c\u4eac &#8211; ap-northeast-1\uff09\u4e0a\u8fd0\u884c\u8fd9\u4e2aCloudFormation\u6a21\u677f\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/5-0.png\" alt=\"cloudformation-launch-stack\" \/><\/div>\n<p>\u8bf7\u67e5\u770b\u4ee5\u524d\u7684\u6587\u7ae0\u4ee5\u83b7\u53d6\u5173\u4e8e\u521b\u5efa\u7684AWS\u8d44\u6e90\u6574\u4f53\u67b6\u6784\u7684\u56fe\u8868\u3002\u5728\u672c\u6587\u4e2d\uff0c\u6211\u4eec\u5c06\u91cd\u70b9\u4ecb\u7ecd\u4ee5\u4e0b\u8d44\u6e90\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/7-0.png\" alt=\"architecture.png\" \/><\/div>\n<h1>\u4f7f\u7528Kibana\u6765\u53ef\u89c6\u5316CloudFront\u7684\u5b9e\u65f6\u65e5\u5fd7\u3002<\/h1>\n<p>\u4e0e\u4ee5\u5f80\u9700\u8981\u6570\u5206\u949f\u624d\u80fd\u4f7f\u7528\u7684\u6807\u51c6\u65e5\u5fd7\u76f8\u6bd4\uff0cCloudFront\u7684\u5b9e\u65f6\u65e5\u5fd7\u73b0\u5728\u53ef\u4ee5\u5728\u751f\u6210\u540e\u7684\u51e0\u79d2\u949f\u5185\u8bbf\u95ee\u3002\u901a\u8fc7\u4f7f\u7528\u8fd9\u4e2a\u529f\u80fd\uff0c\u6211\u4eec\u53ef\u4ee5\u8fdb\u884c\u66f4\u8be6\u7ec6\u548c\u66f4\u5feb\u901f\u7684\u76d1\u63a7\uff0c\u5e76\u53ca\u65f6\u6839\u636e\u53d1\u751f\u7684\u4e8b\u4ef6\u8fdb\u884c\u8d44\u6e90\u914d\u7f6e\u7684\u5feb\u901f\u66f4\u6539\u3002\u8fd9\u4e2a\u5b9e\u65f6\u65e5\u5fd7\u53ef\u4ee5<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">\u53d6\u5f97\u3059\u308b\u30ed\u30b0\u306e\u30b5\u30f3\u30d7\u30ea\u30f3\u30b0\u7387<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">\n<li style=\"list-style-type: none;\">\n<ul class=\"post-ul\">\u53d6\u5f97\u3059\u308b\u30ed\u30b0\u306e\u30d5\u30a3\u30fc\u30eb\u30c9<\/ul>\n<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<ul class=\"post-ul\">\u3069\u306eCloudFront Behavior \u306b\u9069\u7528\u3059\u308b\u304b<\/ul>\n<p>\u53ef\u4ee5\u6307\u5b9a\u4efb\u4f55\u65e5\u5fd7\uff0c\u5e76\u5c06\u5176\u53d1\u9001\u5230Kinesis Data Streams\u3002\u540c\u65f6\uff0c\u901a\u8fc7Kinesis Data Firehose\uff0c\u53ef\u4ee5\u5c06\u5230\u8fbeKinesis\u6d41\u7684\u65e5\u5fd7\u5b58\u50a8\u5230Elasticsearch Service\u4e2d\uff0c\u5e76\u901a\u8fc7\u4f7f\u7528Kibana\u8f7b\u677e\u53ef\u89c6\u5316\u65e5\u5fd7\u5185\u5bb9\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/12-0.png\" alt=\"Screenshot_2021-01-23 Default - Elastic.png\" \/><\/div>\n<p>\u901a\u8fc7\u6309\u7167\u8fd9\u91cc\u5217\u51fa\u7684\u6b65\u9aa4\u6765\u521b\u5efa\u8d44\u6e90\uff0c\u53ef\u4ee5\u6784\u5efa\u4ee5\u4e0b\u67b6\u6784\u3002\u8fd9\u4e9b\u6b65\u9aa4\u5728\u4e9a\u9a6c\u900a\u7f51\u7edc\u670d\u52a1\uff08Amazon Web Services\uff09\u535a\u5ba2\u4e0a\u4ee5\u6807\u9898\u201c\u4f7f\u7528Amazon CloudFront\u65e5\u5fd7\u521b\u5efa\u5b9e\u65f6\u4eea\u8868\u677f\u201d\u8fdb\u884c\u4e86\u53d1\u5e03\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/14-0.png\" alt=\"architecture\" \/><\/div>\n<p>\u672c\u6587\u4e2d\uff0c\u6211\u5011\u5c07\u4f7f\u7528CloudFormation\u6a21\u677f\u4ee5\u4e00\u9375\u65b9\u5f0f\u5275\u5efa\u4e0a\u8ff0\u67b6\u69cb\u3002\u540c\u6642\uff0c\u6211\u5011\u9084\u5c07\u89e3\u91cb\u70ba\u6bcf\u500bAWS\u670d\u52d9\u5206\u914d\u591a\u5c11\u8cc7\u6e90\u4f86\u61c9\u5c0d\u8ca0\u8f09\u6240\u9700\u3002<\/p>\n<h2>\u4e9a\u9a6c\u900a\u91d1\u878d\u6570\u636e\u6d41<\/h2>\n<p>\u9996\u5148\uff0c\u6211\u4eec\u9700\u8981\u521b\u5efa\u4e00\u4e2aKinesis\u6d41\u6765\u63a5\u6536\u6765\u81eaCloudFront\u7684\u5b9e\u65f6\u65e5\u5fd7\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Parameters<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">KinesisShardCount<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Number<\/span>\r\n    <span class=\"na\">Default<\/span><span class=\"pi\">:<\/span> <span class=\"m\">1<\/span>\r\n    <span class=\"na\">MinValue<\/span><span class=\"pi\">:<\/span> <span class=\"s\">1<\/span> \r\n    <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">The shard count of Kinesis [required]<\/span>\r\n\r\n<span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">Kinesis<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::Kinesis::Stream'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">Name<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">AWS::StackName<\/span>\r\n      <span class=\"na\">RetentionPeriodHours<\/span><span class=\"pi\">:<\/span> <span class=\"m\">24<\/span>\r\n      <span class=\"na\">StreamEncryption<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">EncryptionType<\/span><span class=\"pi\">:<\/span> <span class=\"s\">KMS<\/span>\r\n        <span class=\"na\">KeyId<\/span><span class=\"pi\">:<\/span> <span class=\"s\">alias\/aws\/kinesis<\/span>\r\n      <span class=\"na\">ShardCount<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">KinesisShardCount<\/span>\r\n<\/code><\/pre>\n<p>\u91cd\u8981\u7684\u662f\u786e\u5b9a\u5728\u8fd9\u91cc\u4f7f\u7528\u591a\u5c11\u4e2a\u5206\u7247\u6765\u6784\u5efaKinesis\u6d41\u3002\u5173\u4e8e\u5982\u4f55\u8ba1\u7b97\u8fd9\u4e2a\u503c\uff0c\u5b98\u65b9\u6587\u6863\u4e2d\u63d0\u4f9b\u4e86\u8ba1\u7b97Kinesis\u6570\u636e\u6d41\u5206\u7247\u6570\u7684\u4f30\u7b97\u65b9\u6cd5\u7684\u63cf\u8ff0\uff0c\u5e76\u4e14\u8fd8\u5305\u62ec\u4e86\u8f93\u51fa\u6240\u6709\u5b57\u6bb5\u7684\u5b9e\u65f6\u65e5\u5fd7\u7684\u60c5\u51b5\u4e0b\uff0c<\/p>\n<pre class=\"post-pre\"><code>1,000 Byte x \u79d2\u9593\u30ea\u30af\u30a8\u30b9\u30c8\u6570 \/ 1,000,000 x 1.25 = \u30b7\u30e3\u30fc\u30c9\u6570\r\n<\/code><\/pre>\n<p>\u53ef\u4ee5\u901a\u8fc7\u8ba1\u7b97\u5f97\u51fa\u3002<\/p>\n<p>\u5982\u679c\u6709\u53ef\u80fd\u53d1\u751f\u6700\u591a\u6bcf\u79d25000\u4e2a\u8bf7\u6c42\u7684\u8bbf\u95ee\uff0c\u8bf7\u63d0\u4f9b\u4e00\u4e2a\u4f8b\u5b50\u3002<\/p>\n<pre class=\"post-pre\"><code>5,000 x 1,000 \/ 1,000,000 x 1.25 = 7\r\n<\/code><\/pre>\n<p>\u8fd9\u6837\u4e00\u6765\uff0c\u6211\u4eec\u53ef\u4ee5\u770b\u51fa\uff0c\u9700\u8981\u5927\u7ea67\u4e2a\u5206\u7247\uff0c\u5305\u62ec\u7f13\u5b58\u3002<\/p>\n<p>\u7136\u800c\uff0c\u5bf9\u4e8e\u51fa\u73b0\u7a81\u53d1\u6d41\u91cf\u7684\u7f51\u7ad9\uff0c\u7531\u4e8e\u6bcf\u79d2\u949f\u7684\u65e5\u5fd7\u8f93\u51fa\u4f1a\u96c6\u4e2d\u5728\u7279\u5b9a\u7684\u4e00\u79d2\u949f\uff0c\u53ef\u80fd\u4f1a\u8d85\u8fc7\u6587\u6863\u4e2d\u6240\u8ff0\u7684\u503c\u6240\u80fd\u63a5\u6536\u7684\u6570\u636e\u91cf\uff0c\u4ece\u800c\u5bfc\u81f4\u51fa\u73b0 ProvisionedThroughputExceededException \u5f02\u5e38\u3002\u56e0\u6b64\uff0c\u4e3a\u4e86\u4fdd\u8bc1\u5b89\u5168\uff0c\u5efa\u8bae\u63d0\u524d\u914d\u7f6e\u4e00\u4e2a\u6bd4\u6587\u6863\u4e2d\u6240\u8ff0\u503c\u66f4\u5927\u7684\u7f13\u51b2\u533a\uff0c\u4f8b\u5982\u53ef\u4ee5\u914d\u7f6e\u80fd\u591f\u5904\u7406\u9884\u671f\u6570\u636e\u91cf\u7684\u4e24\u500d\u7684\u5206\u7247\u6570\u91cf\u7684\u5206\u7247\u3002<\/p>\n<h3>\u6839\u636e\u6d41\u91cf\u8c03\u6574\u5206\u7247\u6570\u91cf<\/h3>\n<p>\u6839\u636e\u65f6\u95f4\u548c\u4e8b\u4ef6\u7684\u5b58\u5728\u4e0e\u5426\uff0cCloudFront\u7684\u6d41\u91cf\u4f1a\u6709\u6240\u53d8\u52a8\u3002\u7531\u4e8eKinesis Data Streams\u7684\u8ba1\u8d39\u662f\u6309\u7167\u5206\u7247\u6570\uff08\u5206\u7247\u65f6\u95f4\uff09\u8ba1\u8d39\uff0c\u5e76\u4e14\u65e0\u6cd5\u63a5\u6536\u8d85\u51fa\u5176\u5bb9\u91cf\u7684\u5b9e\u65f6\u65e5\u5fd7\uff0c\u56e0\u6b64\u6839\u636e\u6d41\u5411CloudFront\u7684\u6d41\u91cf\u91cf\uff0c\u9700\u8981\u8c03\u6574Kinesis\u6d41\u7684\u5206\u7247\u6570\u3002<\/p>\n<p>\u7136\u800c\uff0c\u5728\u66f4\u6539\u5206\u7247\u6570\u91cf\u65f6\u5b58\u5728\u4e00\u4e9b\u9650\u5236\u3002\u9996\u5148\uff0c\u8c03\u7528UpdteShardCount API\u6765\u66f4\u6539\u5206\u7247\u6570\u91cf\u53ea\u80fd\u6267\u884c\u5c06\u5f53\u524d\u5206\u7247\u6570\u91cf\u500d\u589e\u6216\u51cf\u534a\u7684\u64cd\u4f5c\u3002\u56e0\u6b64\uff0c\u65e0\u6cd5\u5c063\u4e2a\u5206\u7247\u7684Kinesis\u6d41\u66f4\u6539\u4e3a7\u4e2a\u5206\u7247\u3002\u56e0\u6b64\uff0c\u5efa\u8bae\u5c06\u5206\u7247\u6570\u91cf\u8bbe\u7f6e\u4e3a2\u7684\u5e42\u6b21\u65b9\uff081\u30012\u30014\u30018\u300116\u300132\u300164\u3001128&#8230;\uff09\u3002\u6b64\u5916\uff0c\u6bcf\u4e2a\u533a\u57df\u7684\u521d\u59cb\u5206\u7247\u6570\u91cf\u4e3a\u5317\u5f17\u5409\u5c3c\u4e9a\uff08us-east-1\uff09\u533a\u57df\u4e3a500\u4e2a\u5206\u7247\uff0c\u5176\u4ed6\u533a\u57df\u4e3a200\u4e2a\u5206\u7247\u3002\u9664\u6b64\u4e4b\u5916\uff0c\u5bf9\u4e8e\u6267\u884cUpdteShardCount API\u7684\u6b21\u6570\u8fd8\u6709\u9650\u5236\u3002\u5982\u679c\u5e0c\u671b\u8d85\u8fc7\u8fd9\u4e9b\u9650\u5236\uff0c\u8bf7\u63d0\u4ea4\u7533\u8bf7\u4ee5\u653e\u5bbd\u914d\u989d\u9650\u5236\u3002<\/p>\n<p>\u4e3a\u4e86\u786e\u8ba4\u5728Kinesis Data Streams\u4e2d\u8bbe\u7f6e\u7684\u5bb9\u91cf\u662f\u5426\u9002\u5e94\u8d1f\u8f7d\uff0c\u8bf7\u76d1\u63a7\u4ee5\u4e0bCloudWatch\u6307\u6807\u3002\u60a8\u53ef\u4ee5\u4ece\u6b64\u94fe\u63a5\u4e2d\u542f\u7528\u57fa\u4e8e\u8fd9\u4e9b\u6307\u6807\u7684CloudWatch\u8b66\u62a5\u3002<\/p>\n<div>\n<div class=\"post-table\">\u30cd\u30fc\u30e0\u30b9\u30da\u30fc\u30b9\u30e1\u30c8\u30ea\u30af\u30b9\u95be\u5024AWS\/Kinesis<strong>GetRecords.IteratorAgeMilliseconds<\/strong>\u30c6\u30f3\u30d7\u30ec\u30fc\u30c8\u3067\u6307\u5b9a\u3057\u305f\u5024AWS\/Kinesis<strong>PutRecord.Success<\/strong>\u30c6\u30f3\u30d7\u30ec\u30fc\u30c8\u3067\u6307\u5b9a\u3057\u305f\u5024AWS\/Kinesis<strong>WriteProvisionedThroughputExceeded<\/strong><strong>1\u5206\u9593\u306b1\u56de\u4ee5\u4e0a<\/strong><\/div>\n<\/div>\n<h2>\u4e9a\u9a6c\u900a\u4e91\u7aef\u6d41\u91cf\u52a0\u901f<\/h2>\n<p>\u63a5\u4e0b\u6765\uff0c\u8fdb\u884cCloudFront\u5b9e\u65f6\u65e5\u5fd7\u8f93\u51fa\u7684\u914d\u7f6e\u3002<\/p>\n<p>\u9996\u5148\uff0c\u4e3a\u4e86\u4f7fCloudFront\u80fd\u591f\u5411Kinesis Data Streams\u8f93\u51fa\u65e5\u5fd7\uff0c\u6211\u4eec\u5c06\u4f7f\u7528IAM\u89d2\u8272\u6765\u6388\u4e88\u6743\u9650\u3002\u7ed9\u4e88CloudFront\u7684\u6743\u9650\u5305\u62ec\u5199\u5165Kinesis\u7684\u6743\u9650\u548c\u521b\u5efa\u7528\u4e8e\u6570\u636e\u52a0\u5bc6\u7684KMS\u5bc6\u94a5\u7684\u6743\u9650\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">IAMRoleForCloudFrontRealtimeLog<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::IAM::Role'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">AssumeRolePolicyDocument<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s\">2012-10-17<\/span>\r\n        <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n            <span class=\"na\">Principal<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">Service<\/span><span class=\"pi\">:<\/span> <span class=\"s\">cloudfront.amazonaws.com<\/span>\r\n            <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">sts:AssumeRole'<\/span>\r\n      <span class=\"na\">Policies<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"na\">PolicyName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">${AWS::StackName}-KinesisPutPolicy-${AWS::Region}'<\/span>\r\n          <span class=\"na\">PolicyDocument<\/span><span class=\"pi\">:<\/span>\r\n            <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">2012-10-17'<\/span>\r\n            <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:DescribeStreamSummary'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:DescribeStream'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:PutRecord'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:PutRecords'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">Kinesis.Arn<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kms:GenerateDataKey'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">KMSKey.Arn<\/span>\r\n      <span class=\"na\">RoleName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">${aws::StackName}-CloudFrontRealtimeLog-${AWS::Region}'<\/span>\r\n<\/code><\/pre>\n<p>\u63a5\u4e0b\u6765\uff0c\u60a8\u9700\u8981\u6307\u5b9a\u5148\u524d\u521b\u5efa\u7684Kinesis Data Streams\u548cIAM\u89d2\u8272\u7684ARN\uff0c\u4ee5\u8fdb\u884c\u5b9e\u65f6\u65e5\u5fd7\u7684\u914d\u7f6e\u3002\u5728\u5b57\u6bb5(Fields)\u90e8\u5206\uff0c\u60a8\u53ef\u4ee5\u9009\u62e9\u8981\u8f93\u51fa\u81f3\u65e5\u5fd7\u7684\u5b57\u6bb5\u3002\u4f46\u5728\u672c\u6a21\u677f\u4e2d\uff0c\u6211\u4eec\u5c06\u9009\u62e9\u8f93\u51fa\u4ee5\u4e0b\u6240\u6709\u5b57\u6bb5\u7684\u914d\u7f6e\u3002<\/p>\n<div>\n<div class=\"post-table\">\u30d5\u30a3\u30fc\u30eb\u30c9\u540d\u5185\u5bb9timestamp\u30a8\u30c3\u30b8\u30b5\u30fc\u30d0\u30fc\u304c\u30ea\u30af\u30a8\u30b9\u30c8\u3078\u306e\u5fdc\u7b54\u3092\u7d42\u4e86\u3057\u305f\u65e5\u6642c-ip\u30ea\u30af\u30a8\u30b9\u30c8\u5143\u306e\u30d3\u30e5\u30fc\u30ef\u30fc\u306e IP \u30a2\u30c9\u30ec\u30b9time-to-first-byte\u30b5\u30fc\u30d0\u30fc\u4e0a\u3067\u6e2c\u5b9a\u3055\u308c\u308b\u3001\u8981\u6c42\u3092\u53d7\u4fe1\u3057\u3066\u304b\u3089\u5fdc\u7b54\u306e\u6700\u521d\u306e\u30d0\u30a4\u30c8\u3092\u66f8\u304d\u8fbc\u3080\u307e\u3067\u306e\u79d2\u6570sc-status\u30b5\u30fc\u30d0\u30fc\u306e\u30ec\u30b9\u30dd\u30f3\u30b9\u306e HTTP \u30b9\u30c6\u30fc\u30bf\u30b9\u30b3\u30fc\u30c9sc-bytes\u30b5\u30fc\u30d0\u30fc\u304c\u30ea\u30af\u30a8\u30b9\u30c8\u306b\u5fdc\u3058\u3066\u30d3\u30e5\u30fc\u30ef\u30fc\u306b\u9001\u4fe1\u3057\u305f\u30c7\u30fc\u30bf\u306e\u30d0\u30a4\u30c8\u306e\u5408\u8a08\u6570cs-method\u30d3\u30e5\u30fc\u30ef\u30fc\u304b\u3089\u53d7\u4fe1\u3057\u305f HTTP \u30ea\u30af\u30a8\u30b9\u30c8\u30e1\u30bd\u30c3\u30c9cs-protocol\u30d3\u30e5\u30fc\u30ef\u30fc\u30ea\u30af\u30a8\u30b9\u30c8\u306e\u30d7\u30ed\u30c8\u30b3\u30ebcs-hostCloudFront \u30c7\u30a3\u30b9\u30c8\u30ea\u30d3\u30e5\u30fc\u30b7\u30e7\u30f3\u306e\u30c9\u30e1\u30a4\u30f3\u540dcs-uri-stem\u30d1\u30b9\u3068\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u3092\u8b58\u5225\u3059\u308b\u30ea\u30af\u30a8\u30b9\u30c8 URL \u306e\u90e8\u5206cs-bytes\u30d3\u30e5\u30fc\u30ef\u30fc\u304c\u30ea\u30af\u30a8\u30b9\u30c8\u306b\u542b\u3081\u305f\u30c7\u30fc\u30bf\u306e\u30d0\u30a4\u30c8\u306e\u5408\u8a08\u6570x-edge-location\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u51e6\u7406\u3057\u305f\u30a8\u30c3\u30b8\u30ed\u30b1\u30fc\u30b7\u30e7\u30f3x-edge-request-id\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u4e00\u610f\u306b\u8b58\u5225\u3059\u308b\u4e0d\u900f\u660e\u306a\u6587\u5b57\u5217x-host-header\u30d3\u30e5\u30fc\u30ef\u30fc\u304c\u3001\u3053\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u306e Host \u30d8\u30c3\u30c0\u30fc\u306b\u8ffd\u52a0\u3057\u305f\u5024time-taken\u30b5\u30fc\u30d0\u30fc\u304c\u3001\u30d3\u30e5\u30fc\u30ef\u30fc\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u53d7\u4fe1\u3057\u3066\u304b\u3089\u30ec\u30b9\u30dd\u30f3\u30b9\u306e\u6700\u5f8c\u306e\u30d0\u30a4\u30c8\u3092\u51fa\u529b\u30ad\u30e5\u30fc\u306b\u66f8\u304d\u8fbc\u3080\u307e\u3067\u306e\u79d2\u6570cs-protocol-version\u30d3\u30e5\u30fc\u30ef\u30fc\u304c\u30ea\u30af\u30a8\u30b9\u30c8\u3067\u6307\u5b9a\u3057\u305f HTTP \u30d0\u30fc\u30b8\u30e7\u30f3c-ip-version\u30ea\u30af\u30a8\u30b9\u30c8\u306e IP \u30d0\u30fc\u30b8\u30e7\u30f3cs-user-agent\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e <code>User-Agent<\/code> \u30d8\u30c3\u30c0\u30fc\u306e\u5024cs-referer\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e <code>Referer<\/code> \u30d8\u30c3\u30c0\u30fc\u306e\u5024cs-cookie\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e Cookie \u30d8\u30c3\u30c0\u30fccs-uri-query\u30ea\u30af\u30a8\u30b9\u30c8 URL \u306e\u30af\u30a8\u30ea\u6587\u5b57\u5217\u306e\u90e8\u5206x-edge-response-result-type\u30d3\u30e5\u30fc\u30ef\u30fc\u306b\u30ec\u30b9\u30dd\u30f3\u30b9\u3092\u8fd4\u3059\u76f4\u524d\u306b\u30b5\u30fc\u30d0\u30fc\u304c\u30ec\u30b9\u30dd\u30f3\u30b9\u3092\u5206\u985e\u3057\u305f\u65b9\u6cd5x-forwarded-for\u30ea\u30af\u30a8\u30b9\u30c8\u5143\u306e\u30d3\u30e5\u30fc\u30ef\u30fc\u306e IP \u30a2\u30c9\u30ec\u30b9ssl-protocol\u30ea\u30af\u30a8\u30b9\u30c8\u3068\u30ec\u30b9\u30dd\u30f3\u30b9\u3092\u9001\u4fe1\u3059\u308b\u305f\u3081\u306b\u30d3\u30e5\u30fc\u30ef\u30fc\u3068\u30b5\u30fc\u30d0\u30fc\u304c\u30cd\u30b4\u30b7\u30a8\u30fc\u30c8\u3057\u305f SSL\/TLS \u30d7\u30ed\u30c8\u30b3\u30ebssl-cipher\u30ea\u30af\u30a8\u30b9\u30c8\u3068\u30ec\u30b9\u30dd\u30f3\u30b9\u3092\u6697\u53f7\u5316\u3059\u308b\u305f\u3081\u306b\u30d3\u30e5\u30fc\u30ef\u30fc\u3068\u30b5\u30fc\u30d0\u30fc\u304c\u30cd\u30b4\u30b7\u30a8\u30fc\u30c8\u3057\u305f SSL\/TLS \u6697\u53f7x-edge-result-type\u30b5\u30fc\u30d0\u30fc\u304c\u3001\u6700\u5f8c\u306e\u30d0\u30a4\u30c8\u3092\u6e21\u3057\u305f\u5f8c\u3067\u3001\u30ec\u30b9\u30dd\u30f3\u30b9\u3092\u5206\u985e\u3057\u305f\u65b9\u6cd5fle-encrypted-fields\u30b5\u30fc\u30d0\u30fc\u304c\u6697\u53f7\u5316\u3057\u3066\u30aa\u30ea\u30b8\u30f3\u306b\u8ee2\u9001\u3057\u305f\u30d5\u30a3\u30fc\u30eb\u30c9\u30ec\u30d9\u30eb\u6697\u53f7\u5316\u30d5\u30a3\u30fc\u30eb\u30c9\u306e\u6570fle-status\u30ea\u30af\u30a8\u30b9\u30c8\u30dc\u30c7\u30a3\u304c\u6b63\u5e38\u306b\u51e6\u7406\u3055\u308c\u305f\u304b\u3069\u3046\u304b\u3092\u793a\u3059\u30b3\u30fc\u30c9sc-content-type\u30ec\u30b9\u30dd\u30f3\u30b9\u306e HTTP Content-Type \u30d8\u30c3\u30c0\u30fc\u306e\u5024sc-content-len\u30ec\u30b9\u30dd\u30f3\u30b9\u306e HTTP Content-Length \u30d8\u30c3\u30c0\u30fc\u306e\u5024sc-range-start\u7bc4\u56f2\u306e\u958b\u59cb\u5024sc-range-end\u7bc4\u56f2\u306e\u7d42\u4e86\u5024c-port\u95b2\u89a7\u8005\u304b\u3089\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u306e\u30dd\u30fc\u30c8\u756a\u53f7x-edge-detailed-result-typex-edge-result-type \u3068\u540c\u3058\u5024c-country\u30d3\u30e5\u30fc\u30ef\u30fc\u306e IP \u30a2\u30c9\u30ec\u30b9\u306b\u3088\u3063\u3066\u6c7a\u5b9a\u3055\u308c\u308b\u3001\u30d3\u30e5\u30fc\u30ef\u30fc\u306e\u5730\u7406\u7684\u4f4d\u7f6e\u3092\u8868\u3059\u56fd\u30b3\u30fc\u30c9cs-accept-encoding\u30d3\u30e5\u30fc\u30ef\u30fc\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e Accept-Encoding \u30d8\u30c3\u30c0\u30fc\u306e\u5024cs-accept\u30d3\u30e5\u30fc\u30ef\u30fc\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e Accept \u30d8\u30c3\u30c0\u30fc\u306e\u5024cache-behavior-path-pattern\u30d3\u30e5\u30fc\u30ef\u30fc\u30ea\u30af\u30a8\u30b9\u30c8\u306b\u4e00\u81f4\u3057\u305f\u30ad\u30e3\u30c3\u30b7\u30e5\u52d5\u4f5c\u3092\u8b58\u5225\u3059\u308b\u30d1\u30b9\u30d1\u30bf\u30fc\u30f3cs-headers\u30d3\u30e5\u30fc\u30ef\u30fc\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e HTTP \u30d8\u30c3\u30c0\u30fccs-header-names\u30d3\u30e5\u30fc\u30ef\u30fc\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e HTTP \u30d8\u30c3\u30c0\u30fc\u306e\u540d\u524dcs-headers-count\u30d3\u30e5\u30fc\u30ef\u30fc\u30ea\u30af\u30a8\u30b9\u30c8\u5185\u306e HTTP \u30d8\u30c3\u30c0\u30fc\u306e\u6570<\/div>\n<\/div>\n<p>\u6b64\u5916\uff0c\u60a8\u53ef\u4ee5\u901a\u8fc7\u66f4\u6539SamplingRate\u503c\uff0c\u57281%\u5230100%\u4e4b\u95f4\u6307\u5b9aCloudFront\u5411Kinesis\u6570\u636e\u6d41\u53d1\u9001\u65e5\u5fd7\u7684\u91c7\u6837\u7387\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Parameters<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">SamplingRate<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Number<\/span>\r\n    <span class=\"na\">Default<\/span><span class=\"pi\">:<\/span> <span class=\"m\">100<\/span>\r\n    <span class=\"na\">MinValue<\/span><span class=\"pi\">:<\/span> <span class=\"m\">1<\/span>\r\n    <span class=\"na\">MaxValue<\/span><span class=\"pi\">:<\/span> <span class=\"m\">100<\/span>\r\n    <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">The sampling rate of logs sent by CloudFront [required]<\/span>\r\n\r\n<span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">CloudFrontRealtimeLogConfig<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::CloudFront::RealtimeLogConfig'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span> \r\n      <span class=\"na\">EndPoints<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"pi\">-<\/span> <span class=\"na\">KinesisStreamConfig<\/span><span class=\"pi\">:<\/span> \r\n            <span class=\"na\">RoleArn<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">IAMRoleForCloudFrontRealtimeLog.Arn<\/span>\r\n            <span class=\"na\">StreamArn<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">Kinesis.Arn<\/span>\r\n          <span class=\"na\">StreamType<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Kinesis<\/span>\r\n      <span class=\"na\">Fields<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"pi\">-<\/span> <span class=\"s\">timestamp<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">c-ip<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">time-to-first-byte<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">sc-status<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">sc-bytes<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-method<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-protocol<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-host<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-uri-stem<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-bytes<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">x-edge-location<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">x-edge-request-id<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">x-host-header<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">time-taken<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-protocol-version<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">c-ip-version<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-user-agent<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-referer<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-cookie<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-uri-query<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">x-edge-response-result-type<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">x-forwarded-for<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">ssl-protocol<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">ssl-cipher<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">x-edge-result-type<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">fle-encrypted-fields<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">fle-status<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">sc-content-type<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">sc-content-len<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">sc-range-start<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">sc-range-end<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">c-port<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">x-edge-detailed-result-type<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">c-country<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-accept-encoding<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-accept<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cache-behavior-path-pattern<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-headers<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-header-names<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"s\">cs-headers-count<\/span>\r\n      <span class=\"na\">Name<\/span><span class=\"pi\">:<\/span> <span class=\"s\">RealtimeLogConfig<\/span>\r\n      <span class=\"na\">SamplingRate<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">SamplingRate<\/span>\r\n<\/code><\/pre>\n<p>\u5982\u679c\u8d85\u8fc7\u4e86\u5df2\u7ecf\u914d\u7f6e\u7684Kinesis\u6d41\u7684\u5bb9\u91cf\u5e76\u4e14\u751f\u6210\u4e86\u5b9e\u65f6\u65e5\u5fd7\uff0c\u8d85\u51fa\u5bb9\u91cf\u7684\u90e8\u5206\u5b9e\u65f6\u65e5\u5fd7\u5c06\u4f1a\u4e22\u5931\u3002\u7136\u800c\uff0c\u8fd9\u4e0d\u4f1a\u5bfc\u81f4CloudFront\u5206\u53d1\u7684\u884c\u4e3a\u5f02\u5e38\u3002<\/p>\n<p>\u6b64\u5916\uff0cCloudFront\u662fAWS\u63d0\u4f9b\u7684\u5168\u7403\u670d\u52a1\uff0c\u4f46\u662f\u6240\u6709\u8fb9\u7f18\u4f4d\u7f6e\u7684\u8bbf\u95ee\u65e5\u5fd7\u90fd\u4f1a\u8f93\u51fa\u5230\u63a5\u6536\u5b9e\u65f6\u65e5\u5fd7\u7684Kinesis\u6d41\u4e2d\u3002\u53ef\u4ee5\u5728x-edge-location\u5b57\u6bb5\u4e2d\u67e5\u770b\u8bf7\u6c42\u662f\u5728\u54ea\u4e2a\u8fb9\u7f18\u4f4d\u7f6e\u5904\u7406\u7684\u3002<\/p>\n<p>\u5f53\u5c06\u4e0a\u8ff0\u7684\u5b9e\u65f6\u65e5\u5fd7\u8bbe\u7f6e\u9644\u52a0\u5230\u4ee5\u524d\u521b\u5efa\u7684CloudFront\u5206\u53d1\u4e0a\u65f6\uff0c\u521a\u521a\u8bbe\u7f6e\u7684\u5b9e\u65f6\u65e5\u5fd7\u8f93\u51fa\u5c06\u5728CloudFront\u4e0a\u751f\u6548\u3002<\/p>\n<pre class=\"post-pre\"><code>  <span class=\"na\">CloudFront<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::CloudFront::Distribution'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">DistributionConfig<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">DefaultCacheBehavior<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"na\">RealtimeLogConfigArn<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">CloudFrontRealtimeLogConfig.Arn<\/span>\r\n<\/code><\/pre>\n<h2>\u4e9a\u9a6c\u900a\u5f39\u6027\u641c\u7d22\u670d\u52a1 (Amazon Elasticsearch Service)<\/h2>\n<p>Elasticsearch\u662f\u4e00\u79cd\u5206\u5e03\u5f0f\u5206\u6790\u5f15\u64ce\uff0c\u53ef\u4ee5\u8fdb\u884c\u5404\u79cd\u7c7b\u578b\u7684\u641c\u7d22\uff0c\u5982\u7ed3\u6784\u5316\u3001\u975e\u7ed3\u6784\u5316\u3001\u5730\u7406\u4fe1\u606f\u548c\u6307\u6807\uff0c\u5e76\u5bf9\u5927\u89c4\u6a21\u6570\u636e\u8fdb\u884c\u5206\u6790\u3002Amazon Elasticsearch Service\u662f\u4e00\u4e2a\u7b80\u5355\u4e14\u53ef\u6269\u5c55\u5730\u90e8\u7f72\u3001\u4fdd\u62a4\u548c\u8fd0\u884cElasticsearch\u7684\u6258\u7ba1\u670d\u52a1\u3002<\/p>\n<p>\u901a\u8fc7\u4f7f\u7528\u8fd9\u4e2aElasticsearch\u670d\u52a1\uff0c\u60a8\u53ef\u4ee5\u4fdd\u5b58\u548c\u5206\u6790\u5e94\u7528\u7a0b\u5e8f\u548c\u57fa\u7840\u8bbe\u65bd\u7684\u65e5\u5fd7\uff0c\u4ee5\u4fbf\u5feb\u901f\u53d1\u73b0\u95ee\u9898\uff0c\u5e76\u4e3a\u5e94\u7528\u7a0b\u5e8f\u6dfb\u52a0\u641c\u7d22\u529f\u80fd\u3002\u56e0\u6b64\uff0c\u6211\u4eec\u5c06\u4f7f\u7528Elasticsearch\u6765\u5206\u6790CloudFront\u7684\u5b9e\u65f6\u65e5\u5fd7\uff0c\u5e76\u4f7f\u7528\u88ab\u79f0\u4e3aKibana\u7684Elasticsearch\u53ef\u89c6\u5316\u5de5\u5177\u5c06\u5176\u53ef\u89c6\u5316\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Parameters<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">ElasticSearchVolumeSize<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Number<\/span>\r\n    <span class=\"na\">Default<\/span><span class=\"pi\">:<\/span> <span class=\"m\">10<\/span>\r\n    <span class=\"na\">MinValue<\/span><span class=\"pi\">:<\/span> <span class=\"m\">10<\/span>\r\n    <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">The volume size (GB) of ElasticSearch Service [required]<\/span>\r\n  <span class=\"na\">ElasticSearchDomainName<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">String<\/span>\r\n    <span class=\"na\">Default<\/span><span class=\"pi\">:<\/span> <span class=\"s\">cloudfront-realtime-logs<\/span>\r\n    <span class=\"na\">AllowedPattern<\/span><span class=\"pi\">:<\/span> <span class=\"s\">.+<\/span>\r\n    <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">The domain name of ElasticSearch Service [required]<\/span>\r\n  <span class=\"na\">ElasticSearchInstanceType<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">String<\/span>\r\n    <span class=\"na\">Default<\/span><span class=\"pi\">:<\/span> <span class=\"s\">r5.large.elasticsearch<\/span>\r\n    <span class=\"na\">AllowedValues<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">t3.small.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">t3.medium.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">t2.micro.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">t2.small.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">t2.medium.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m5.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m5.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m5.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m5.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m5.12xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m4.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m4.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m4.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m4.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">m4.10xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c5.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c5.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c5.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c5.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c5.9xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c5.18xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c4.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c4.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c4.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c4.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">c4.8xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r5.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r5.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r5.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r5.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r5.12xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r4.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r4.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r4.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r4.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r4.8xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r4.16xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r3.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r3.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r3.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r3.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">r3.8xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">i3.large.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">i3.xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">i3.2xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">i3.4xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">i3.8xlarge.elasticsearch<\/span>\r\n      <span class=\"pi\">-<\/span> <span class=\"s\">i3.16xlarge.elasticsearch<\/span>\r\n    <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">The instance type of ElasticSearch Service [required]<\/span>\r\n  <span class=\"na\">ElasticSearchMasterUserName<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">String<\/span>\r\n    <span class=\"na\">AllowedPattern<\/span><span class=\"pi\">:<\/span> <span class=\"s\">.+<\/span>\r\n    <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">The user name of ElasticSearch Service [required]<\/span>\r\n  <span class=\"na\">ElasticSearchMasterUserPassword<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">String<\/span>\r\n    <span class=\"na\">AllowedPattern<\/span><span class=\"pi\">:<\/span> <span class=\"s\">.+<\/span>\r\n    <span class=\"na\">NoEcho<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n    <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">The password of ElasticSearch Service [required]<\/span>\r\n\r\n<span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">KMSKey<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">AWS::KMS::Key<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span> \r\n      <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Encrypt CloudTrail Logs<\/span>\r\n      <span class=\"na\">Enabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n      <span class=\"na\">EnableKeyRotation<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n      <span class=\"na\">KeyPolicy<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s\">2012-10-17<\/span>\r\n        <span class=\"na\">Id<\/span><span class=\"pi\">:<\/span> <span class=\"s\">DefaultKeyPolicy<\/span>\r\n        <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Sid<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Enable IAM User Permissions<\/span>\r\n            <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n            <span class=\"na\">Principal<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">AWS<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s\">arn:aws:iam::${AWS::AccountId}:root<\/span>\r\n            <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kms:*'<\/span>\r\n            <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">*'<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n            <span class=\"na\">Principal<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">Service<\/span><span class=\"pi\">:<\/span> <span class=\"s\">cloudtrail.amazonaws.com<\/span>\r\n            <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kms:GenerateDataKey*'<\/span>\r\n            <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">*'<\/span>\r\n            <span class=\"na\">Condition<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">StringLike<\/span><span class=\"pi\">:<\/span>\r\n                <span class=\"s\">kms:EncryptionContext:aws:cloudtrail:arn:<\/span>\r\n                  <span class=\"s\">- !Sub arn:aws:cloudtrail:*:${AWS::AccountId}:trail\/*<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n            <span class=\"na\">Principal<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">Service<\/span><span class=\"pi\">:<\/span> <span class=\"s\">cloudtrail.amazonaws.com<\/span>\r\n            <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kms:DescribeKey'<\/span>\r\n            <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">*'<\/span>\r\n      <span class=\"na\">KeyUsage<\/span><span class=\"pi\">:<\/span> <span class=\"s\">ENCRYPT_DECRYPT<\/span>\r\n      <span class=\"na\">PendingWindowInDays<\/span><span class=\"pi\">:<\/span> <span class=\"m\">30<\/span>\r\n  <span class=\"na\">ElasticSearchDomain<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::Elasticsearch::Domain'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span> \r\n      <span class=\"na\">AccessPolicies<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">2012-10-17'<\/span>\r\n        <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n            <span class=\"na\">Principal<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">AWS<\/span><span class=\"pi\">:<\/span>\r\n                <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">*'<\/span>\r\n            <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"s\">es:*<\/span>\r\n            <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/*<\/span>\r\n      <span class=\"na\">AdvancedSecurityOptions<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"na\">Enabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">InternalUserDatabaseEnabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">MasterUserOptions<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"na\">MasterUserName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">ElasticSearchMasterUserName<\/span>\r\n          <span class=\"na\">MasterUserPassword<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">ElasticSearchMasterUserPassword<\/span>\r\n      <span class=\"na\">DomainEndpointOptions<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"na\">EnforceHTTPS<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n      <span class=\"na\">DomainName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">ElasticSearchDomainName<\/span>\r\n      <span class=\"na\">EBSOptions<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"na\">EBSEnabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">VolumeSize<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">ElasticSearchVolumeSize<\/span>\r\n        <span class=\"na\">VolumeType<\/span><span class=\"pi\">:<\/span> <span class=\"s\">gp2<\/span>\r\n      <span class=\"na\">ElasticsearchClusterConfig<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"na\">DedicatedMasterCount<\/span><span class=\"pi\">:<\/span> <span class=\"m\">3<\/span>\r\n        <span class=\"na\">DedicatedMasterEnabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">DedicatedMasterType<\/span><span class=\"pi\">:<\/span> <span class=\"s\">c5.large.elasticsearch<\/span>\r\n        <span class=\"na\">InstanceCount<\/span><span class=\"pi\">:<\/span> <span class=\"m\">3<\/span>\r\n        <span class=\"na\">InstanceType<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">ElasticSearchInstanceType<\/span>\r\n        <span class=\"na\">ZoneAwarenessConfig<\/span><span class=\"pi\">:<\/span> \r\n          <span class=\"na\">AvailabilityZoneCount<\/span><span class=\"pi\">:<\/span> <span class=\"m\">3<\/span>\r\n        <span class=\"na\">ZoneAwarenessEnabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n      <span class=\"na\">ElasticsearchVersion<\/span><span class=\"pi\">:<\/span> <span class=\"m\">7.8<\/span>\r\n      <span class=\"na\">EncryptionAtRestOptions<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">Enabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">KmsKeyId<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">KMSKey.Arn<\/span>\r\n      <span class=\"na\">NodeToNodeEncryptionOptions<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"na\">Enabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n      <span class=\"na\">SnapshotOptions<\/span><span class=\"pi\">:<\/span> \r\n        <span class=\"na\">AutomatedSnapshotStartHour<\/span><span class=\"pi\">:<\/span> <span class=\"m\">0<\/span>\r\n<\/code><\/pre>\n<p>\u4ee5\u4e0b\u662f\u672c\u6a21\u677f\u7684\u7ed3\u6784\u548c\u6ce8\u610f\u4e8b\u9879\u3002<\/p>\n<p>DomainName \u306b\u306f\u3001\u300c\u30a2\u30ab\u30a6\u30f3\u30c8\u304a\u3088\u3073\u30ea\u30fc\u30b8\u30e7\u30f3\u306b\u56fa\u6709\u300d\u300c\u5148\u982d\u304c\u5c0f\u6587\u5b57\u300d\u300c3\uff5e28\u6587\u5b57\u300d\u300c\u5c0f\u6587\u5b57\u306e\u30a2\u30eb\u30d5\u30a1\u30d9\u30c3\u30c8\u3001\u6570\u5b57\u3001\u30cf\u30a4\u30d5\u30f3\u306e\u307f\u4f7f\u7528\u53ef\u80fd\u300d\u3068\u3044\u3046\u5236\u7d04\u304c\u8ab2\u305b\u3089\u308c\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>EBSOptions \u306b\u3066\u3001\u30a2\u30bf\u30c3\u30c1\u3059\u308bEBS\u30dc\u30ea\u30e5\u30fc\u30e0\u306e\u30bf\u30a4\u30d7\u3068\u30b5\u30a4\u30ba\u3092\u6307\u5b9a\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>ElasticsearchClusterConfig \u306b\u3066\u3001\u672c\u756a\u7a3c\u50cd\u7528\u3068\u3057\u3066\u5968\u52b1\u3055\u308c\u3066\u3044\u308b\u3001\u30de\u30eb\u30c1AZ + \u5c02\u7528\u30c7\u30fc\u30bf\u30ce\u30fc\u30c9\u69cb\u6210\u3092\u898f\u5b9a\u3057\u3066\u304a\u308a\u3001 \u30c7\u30fc\u30bf\u30ce\u30fc\u30c93\u53f0 + \u30de\u30b9\u30bf\u30fc\u30ce\u30fc\u30c93\u53f0 \u306e\u69cb\u6210\u3068\u3057\u3066\u3044\u307e\u3059\u3002 AvailabilityZoneCount \u30923\u306b\u8a2d\u5b9a\u3057\u3066\u3044\u308b\u305f\u3081\u3001 \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u306f3\u3064\u306eAZ\u306b\u5206\u6563\u914d\u7f6e \u3055\u308c\u307e\u3059\u3002<\/p>\n<p>EncryptionAtRestOptions \u306b\u3066\u3001 \u4fdd\u7ba1\u6642\u306e\u30c7\u30fc\u30bf\u6697\u53f7\u5316 \u3092\u6307\u5b9a\u3057\u3066\u3044\u307e\u3059\u3002 \u3053\u308c\u3068\u540c\u6642\u306b \u6697\u53f7\u5316\u306e\u969b\u306b\u4f7f\u7528\u3059\u308bAWS KMS\u306e\u30ab\u30b9\u30bf\u30de\u30fc\u30de\u30b9\u30bf\u30fc\u30ad\u30fc\uff08CMK\uff09\u3082\u4f5c\u6210 \u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>NodeToNodeEncryptionOptions \u306b\u3066\u3001 \u30ce\u30fc\u30c9\u9593\u306e\u6697\u53f7\u5316 \u3092\u6307\u5b9a\u3057\u3066\u3044\u307e\u3059\u3002<\/p>\n<p>AutomatedSnapshotStartHour \u306b\u3066\u3001 UTC\u6642\u523b\u306e\u5348\u524d0\u6642\u306b\u30b9\u30ca\u30c3\u30d7\u30b7\u30e7\u30c3\u30c8\u304c\u4f5c\u6210 \u3055\u308c\u307e\u3059\u3002<\/p>\n<h3>\u8bbf\u95ee\u63a7\u5236<\/h3>\n<p>\u8fd9\u4e2a\u6a21\u677f\u5df2\u7ecf\u542f\u7528\u4e86\u7ec6\u7c92\u5ea6\u8bbf\u95ee\u63a7\u5236\uff08FGAC\uff09\uff0c\u4e0b\u9762\u662f\u76f8\u5173\u8bbe\u7f6e\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/51-0.png\" alt=\"image.png\" \/><\/div>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>\u5141\u8bb8\u516c\u5171\u8bbf\u95ee\u3002<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>\u901a\u8fc7DomainEndpointOptions\uff0c\u5f3a\u5236\u4f7f\u7528HTTPS\u8fdb\u884c\u8bbf\u95ee\u3002<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>\u901a\u8fc7InternalUserDatabaseEnabled\u542f\u7528\u5185\u90e8\u7528\u6237\u6570\u636e\u5e93\uff0c\u5e76\u901a\u8fc7MasterUserOptions\u6307\u5b9a\u4e3b\u7528\u6237\u7684\u7528\u6237\u540d\u548c\u5bc6\u7801\u3002<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\u901a\u8fc7AccessPolicies\uff0c\u5141\u8bb8\u6267\u884cElasticsearch\u670d\u52a1\u7684\u6240\u6709\u64cd\u4f5c\u3002<\/ol>\n<p>\u901a\u8fc7\u4e0a\u8ff0\u8bbe\u7f6e\uff0c\u53ef\u4ee5\u4f7f\u7528\u4e8b\u5148\u8bbe\u7f6e\u7684\u7528\u6237\u540d\u548c\u5bc6\u7801\uff0c\u4ece\u5916\u90e8\u8bbf\u95ee\u8be5\u57df\u548cKibana\u3002<\/p>\n<h3>\u57df\u540d\u7684\u5c3a\u5bf8\u914d\u7f6e<\/h3>\n<p>\u4f7f\u7528 Elasticsearch Service \u65f6\u5e94\u6ce8\u610f\u7684\u662f\u9009\u62e9\u54ea\u79cd\u5b9e\u4f8b\u7c7b\u578b\uff0c\u4ee5\u53ca\u9700\u8981\u51c6\u5907\u591a\u5927\u7684 EBS \u5377\u3002\u5173\u4e8e\u8fd9\u4e00\u70b9\uff0c\u5728\u5b98\u65b9\u6587\u6863\u7684 Amazon ES \u57df\u5927\u5c0f\u8c03\u6574\u90e8\u5206\u6709\u8be6\u7ec6\u8bf4\u660e\u3002<\/p>\n<p>\u5047\u8bbe\u6211\u4eec\u8c08\u8bba\u5b58\u50a8\u7a7a\u95f4\uff0c<\/p>\n<pre class=\"post-pre\"><code>\u30bd\u30fc\u30b9\u30c7\u30fc\u30bf x (1+ \u30ec\u30d7\u30ea\u30ab\u306e\u6570) x 1.45 = \u6700\u5c0f\u30b9\u30c8\u30ec\u30fc\u30b8\u8981\u4ef6\r\n<\/code><\/pre>\n<p>\u5982\u679c\u8981\u4fdd\u5b5824\u5c0f\u65f6\u7684\u5b9e\u65f6\u65e5\u5fd7\uff0c\u800c\u8fd9\u4e2a\u65e5\u5fd7\u6e90\u4ea7\u751f\u7684\u6d41\u91cf\u662f\u6bcf\u79d25,000\u4e2a\u8bf7\u6c42\u7684CloudFront\u5206\u914d\uff0c\u53ef\u4ee5\u4f7f\u7528\u4ee5\u4e0b\u65b9\u7a0b\u5f0f\u3002<\/p>\n<pre class=\"post-pre\"><code>5,000\uff08\u4ef6\uff09 x 3,600\uff08\u79d2\uff09x 24\uff08\u6642\u9593\uff09 x 1,000(byte) = 432\uff08GB\uff09\r\n<\/code><\/pre>\n<p>\u539f\u59cb\u6570\u636e\u4e3a432GB\uff0c\u5e94\u7528\u4e0a\u8ff0\u516c\u5f0f\u540e\uff0c<\/p>\n<pre class=\"post-pre\"><code>432\uff08GB\uff09 x (1 + 1) x 1.45 = 1252 (GB\uff09\r\n<\/code><\/pre>\n<p>\u9700\u89811252GB\u7684\u5b58\u50a8\u7a7a\u95f4\u3002<\/p>\n<p>\u53e6\u5916\uff0c\u5728\u4e0a\u8ff0\u793a\u4f8b\u4e2d\uff0c\u6e90\u6570\u636e\u6bcf\u5c0f\u65f6\u4ee518GB\u7684\u6bd4\u4f8b\u589e\u52a0\uff0c\u8fd9\u5bf9Elasticsearch\u670d\u52a1\u6765\u8bf4\u4f1a\u4ea7\u751f\u5de8\u5927\u7684\u8d1f\u62c5\u3002\u5b98\u65b9\u6587\u6863\u4e2d\u6307\u51fa\uff0c\u5982\u679c\u5b58\u5728\u9ad8\u8d1f\u8f7d\u7684\u805a\u5408\u5904\u7406\u3001\u9891\u7e41\u7684\u6587\u6863\u66f4\u65b0\u6216\u5927\u91cf\u7684\u67e5\u8be2\u5904\u7406\uff0c\u8fd9\u4e9b\u8d44\u6e90\u53ef\u80fd\u65e0\u6cd5\u6ee1\u8db3\u9700\u6c42\u3002\u5982\u679c\u96c6\u7fa4\u88ab\u5f52\u7c7b\u5230\u8fd9\u79cd\u7c7b\u522b\u4e2d\uff0c\u5efa\u8bae\u4e3a\u6bcf100 GiB\u7684\u5b58\u50a8\u9700\u6c42\u914d\u7f6evCPU x 2\u6838\u5fc3\u548c\u63a5\u8fd18 GiB\u5185\u5b58\u7684\u914d\u7f6e\u3002\u5c06\u6b64\u5efa\u8bae\u5e94\u7528\u4e8e\u4e0a\u8ff0\u793a\u4f8b\uff0c<\/p>\n<pre class=\"post-pre\"><code>1252\uff08GB\uff09\/ 100\uff08GB\uff09x 2 = 25\uff08\u30b3\u30a2\uff09\r\n1252\uff08GB\uff09\/ 100\uff08GB\uff09x 8 = 100\uff08GB\u30e1\u30e2\u30ea\uff09\r\n<\/code><\/pre>\n<p>\u53ef\u4ee5\u8003\u8651\u9700\u8981\u7684\u60c5\u51b5\u4e0b\u3002\u5982\u4e0a\u6240\u8ff0\uff0c\u7531\u4e8e\u6b64\u6a21\u677f\u4e2d\u51c6\u5907\u4e863\u4e2a\u6570\u636e\u8282\u70b9\uff0c\u6240\u4ee5\u6bcf\u4e2a\u5b9e\u4f8b\u6240\u9700\u7684\u6838\u6570\u548c\u5185\u5b58\u5927\u5c0f\u662f\u3002<\/p>\n<pre class=\"post-pre\"><code>25\uff08\u30b3\u30a2\uff09\/ 3 \uff08\u53f0\uff09 = 8.3\uff08\u30b3\u30a2\uff09\r\n100\uff08GB\u30e1\u30e2\u30ea\uff09\/ 3 \uff08\u53f0\uff09 = 33.3\uff08GB\u30e1\u30e2\u30ea\uff09 \r\n<\/code><\/pre>\n<p>\u76f8\u90bb\u7684\u6bcf\u4e2a\u5b9e\u4f8b\u6240\u9700\u7684EBS\u5377\u4e3a\uff1a<\/p>\n<pre class=\"post-pre\"><code>1252\uff08GB\uff09 \/ 3\uff08\u53f0\uff09 = 417\uff08GB\uff09\r\n<\/code><\/pre>\n<p>\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u306a\u308a\u307e\u3059\u3002\u3053\u308c\u306b\u9069\u5408\u3059\u308b \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9 \u30bf\u30a4\u30d7 \u306f\u3001<\/p>\n<p>m5.2xlarge.elasticsearch \u4ee5\u4e0a\u306e\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u30bf\u30a4\u30d7<\/p>\n<p>c5.4xlarge.elasticsearch \u4ee5\u4e0a\u306e\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u30bf\u30a4\u30d7<\/p>\n<p>r5.2xlarge.elasticsearch \u4ee5\u4e0a\u306e\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u30bf\u30a4\u30d7<\/p>\n<p>i3.2xlarge.elasticsearch \u4ee5\u4e0a\u306e\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u30bf\u30a4\u30d7<\/p>\n<p>\u5728\u7ecf\u9a8c\u4e0a\uff0c\u6570\u636e\u8282\u70b9\u7ecf\u5e38\u4f1a\u51fa\u73b0\u5806\u7a7a\u95f4\u4e0d\u8db3\u7684\u60c5\u51b5\u3002\u56e0\u6b64\uff0c\u5728\u4e0a\u8ff0\u793a\u4f8b\u4e2d\uff0c\u9009\u62e9\u4f5c\u4e3a\u5185\u5b58\u4f18\u5316\u5b9e\u4f8b\u7684R5\u5b9e\u4f8b\u53ef\u80fd\u662f\u4e00\u4e2a\u4e0d\u9519\u7684\u9009\u62e9\u3002\u5173\u4e8e\u4e3b\u8282\u70b9\uff0c\u53ef\u4ee5\u53c2\u8003\u72ec\u7acb\u4e3b\u8282\u70b9\u90e8\u5206\u7684\u5185\u5bb9\u3002<\/p>\n<div>\n<div class=\"post-table\">Instance Count\u63a8\u5968\u3055\u308c\u308b\u6700\u5c0f\u5c02\u7528\u30de\u30b9\u30bf\u30fc\u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u30bf\u30a4\u30d71\u201310c5.large.elasticsearch<\/div>\n<\/div>\n<p>\u6839\u636e\u63cf\u8ff0\uff0c\u8fd9\u4e2a\u6a21\u677f\u6784\u5efa\u7684\u914d\u7f6e\u4f3c\u4e4e\u9002\u7528\u4e8ec5.large.elasticsearch\u3002\u4f46\u503c\u5f97\u6ce8\u610f\u7684\u662f\uff0c\u8fd9\u4e9b\u503c\u4ec5\u4ec5\u662f\u8ba1\u7b97\u4e0a\u7684\u6570\u503c\uff0c\u6240\u4ee5\u5728\u51b3\u5b9a\u6570\u636e\u8282\u70b9\u548c\u4e3b\u8282\u70b9\u7684\u5b9e\u4f8b\u7c7b\u578b\u65f6\uff0c\u9700\u8981\u5148\u65bd\u52a0\u9884\u671f\u7684\u8d1f\u8f7d\u6765\u9a8c\u8bc1\u5176\u884c\u4e3a\u3002<\/p>\n<p>\u521b\u5efa\u57df\u540e\uff0c\u5982\u679c\u8981\u66f4\u6539\u8fd9\u4e9b\u8bbe\u7f6e\uff0c\u5219\u4f1a\u6267\u884cBlue\/Green\u90e8\u7f72\u8fc7\u7a0b\u5e76\u521b\u5efa\u65b0\u7684\u73af\u5883\u3002\u7531\u4e8e\u8fd9\u79cd\u8bbe\u7f6e\u66f4\u6539\u9700\u8981\u65f6\u95f4\u4e14\u5bf9\u4e3b\u8282\u70b9\u9020\u6210\u8f83\u5927\u8d1f\u8f7d\uff0c\u56e0\u6b64\u9700\u8981\u8db3\u591f\u7684\u8d44\u6e90\u6765\u5904\u7406\u4e0e\u6b64\u90e8\u7f72\u8fc7\u7a0b\u76f8\u5173\u7684\u989d\u5916\u8d1f\u8377\u3002\u5982\u679c\u5728\u8d44\u6e90\u4e0d\u8db3\u7684\u60c5\u51b5\u4e0b\u8fdb\u884c\u8bbe\u7f6e\u66f4\u6539\uff0c\u53ef\u80fd\u4f1a\u5bfc\u81f4\u8bbe\u7f6e\u66f4\u6539\uff08\u8fdb\u884c\u4e2d\uff09\u9700\u8981\u6570\u5c0f\u65f6\u624d\u80fd\u5b8c\u6210\u3002<\/p>\n<p>\u8bf7\u76d1\u63a7\u4ee5\u4e0bCloudWatch\u6307\u6807\u4ee5\u786e\u8ba4Elasticsearch Service\u8bbe\u7f6e\u7684\u5bb9\u91cf\u662f\u5426\u9002\u7528\u4e8e\u8d1f\u8f7d\u3002\u60a8\u53ef\u4ee5\u4ece\u6b64\u94fe\u63a5\u4e2d\u57fa\u4e8e\u8fd9\u4e9b\u6307\u6807\u6279\u91cf\u542f\u7528CloudWatch\u8b66\u62a5\u3002<\/p>\n<div>\n<div class=\"post-table\">\u30cd\u30fc\u30e0\u30b9\u30da\u30fc\u30b9\u30e1\u30c8\u30ea\u30af\u30b9\u95be\u5024AWS\/ES<strong>ClusterStatus.green<\/strong><strong>0\u3060\u3063\u305f\u5834\u5408<\/strong>AWS\/ES<strong>ClusterIndexWritesBlocked<\/strong><strong>1\u5206\u9593\u306b1\u56de\u4ee5\u4e0a<\/strong>AWS\/ES<strong>MasterReachableFromNode<\/strong><strong>0\u3060\u3063\u305f\u5834\u5408<\/strong>AWS\/ES<strong>AutomatedSnapshotFailure<\/strong><strong>1\u5206\u9593\u306b1\u56de\u4ee5\u4e0a<\/strong>AWS\/ES<strong>KibanaHealthyNodes<\/strong><strong>0\u3060\u3063\u305f\u5834\u5408<\/strong>AWS\/ES<strong>FreeStorageSpace<\/strong>\u30c6\u30f3\u30d7\u30ec\u30fc\u30c8\u3067\u6307\u5b9a\u3057\u305f\u5024AWS\/ES<strong>MasterCPUUtilization<\/strong><strong>50%\u3092\u8d85\u3048\u305f\u5834\u5408<\/strong>AWS\/ES<strong>MasterJVMMemoryPressure<\/strong><strong>80%\u3092\u8d85\u3048\u305f\u5834\u5408<\/strong>AWS\/ES<strong>CPUUtilization<\/strong><strong>50%\u3092\u8d85\u3048\u305f\u5834\u5408<\/strong>AWS\/ES<strong>JVMMemoryPressure<\/strong><strong>80%\u3092\u8d85\u3048\u305f\u5834\u5408<\/strong>AWS\/ES<strong>SysMemoryUtilization<\/strong><strong>80%\u3092\u8d85\u3048\u305f\u5834\u5408<\/strong><\/div>\n<\/div>\n<h2>\u52aa\u529b\u6570\u636e\u4f20\u9012<\/h2>\n<p>\u6700\u540e\u8fdb\u884c Kinesis Data Firehose \u7684\u8bbe\u7f6e\u3002Firehose \u662f\u4e00\u4e2a\u53ef\u4ee5\u63a5\u6536\u6d41\u5f0f\u6570\u636e\u5e76\u8fdb\u884c\u8f6c\u6362\uff0c\u5e76\u5c06\u5176\u53d1\u9001\u5230 Amazon S3\u3001Amazon Redshift\u3001Amazon Elasticsearch Service\u3001\u901a\u7528\u7684 HTTP \u7ec8\u7aef\u7b49\u670d\u52a1\u7684\u5de5\u5177\u3002\u672c\u6b21\u7684\u76ee\u6807\u662f\u5c06\u4ece Kinesis Stream \u4f20\u8f93\u7684\u5b9e\u65f6\u65e5\u5fd7\u53d1\u9001\u5230 Elasticsearch Service \u4e2d\u3002<\/p>\n<p>\u6b64\u5916\uff0c\u5728Kinesis\u6d41\u4e2d\uff0c\u5b58\u50a8\u8bb0\u5f55\u65f6\u9700\u8981\u8fdb\u884cBase64\u7f16\u7801\uff0c\u56e0\u6b64\u5b9e\u65f6\u65e5\u5fd7\u4e5f\u4ee5Base64\u7f16\u7801\u7684\u72b6\u6001\u8fdb\u884c\u5b58\u50a8\u3002\u56e0\u6b64\uff0c\u6211\u4eec\u53ef\u4ee5\u4f7f\u7528Firehose\u7684\u6570\u636e\u8f6c\u6362\u529f\u80fd\u6765\u8fdb\u884c\u76ee\u6807\u5217\u7684Base64\u89e3\u7801\u3002Firehose\u7684\u6570\u636e\u8f6c\u6362\u529f\u80fd\u662f\u901a\u8fc7\u5c06AWS Lambda\u4e0e\u8f6c\u6362\u8fc7\u7a0b\u76f8\u5173\u8054\u6765\u5b9e\u73b0\u7684\u3002<\/p>\n<p>\u8fd9\u4e2aLambda\u51fd\u6570\u6240\u9644\u52a0\u7684IAM\u89d2\u8272\u5982\u4e0b\u6240\u793a\u3002\u7ed9\u4e88Lambda\u51fd\u6570\u7684\u6743\u9650\u662f\u5c06\u65e5\u5fd7\u5199\u5165CloudWatch Logs\u7684\u6743\u9650\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">IAMRoleForLambda<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::IAM::Role'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">AssumeRolePolicyDocument<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s\">2012-10-17<\/span>\r\n        <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n            <span class=\"na\">Principal<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">Service<\/span><span class=\"pi\">:<\/span> <span class=\"s\">lambda.amazonaws.com<\/span>\r\n            <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">sts:AssumeRole'<\/span>\r\n      <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">A role required for Lambda to execute.<\/span>\r\n      <span class=\"na\">Policies<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"na\">PolicyName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">${AWS::StackName}-AWSLambdaCloudWatchLogsPolicy-${AWS::Region}'<\/span>\r\n          <span class=\"na\">PolicyDocument<\/span><span class=\"pi\">:<\/span>\r\n            <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s\">2012-10-17<\/span>\r\n            <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">logs:CreateLogStream'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">*'<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">logs:PutLogEvents'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">*'<\/span> \r\n      <span class=\"na\">RoleName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">${AWS::StackName}-Lambda-${AWS::Region}'<\/span>\r\n<\/code><\/pre>\n<p>\u800c\u4e14\uff0c\u6267\u884c\u6570\u636e\u8f6c\u6362\u5904\u7406\u7684Lambda\u51fd\u6570\u5982\u4e0b\u6240\u793a\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">Lambda<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::Lambda::Function'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">Code<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">ZipFile<\/span><span class=\"pi\">:<\/span> <span class=\"pi\">|<\/span>\r\n          <span class=\"s\">import logging<\/span>\r\n          <span class=\"s\">import base64<\/span>\r\n          <span class=\"s\">import json<\/span>\r\n\r\n          <span class=\"s\">logger = logging.getLogger()<\/span>\r\n          <span class=\"s\">logger.setLevel(logging.INFO)<\/span>\r\n\r\n          <span class=\"s\">logger.info(\"Loading function\")<\/span>\r\n\r\n          <span class=\"s\">def lambda_handler(event, context):<\/span>\r\n              <span class=\"s\">output = []<\/span>\r\n\r\n              <span class=\"s\"># Based on the fields chosen during the creation of the Real-time log configuration.<\/span>\r\n              <span class=\"s\"># The order is important and please adjust the function if you have removed certain default fields from the configuration.<\/span>\r\n              <span class=\"s\">realtimelog_fields_dict = {<\/span>\r\n                  <span class=\"s\">\"timestamp\": \"float\",<\/span>\r\n                  <span class=\"s\">\"c-ip\": \"str\",<\/span>\r\n                  <span class=\"s\">\"time-to-first-byte\": \"float\",<\/span>\r\n                  <span class=\"s\">\"sc-status\": \"int\",<\/span>\r\n                  <span class=\"s\">\"sc-bytes\": \"int\",<\/span>\r\n                  <span class=\"s\">\"cs-method\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-protocol\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-host\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-uri-stem\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-bytes\": \"int\",<\/span>\r\n                  <span class=\"s\">\"x-edge-location\": \"str\",<\/span>\r\n                  <span class=\"s\">\"x-edge-request-id\": \"str\",<\/span>\r\n                  <span class=\"s\">\"x-host-header\": \"str\",<\/span>\r\n                  <span class=\"s\">\"time-taken\": \"float\",<\/span>\r\n                  <span class=\"s\">\"cs-protocol-version\": \"str\",<\/span>\r\n                  <span class=\"s\">\"c-ip-version\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-user-agent\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-referer\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-cookie\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-uri-query\": \"str\",<\/span>\r\n                  <span class=\"s\">\"x-edge-response-result-type\": \"str\",<\/span>\r\n                  <span class=\"s\">\"x-forwarded-for\": \"str\",<\/span>\r\n                  <span class=\"s\">\"ssl-protocol\": \"str\",<\/span>\r\n                  <span class=\"s\">\"ssl-cipher\": \"str\",<\/span>\r\n                  <span class=\"s\">\"x-edge-result-type\": \"str\",<\/span>\r\n                  <span class=\"s\">\"fle-encrypted-fields\": \"str\",<\/span>\r\n                  <span class=\"s\">\"fle-status\": \"str\",<\/span>\r\n                  <span class=\"s\">\"sc-content-type\": \"str\",<\/span>\r\n                  <span class=\"s\">\"sc-content-len\": \"int\",<\/span>\r\n                  <span class=\"s\">\"sc-range-start\": \"int\",<\/span>\r\n                  <span class=\"s\">\"sc-range-end\": \"int\",<\/span>\r\n                  <span class=\"s\">\"c-port\": \"int\",<\/span>\r\n                  <span class=\"s\">\"x-edge-detailed-result-type\": \"str\",<\/span>\r\n                  <span class=\"s\">\"c-country\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-accept-encoding\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-accept\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cache-behavior-path-pattern\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-headers\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-header-names\": \"str\",<\/span>\r\n                  <span class=\"s\">\"cs-headers-count\": \"int\",<\/span>\r\n              <span class=\"s\">}<\/span>\r\n\r\n              <span class=\"s\">for record in event[\"records\"]:<\/span>\r\n\r\n                  <span class=\"s\"># Extracting the record data in bytes and base64 decoding it<\/span>\r\n                  <span class=\"s\">payload_in_bytes = base64.b64decode(record[\"data\"])<\/span>\r\n\r\n                  <span class=\"s\"># Converting the bytes payload to string<\/span>\r\n                  <span class=\"s\">payload = \"\".join(map(chr, payload_in_bytes))<\/span>\r\n\r\n                  <span class=\"s\"># dictionary where all the field and record value pairing will end up<\/span>\r\n                  <span class=\"s\">payload_dict = {}<\/span>\r\n\r\n                  <span class=\"s\"># counter to iterate over the record fields<\/span>\r\n                  <span class=\"s\">counter = 0<\/span>\r\n\r\n                  <span class=\"s\"># generate list from the tab-delimited log entry<\/span>\r\n                  <span class=\"s\">payload_list = payload.strip().split(\"\\t\")<\/span>\r\n\r\n                  <span class=\"s\"># perform the field, value pairing and any necessary type casting.<\/span>\r\n                  <span class=\"s\"># possible types are: int, float and str (default)<\/span>\r\n                  <span class=\"s\">for field, field_type in realtimelog_fields_dict.items():<\/span>\r\n                      <span class=\"s\"># overwrite field_type if absent or '-'<\/span>\r\n                      <span class=\"s\">if payload_list[counter].strip() == \"-\":<\/span>\r\n                          <span class=\"s\">field_type = \"str\"<\/span>\r\n                      <span class=\"s\">if field_type == \"int\":<\/span>\r\n                          <span class=\"s\">payload_dict[field] = int(payload_list[counter].strip())<\/span>\r\n                      <span class=\"s\">elif field_type == \"float\":<\/span>\r\n                          <span class=\"s\">payload_dict[field] = float(payload_list[counter].strip())<\/span>\r\n                      <span class=\"s\">else:<\/span>\r\n                          <span class=\"s\">payload_dict[field] = payload_list[counter].strip()<\/span>\r\n                      <span class=\"s\">counter = counter + 1<\/span>\r\n\r\n                  <span class=\"s\"># JSON version of the dictionary type<\/span>\r\n                  <span class=\"s\">payload_json = json.dumps(payload_dict)<\/span>\r\n\r\n                  <span class=\"s\"># Preparing JSON payload to push back to Firehose<\/span>\r\n                  <span class=\"s\">payload_json_ascii = payload_json.encode(\"ascii\")<\/span>\r\n                  <span class=\"s\">output_record = {<\/span>\r\n                      <span class=\"s\">\"recordId\": record[\"recordId\"],<\/span>\r\n                      <span class=\"s\">\"result\": \"Ok\",<\/span>\r\n                      <span class=\"s\">\"data\": base64.b64encode(payload_json_ascii).decode(\"utf-8\"),<\/span>\r\n                  <span class=\"s\">}<\/span>\r\n                  <span class=\"s\">output.append(output_record)<\/span>\r\n\r\n              <span class=\"s\">logger.info(\"Successfully processed {} records.\".format(len(event[\"records\"])))<\/span>\r\n\r\n              <span class=\"s\">return {\"records\": output}<\/span>\r\n      <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">CloudFront\u30ed\u30b0\u3092\u5909\u63db\u3057\u307e\u3059<\/span>\r\n      <span class=\"na\">FunctionName<\/span><span class=\"pi\">:<\/span> <span class=\"s\">realtimeLogsTransformer<\/span>\r\n      <span class=\"na\">Handler<\/span><span class=\"pi\">:<\/span> <span class=\"s\">index.lambda_handler<\/span>\r\n      <span class=\"na\">MemorySize<\/span><span class=\"pi\">:<\/span> <span class=\"m\">512<\/span>\r\n      <span class=\"na\">Role<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">IAMRoleForLambda.Arn<\/span>\r\n      <span class=\"na\">Runtime<\/span><span class=\"pi\">:<\/span> <span class=\"s\">python3.8<\/span>\r\n      <span class=\"na\">Timeout<\/span><span class=\"pi\">:<\/span> <span class=\"m\">60<\/span>\r\n      <span class=\"na\">TracingConfig<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">Mode<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Active<\/span>\r\n  <span class=\"na\">LambdaLogGroup<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::Logs::LogGroup'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span> \r\n      <span class=\"na\">LogGroupName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s\">\/aws\/lambda\/${Lambda}<\/span>\r\n      <span class=\"na\">RetentionInDays<\/span><span class=\"pi\">:<\/span> <span class=\"m\">60<\/span>\r\n<\/code><\/pre>\n<p>\u63a5\u4e0b\u6765\uff0c\u5982\u679c\u4eceFirehose\u5230Elasticsearch Service\u7684\u4f20\u8f93\u5931\u8d25\uff0c\u6211\u4eec\u4e5f\u4f1a\u9884\u5148\u521b\u5efa\u4e00\u4e2a\u7528\u4e8e\u5b58\u50a8\u5b9e\u65f6\u65e5\u5fd7\u7684S3\u5b58\u50a8\u6876\u4f5c\u4e3a\u66ff\u4ee3\u65b9\u6848\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">S3ForKinesisFirehose<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::S3::Bucket'<\/span>\r\n    <span class=\"na\">UpdateReplacePolicy<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Retain<\/span>\r\n    <span class=\"na\">DeletionPolicy<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Retain<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">BucketEncryption<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">ServerSideEncryptionConfiguration<\/span><span class=\"pi\">:<\/span> \r\n          <span class=\"pi\">-<\/span> <span class=\"na\">ServerSideEncryptionByDefault<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">SSEAlgorithm<\/span><span class=\"pi\">:<\/span> <span class=\"s\">AES256<\/span>\r\n      <span class=\"na\">BucketName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s\">${ElasticSearchDomainName}-${AWS::Region}-${AWS::AccountId}<\/span>\r\n      <span class=\"na\">LifecycleConfiguration<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">Rules<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Id<\/span><span class=\"pi\">:<\/span> <span class=\"s\">ExpirationInDays<\/span>\r\n            <span class=\"na\">ExpirationInDays<\/span><span class=\"pi\">:<\/span> <span class=\"m\">60<\/span>\r\n            <span class=\"na\">Status<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Enabled<\/span>\r\n      <span class=\"na\">PublicAccessBlockConfiguration<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">BlockPublicAcls<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">BlockPublicPolicy<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">IgnorePublicAcls<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n        <span class=\"na\">RestrictPublicBuckets<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n<\/code><\/pre>\n<p>\u6b64\u5916\uff0c\u5c06\u5728IAM\u89d2\u8272\u4e2d\u6307\u5b9a\u6388\u4e88Firehose\u7684\u6743\u9650\u3002<\/p>\n<pre class=\"post-pre\"><code>  <span class=\"na\">IAMRoleForKinesisFirehose<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::IAM::Role'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">AssumeRolePolicyDocument<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s\">2012-10-17<\/span>\r\n        <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n            <span class=\"na\">Principal<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"na\">Service<\/span><span class=\"pi\">:<\/span> <span class=\"s\">firehose.amazonaws.com<\/span>\r\n            <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">sts:AssumeRole'<\/span>\r\n      <span class=\"na\">Description<\/span><span class=\"pi\">:<\/span> <span class=\"s\">A role required for KinesisFirehose to access Glue, S3, Lambda, CloudWatch Logs, Kinesis and KMS.<\/span>\r\n      <span class=\"na\">Policies<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"pi\">-<\/span> <span class=\"na\">PolicyName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">${AWS::StackName}-FirehoseDelivery-${AWS::Region}'<\/span>\r\n          <span class=\"na\">PolicyDocument<\/span><span class=\"pi\">:<\/span>\r\n            <span class=\"na\">Version<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">2012-10-17'<\/span>\r\n            <span class=\"na\">Statement<\/span><span class=\"pi\">:<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">s3:AbortMultipartUpload'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">s3:GetBucketLocation'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">s3:GetObject'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">s3:ListBucket'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">s3:ListBucketMultipartUploads'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">s3:PutObject'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:s3:::${S3ForKinesisFirehose}'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:s3:::${S3ForKinesisFirehose}\/*'<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kms:Decrypt'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kms:GenerateDataKey'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">KMSKey.Arn<\/span>\r\n                <span class=\"na\">Condition<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"na\">StringEquals<\/span><span class=\"pi\">:<\/span>\r\n                    <span class=\"s1\">'<\/span><span class=\"s\">kms:ViaService'<\/span><span class=\"pi\">:<\/span> <span class=\"s\">s3.region.amazonaws.com<\/span>\r\n                  <span class=\"na\">StringLike<\/span><span class=\"pi\">:<\/span>\r\n                    <span class=\"s1\">'<\/span><span class=\"s\">kms:EncryptionContext:aws:s3:arn'<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:s3:::${S3ForKinesisFirehose}\/*'<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">es:DescribeElasticsearchDomain'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">es:DescribeElasticsearchDomains'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">es:DescribeElasticsearchDomainConfig'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">es:ESHttpPost'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">es:ESHttpPut'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/*'<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">es:ESHttpGet'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/_all\/_settings'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/_cluster\/stats'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/realtime*\/_mapping\/*'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/_nodes'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/_nodes\/stats'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/_nodes\/*\/stats'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/_stats'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:es:${AWS::Region}:${AWS::AccountId}:domain\/${ElasticSearchDomainName}\/realtime*\/_stats'<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:DescribeStream'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:GetShardIterator'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:GetRecords'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kinesis:ListShards'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">Kinesis.Arn<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">logs:PutLogEvents'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:logs:${AWS::Region}:${AWS::AccountId}:log-group:${CloudWatchLogsGroupForFirehose}:log-stream:${CloudWatchLogsStreamForFirehoseElasticSearch}'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">arn:aws:logs:${AWS::Region}:${AWS::AccountId}:log-group:${CloudWatchLogsGroupForFirehose}:log-stream:${CloudWatchLogsStreamForFirehoseS3}'<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">lambda:InvokeFunction'<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">lambda:GetFunctionConfiguration'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">Lambda.Arn<\/span>\r\n              <span class=\"pi\">-<\/span> <span class=\"na\">Effect<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Allow<\/span>\r\n                <span class=\"na\">Action<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"s1\">'<\/span><span class=\"s\">kms:Decrypt'<\/span>\r\n                <span class=\"na\">Resource<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"pi\">-<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">KMSKey.Arn<\/span>\r\n                <span class=\"na\">Condition<\/span><span class=\"pi\">:<\/span>\r\n                  <span class=\"na\">StringEquals<\/span><span class=\"pi\">:<\/span>\r\n                    <span class=\"s1\">'<\/span><span class=\"s\">kms:ViaService'<\/span><span class=\"pi\">:<\/span> <span class=\"s\">kinesis.ap-northeast-1.amazonaws.com<\/span>\r\n                  <span class=\"na\">StringLike<\/span><span class=\"pi\">:<\/span>\r\n                    <span class=\"s1\">'<\/span><span class=\"s\">kms:EncryptionContext:aws:kinesis:arn'<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">Kinesis.Arn<\/span>\r\n      <span class=\"na\">RoleName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">${AWS::StackName}-Firehose-${AWS::Region}'<\/span>\r\n<\/code><\/pre>\n<p>\u6700\u540e\uff0c\u6211\u4eec\u5c06\u521b\u5efa\u4e00\u4e2aFirehose\uff0c\u6307\u5b9aElasticsearch Service\u548cS3\u4f5c\u4e3a\u5b9e\u65f6\u65e5\u5fd7\u7684\u4f20\u9001\u76ee\u6807\uff0c\u5e76\u63d0\u4f9bLambda\u51fd\u6570\u6765\u8fdb\u884c\u6570\u636e\u8f6c\u6362\u3002\u4e3a\u4e86\u5c3d\u53ef\u80fd\u51cf\u5c11\u5411Elasticsearch Service\u4f20\u9001\u6570\u636e\u65f6\u7684\u5ef6\u8fdf\uff0c\u6211\u4eec\u5c06\u8bbe\u7f6eBufferingHints\u4e3a\u53ef\u914d\u7f6e\u7684\u6700\u5c0f\u503c\u3002\u6b64\u5916\uff0c\u901a\u8fc7\u5c06S3BackupMode\u8bbe\u7f6e\u4e3aFailedDocumentsOnly\uff0c\u4ec5\u5728\u5c06\u65e5\u5fd7\u4f20\u9001\u5230Elasticsearch Service\u5931\u8d25\u65f6\uff0c\u5c06\u5b9e\u65f6\u65e5\u5fd7\u4fdd\u5b58\u5230S3\u4e2d\u3002AWS::KinesisFirehose::DeliveryStream\u7684\u67d0\u4e9b\u5c5e\u6027\u5728\u66f4\u65b0\u65f6\u7684\u884c\u4e3a\u4e3aReplacement\uff0c\u4e5f\u5c31\u662f\u5728\u66f4\u65b0\u65f6\u9700\u8981\u91cd\u65b0\u521b\u5efaFirehose\u8d44\u6e90\u5e76\u751f\u6210\u65b0\u7684\u7269\u7406ID\u3002\u56e0\u6b64\uff0c\u5982\u679c\u8981\u66f4\u65b0\u8fd9\u4e9b\u5c5e\u6027\u7684\u503c\uff0c\u8bf7\u540c\u65f6\u66f4\u65b0DeliveryStreamName\u7684\u503c\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"na\">Resources<\/span><span class=\"pi\">:<\/span>\r\n  <span class=\"na\">KinesisFirehose<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::KinesisFirehose::DeliveryStream'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">DeliveryStreamName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s\">${AWS::StackName}-${KinesisFirehoseStreamNameSuffix}<\/span>\r\n      <span class=\"na\">DeliveryStreamType<\/span><span class=\"pi\">:<\/span> <span class=\"s\">KinesisStreamAsSource<\/span>\r\n      <span class=\"na\">KinesisStreamSourceConfiguration<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">KinesisStreamARN<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">Kinesis.Arn<\/span>\r\n        <span class=\"na\">RoleARN<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">IAMRoleForKinesisFirehose.Arn<\/span>\r\n      <span class=\"na\">ElasticsearchDestinationConfiguration<\/span><span class=\"pi\">:<\/span>\r\n        <span class=\"na\">BufferingHints<\/span><span class=\"pi\">:<\/span>\r\n          <span class=\"na\">IntervalInSeconds<\/span><span class=\"pi\">:<\/span> <span class=\"m\">60<\/span>\r\n          <span class=\"na\">SizeInMBs<\/span><span class=\"pi\">:<\/span> <span class=\"m\">1<\/span>\r\n        <span class=\"na\">CloudWatchLoggingOptions<\/span><span class=\"pi\">:<\/span> \r\n          <span class=\"na\">Enabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n          <span class=\"na\">LogGroupName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">CloudWatchLogsGroupForFirehose<\/span>\r\n          <span class=\"na\">LogStreamName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">CloudWatchLogsStreamForFirehoseS3<\/span>\r\n        <span class=\"na\">DomainARN<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">ElasticSearchDomain.DomainArn<\/span>\r\n        <span class=\"na\">IndexName<\/span><span class=\"pi\">:<\/span> <span class=\"s\">realtime<\/span>\r\n        <span class=\"na\">IndexRotationPeriod<\/span><span class=\"pi\">:<\/span> <span class=\"s\">NoRotation<\/span>\r\n        <span class=\"na\">ProcessingConfiguration<\/span><span class=\"pi\">:<\/span> \r\n          <span class=\"na\">Enabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n          <span class=\"na\">Processors<\/span><span class=\"pi\">:<\/span> \r\n            <span class=\"pi\">-<\/span> <span class=\"na\">Parameters<\/span><span class=\"pi\">:<\/span> \r\n                <span class=\"pi\">-<\/span> <span class=\"na\">ParameterName<\/span><span class=\"pi\">:<\/span> <span class=\"s\">LambdaArn<\/span>\r\n                  <span class=\"na\">ParameterValue<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">Lambda.Arn<\/span>\r\n              <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s\">Lambda<\/span>\r\n        <span class=\"na\">RetryOptions<\/span><span class=\"pi\">:<\/span> \r\n          <span class=\"na\">DurationInSeconds<\/span><span class=\"pi\">:<\/span> <span class=\"m\">300<\/span>\r\n        <span class=\"na\">RoleARN<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">IAMRoleForKinesisFirehose.Arn<\/span>\r\n        <span class=\"na\">S3BackupMode<\/span><span class=\"pi\">:<\/span> <span class=\"s\">FailedDocumentsOnly<\/span>\r\n        <span class=\"na\">S3Configuration<\/span><span class=\"pi\">:<\/span> \r\n          <span class=\"na\">BucketARN<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">S3ForKinesisFirehose.Arn<\/span>\r\n          <span class=\"na\">CloudWatchLoggingOptions<\/span><span class=\"pi\">:<\/span>\r\n            <span class=\"na\">Enabled<\/span><span class=\"pi\">:<\/span> <span class=\"no\">true<\/span>\r\n            <span class=\"na\">LogGroupName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">CloudWatchLogsGroupForFirehose<\/span>\r\n            <span class=\"na\">LogStreamName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">CloudWatchLogsStreamForFirehoseElasticSearch<\/span>\r\n          <span class=\"na\">RoleARN<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!GetAtt<\/span> <span class=\"s\">IAMRoleForKinesisFirehose.Arn<\/span>\r\n        <span class=\"na\">TypeName<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">'<\/span>\r\n  <span class=\"na\">CloudWatchLogsGroupForFirehose<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::Logs::LogGroup'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">LogGroupName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Sub<\/span> <span class=\"s1\">'<\/span><span class=\"s\">\/aws\/kinesisfirehose\/${AWS:StackName}'<\/span>\r\n      <span class=\"na\">RetentionInDays<\/span><span class=\"pi\">:<\/span> <span class=\"m\">60<\/span>\r\n  <span class=\"na\">CloudWatchLogsStreamForFirehoseS3<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::Logs::LogStream'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">LogGroupName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">CloudWatchLogsGroupForFirehose<\/span>\r\n      <span class=\"na\">LogStreamName<\/span><span class=\"pi\">:<\/span> <span class=\"s\">S3<\/span>\r\n  <span class=\"na\">CloudWatchLogsStreamForFirehoseElasticSearch<\/span><span class=\"pi\">:<\/span>\r\n    <span class=\"na\">Type<\/span><span class=\"pi\">:<\/span> <span class=\"s1\">'<\/span><span class=\"s\">AWS::Logs::LogStream'<\/span>\r\n    <span class=\"na\">Properties<\/span><span class=\"pi\">:<\/span>\r\n      <span class=\"na\">LogGroupName<\/span><span class=\"pi\">:<\/span> <span class=\"kt\">!Ref<\/span> <span class=\"s\">CloudWatchLogsGroupForFirehose<\/span>\r\n      <span class=\"na\">LogStreamName<\/span><span class=\"pi\">:<\/span> <span class=\"s\">ElasticSearch<\/span>\r\n<\/code><\/pre>\n<p>\u4ee5\u4e0a\u662f\u5b8c\u6210\u4e86\u6240\u6709\u5fc5\u9700\u7684\u8d44\u6e90\u8bbe\u7f6e\uff0c\u4ee5\u53ef\u89c6\u5316CloudFront\u7684\u5b9e\u65f6\u65e5\u5fd7\u3002\u901a\u8fc7\u6267\u884c\u6b64CloudFormation\u6a21\u677f\uff0c\u6bcf\u4e2a\u8d44\u6e90\u5c06\u88ab\u90e8\u7f72\u3002<\/p>\n<p>\u53e6\u5916\uff0c\u8bf7\u76d1\u63a7\u4ee5\u4e0bCloudWatch\u6307\u6807\u4ee5\u786e\u8ba4Firehose\u662f\u5426\u6b63\u5e38\u5de5\u4f5c\u3002\u60a8\u53ef\u4ee5\u901a\u8fc7\u6b64\u94fe\u63a5\uff0c\u6279\u91cf\u542f\u7528\u57fa\u4e8e\u8fd9\u4e9b\u6307\u6807\u7684CloudWatch\u8b66\u62a5\u3002<\/p>\n<div>\n<div class=\"post-table\">\u30cd\u30fc\u30e0\u30b9\u30da\u30fc\u30b9\u30e1\u30c8\u30ea\u30af\u30b9\u95be\u5024AWS\/Firehose<strong>DeliveryToElasticsearch.DataFreshness<\/strong>\u30c6\u30f3\u30d7\u30ec\u30fc\u30c8\u3067\u6307\u5b9a\u3057\u305f\u5024AWS\/Firehose<strong>ThrottledGetShardIterator<\/strong><strong>1\u5206\u9593\u306b1\u56de\u4ee5\u4e0a<\/strong>AWS\/Firehose<strong>ThrottledGetRecords<\/strong><strong>1\u5206\u9593\u306b1\u56de\u4ee5\u4e0a<\/strong>AWS\/Firehose<strong>DeliveryToElasticsearch.Success<\/strong><strong>1\u3088\u308a\u5c0f\u3055\u3044\u5834\u5408<\/strong><\/div>\n<\/div>\n<h2>Kibana\u7684\u914d\u7f6e<\/h2>\n<p>\u4e00\u65e6\u4e0a\u8ff0\u8d44\u6e90\u7684\u90e8\u7f72\u5b8c\u6210\u540e\uff0c\u5c06\u4e3aElasticsearch\u4e2d\u5bfc\u5165\u7684\u6570\u636e\u6307\u5b9a\u7d22\u5f15\uff0c\u5e76\u8fdb\u884c\u4f7f\u7528Kibana\u8fdb\u884c\u53ef\u89c6\u5316\u7684\u8bbe\u7f6e\u3002\u5173\u4e8e\u6b64\u6b65\u9aa4\u7684\u8be6\u7ec6\u4fe1\u606f\uff0c\u8bf7\u53c2\u89c1\u6b64\u5904\uff0c\u5e76\u4e0e\u672c\u6587\u4e00\u8d77\u9605\u8bfb\u3002\u901a\u8fc7\u6267\u884c\u4ee5\u4e0b\u64cd\u4f5c\uff0cFirehose\u5c06\u80fd\u591f\u5411Elasticsearch\u6295\u653e\u6570\u636e\uff0c\u5e76\u81ea\u52a8\u521b\u5efa\u5fc5\u8981\u7684\u56fe\u8868\u548c\u4eea\u8868\u677f\u4ee5\u8fdb\u884c\u53ef\u89c6\u5316\u3002<\/p>\n<p>Security \u306e Roles \u3092\u9078\u629e\u3057\u307e\u3059\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/96-0.png\" alt=\"kibana_12.png\" \/><\/div>\n<p>+ \u30a2\u30a4\u30b3\u30f3\u3092\u30af\u30ea\u30c3\u30af\u3057\u3066\u65b0\u3057\u3044\u30ed\u30fc\u30eb\u3092\u8ffd\u52a0\u3057\u307e\u3059\u3002<br \/>\n\u4f5c\u6210\u3057\u305f\u30ed\u30fc\u30eb\u306b firehose \u3068\u3044\u3046\u540d\u524d\u3092\u3064\u3051\u307e\u3059\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/98-0.png\" alt=\"Kibana\" \/><\/div>\n<p>Cluster Permissions \u30bf\u30d6\u306e Cluster-wide permissions \u3067 cluster_composite_ops cluster_monitor \u30b0\u30eb\u30fc\u30d7\u3092\u8ffd\u52a0\u3057\u307e\u3059\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/100-0.png\" alt=\"Kibana\" \/><\/div>\n<p>Index Permissions \u30bf\u30d6\u306e Add index permissions \u304b\u3089 Index Patterns \u3092\u9078\u3093\u3067 realtime* \u3092\u5165\u529b\u3057\u307e\u3059\u3002Permissions: Action Groups \u3067 crud create_index manage \u30a2\u30af\u30b7\u30e7\u30f3\u30b0\u30eb\u30fc\u30d7\u3092\u8ffd\u52a0\u3057\u307e\u3059\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/102-0.png\" alt=\"Kibana\" \/><\/div>\n<p>Save Role Definition \u3092\u30af\u30ea\u30c3\u30af\u3057\u307e\u3059\u3002<\/p>\n<p>Security \u306e Role Mappings \u3092\u9078\u629e\u3057\u307e\u3059\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/104-0.png\" alt=\"kibana_11.png\" \/><\/div>\n<p>Add Backend Role \u3092\u30af\u30ea\u30c3\u30af\u3057\u307e\u3059\u3002<br \/>\n\u5148\u307b\u3069\u4f5c\u6210\u3057\u305f firehose\u3092\u9078\u629e\u3057\u307e\u3059\u3002<br \/>\nBackend roles \u306b Kinesis Data Firehose \u304c Amazon ES \u304a\u3088\u3073 S3 \u306b\u66f8\u304d\u8fbc\u3080\u305f\u3081\u306b\u4f7f\u7528\u3059\u308b IAM \u30ed\u30fc\u30eb\u306e ARN \u3092\u5165\u529b\u3057\u307e\u3059\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/106-0.png\" alt=\"Kibana\" \/><\/div>\n<p>Submit \u3092\u30af\u30ea\u30c3\u30af\u3057\u307e\u3059\u3002<\/p>\n<p>Dev Tools \u3092\u9078\u629e\u3057\u307e\u3059\u3002<\/p>\n<p>timestamp \u30d5\u30a3\u30fc\u30eb\u30c9\u3092 date \u30bf\u30a4\u30d7\u3068\u8a8d\u8b58\u3055\u305b\u308b\u305f\u3081\u306b\u3001\u4ee5\u4e0b\u306e\u30b3\u30de\u30f3\u30c9\u3092\u5165\u529b\u3057\u3066\u5b9f\u884c\u3057\u307e\u3059\u3002<\/p>\n<pre class=\"post-pre\"><code><span class=\"err\">PUT<\/span> <span class=\"err\">_template\/custom_template<\/span>\r\n<span class=\"p\">{<\/span>\r\n    <span class=\"nl\">\"template\"<\/span><span class=\"p\">:<\/span> <span class=\"s2\">\"realtime*\"<\/span><span class=\"p\">,<\/span>\r\n    <span class=\"nl\">\"mappings\"<\/span><span class=\"p\">:<\/span> <span class=\"p\">{<\/span>\r\n        <span class=\"nl\">\"properties\"<\/span><span class=\"p\">:<\/span> <span class=\"p\">{<\/span>\r\n            <span class=\"nl\">\"timestamp\"<\/span><span class=\"p\">:<\/span> <span class=\"p\">{<\/span>\r\n                <span class=\"nl\">\"type\"<\/span><span class=\"p\">:<\/span> <span class=\"s2\">\"date\"<\/span><span class=\"p\">,<\/span>\r\n                <span class=\"nl\">\"format\"<\/span><span class=\"p\">:<\/span> <span class=\"s2\">\"epoch_second\"<\/span>\r\n            <span class=\"p\">}<\/span>\r\n        <span class=\"p\">}<\/span>\r\n    <span class=\"p\">}<\/span>\r\n<span class=\"p\">}<\/span>\r\n<\/code><\/pre>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/109-0.png\" alt=\"Kibana\" \/><\/div>\n<p>\u30a4\u30f3\u30c7\u30c3\u30af\u30b9 \u304a\u3088\u3073 visualizes \u3068 dashboard \u306e\u8a2d\u5b9a\u30d5\u30a1\u30a4\u30eb \u3092\u30a4\u30f3\u30dd\u30fc\u30c8\u3057\u307e\u3059\u3002<\/p>\n<p>\u6211\u5011\u6210\u529f\u5728AWS\u4e0a\u642d\u5efa\u4e86\u4e00\u500b\u4f7f\u7528Kibana\u4f86\u5be6\u6642\u67e5\u770bCloudFront\u65e5\u8a8c\u7684\u74b0\u5883\u3002<\/p>\n<h2>\u5b9e\u65f6\u4eea\u8868\u76d8<\/h2>\n<p>\u5f53\u60a8\u5b8c\u6210\u4e0a\u8ff0\u8bbe\u7f6e\u540e\uff0c\u60a8\u53ef\u4ee5\u767b\u5f55Kibana\u5e76\u5b9e\u65f6\u67e5\u770b\u4e0b\u5217\u6570\u636e\u7684\u56fe\u8868\u7b49\u4fe1\u606f\u3002<\/p>\n<h3>\u4eea\u8868\u677f<\/h3>\n<p>\u53ef\u4ee5\u901a\u8fc7\u4e00\u5c4f\u5e55\u67e5\u770b\u6240\u6709\u5df2\u521b\u5efa\u7684\u56fe\u8868\u3002<\/p>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/116-0.png\" alt=\"Screenshot_2021-01-23 Default - Elastic.png\" \/><\/div>\n<h3>\u5c55\u73b0\u5f62\u8c61<\/h3>\n<p>\u6bcf\u4e2a\u56fe\u5f62\u5982\u4e0b\uff1a<\/p>\n<h4>\u6bcf\u79d2\u8bf7\u6c42\u6570<\/h4>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/120-0.png\" alt=\"Screenshot_2021-01-23 Requests by timestamp - Elastic.png\" \/><\/div>\n<h4>\u56fd\u5bb6<\/h4>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/122-0.png\" alt=\"Screenshot_2021-01-23 Requests by country - Elastic.png\" \/><\/div>\n<h4>\u54cd\u5e94\u65f6\u95f4<\/h4>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/124-0.png\" alt=\"Screenshot_2021-01-23 Response time - Elastic.png\" \/><\/div>\n<h4>\u5185\u5bb9\u7c7b\u578b<\/h4>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/126-0.png\" alt=\"Screenshot_2021-01-23 Result type - Elastic.png\" \/><\/div>\n<h4>\u54cd\u5e94\u7801<\/h4>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/128-0.png\" alt=\"Screenshot_2021-01-23 Response code - Elastic.png\" \/><\/div>\n<h4>\u7ed3\u679c\u7c7b\u578b<\/h4>\n<div><img decoding=\"async\" class=\"post-images\" title=\"\" src=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/130-0.png\" alt=\"Screenshot_2021-01-23 Result type - Elastic.png\" \/><\/div>\n<p>\u901a\u8fc7\u63d0\u53d6\u5b9e\u65f6\u65e5\u5fd7\u7684\u4efb\u610f\u5b57\u6bb5\uff0c\u6211\u4eec\u53ef\u4ee5\u53ef\u89c6\u5316\u5404\u79cd\u6570\u636e\uff0c\u5e76\u5b9e\u65f6\u786e\u8ba4\u5176\u53d8\u5316\u3002\u8fd9\u5c06\u4f7f\u5f97\u7f51\u7ad9\u7684\u8fd0\u8425\u76d1\u63a7\u4f53\u7cfb\u66f4\u52a0\u7075\u6d3b\u548c\u7ec6\u81f4\uff0c\u6211\u8ba4\u4e3a\u53ef\u4ee5\u5efa\u7acb\u8d77\u6bd4\u4ee5\u5f80\u66f4\u9ad8\u6548\u7684\u8fd0\u7ef4\u76d1\u63a7\u4f53\u7cfb\u3002<\/p>\n<h1>\u76f8\u5173\u94fe\u63a5<\/h1>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>\u4f7f\u7528CloudFormation\u4e00\u952e\u642d\u5efa\u5206\u53d1\u57fa\u7840\u8bbe\u65bd-\u901a\u8fc7CloudFormation\u8f7b\u677e\u5b9e\u73b0\u7f51\u7ad9\u6258\u7ba1<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>\u4f7f\u7528CloudFormation\u5c06WAF\u4e0eCloudFront\u8fdb\u884c\u5173\u8054-\u901a\u8fc7CloudFormation\u8f7b\u677e\u5b9e\u73b0\u7f51\u7ad9\u6258\u7ba1<\/ol>\n<\/li>\n<\/ol>\n<p>&nbsp;<\/p>\n<ol>\n<li style=\"list-style-type: none;\">\n<ol>\u4f7f\u7528CloudFormation\u5b9a\u671f\u76d1\u6d4b\u7279\u5b9aURL-\u901a\u8fc7CloudFormation\u8f7b\u677e\u5b9e\u73b0\u7f51\u7ad9\u6258\u7ba1<\/ol>\n<\/li>\n<\/ol>\n<p>\u4f7f\u7528CloudFormation\u5c06CloudFront\u7684\u5b9e\u65f6\u65e5\u5fd7\u5728Kibana\u4e2d\u8fdb\u884c\u53ef\u89c6\u5316-\u901a\u8fc7CloudFormation\u8f7b\u677e\u5b9e\u73b0\u7f51\u7ad9\u6258\u7ba1<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u9996\u5148 \u901a\u8fc7\u4f7f\u7528\u7531\u4e9a\u9a6c\u900a\u7f51\u7edc\u670d\u52a1\uff08AWS\uff09\u63d0\u4f9b\u7684\u670d\u52a1\uff0c\u5982Amazon CloudFront\u548cAmazon S3\u7684 [&hellip;]<\/p>\n","protected":false},"author":8,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-41107","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v21.5 (Yoast SEO v21.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.silicloud.com\/zh\/blog\/\u7528kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684cloudfront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316\/\" \/>\n<meta property=\"og:locale\" content=\"zh_CN\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316\" \/>\n<meta property=\"og:description\" content=\"\u9996\u5148 \u901a\u8fc7\u4f7f\u7528\u7531\u4e9a\u9a6c\u900a\u7f51\u7edc\u670d\u52a1\uff08AWS\uff09\u63d0\u4f9b\u7684\u670d\u52a1\uff0c\u5982Amazon CloudFront\u548cAmazon S3\u7684 [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.silicloud.com\/zh\/blog\/\u7528kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684cloudfront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog - Silicon Cloud\" \/>\n<meta property=\"article:published_time\" content=\"2023-11-18T01:47:39+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-04-30T04:18:58+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/5-0.png\" \/>\n<meta name=\"author\" content=\"\u96c5, \u609f\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u4f5c\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"\u96c5, \u609f\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 \u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/\",\"name\":\"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud\",\"isPartOf\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\"},\"datePublished\":\"2023-11-18T01:47:39+00:00\",\"dateModified\":\"2024-04-30T04:18:58+00:00\",\"author\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/f044a4b7fa4ee2701702942002419ca6\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/#breadcrumb\"},\"inLanguage\":\"zh-Hans\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u9996\u9875\",\"item\":\"https:\/\/www.silicloud.com\/zh\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#website\",\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/\",\"name\":\"Blog - Silicon Cloud\",\"description\":\"\",\"inLanguage\":\"zh-Hans\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/f044a4b7fa4ee2701702942002419ca6\",\"name\":\"\u96c5, \u609f\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/e71a913e914f1aad1efc391f92084294bac54bc782acd289638580134cf667a6?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/e71a913e914f1aad1efc391f92084294bac54bc782acd289638580134cf667a6?s=96&d=mm&r=g\",\"caption\":\"\u96c5, \u609f\"},\"url\":\"https:\/\/www.silicloud.com\/zh\/blog\/author\/yawu\/\"},{\"@type\":\"ImageObject\",\"inLanguage\":\"zh-Hans\",\"@id\":\"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/#local-main-organization-logo\",\"url\":\"\",\"contentUrl\":\"\",\"caption\":\"Blog - Silicon Cloud\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.silicloud.com\/zh\/blog\/\u7528kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684cloudfront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316\/","og_locale":"zh_CN","og_type":"article","og_title":"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316","og_description":"\u9996\u5148 \u901a\u8fc7\u4f7f\u7528\u7531\u4e9a\u9a6c\u900a\u7f51\u7edc\u670d\u52a1\uff08AWS\uff09\u63d0\u4f9b\u7684\u670d\u52a1\uff0c\u5982Amazon CloudFront\u548cAmazon S3\u7684 [&hellip;]","og_url":"https:\/\/www.silicloud.com\/zh\/blog\/\u7528kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684cloudfront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316\/","og_site_name":"Blog - Silicon Cloud","article_published_time":"2023-11-18T01:47:39+00:00","article_modified_time":"2024-04-30T04:18:58+00:00","og_image":[{"url":"https:\/\/cdn.silicloud.com\/blog-img\/blog\/img\/657d44bf37434c4406ca07b5\/5-0.png"}],"author":"\u96c5, \u609f","twitter_card":"summary_large_image","twitter_misc":{"\u4f5c\u8005":"\u96c5, \u609f","\u9884\u8ba1\u9605\u8bfb\u65f6\u95f4":"11 \u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/","url":"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/","name":"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316 - Blog - Silicon Cloud","isPartOf":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website"},"datePublished":"2023-11-18T01:47:39+00:00","dateModified":"2024-04-30T04:18:58+00:00","author":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/f044a4b7fa4ee2701702942002419ca6"},"breadcrumb":{"@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/#breadcrumb"},"inLanguage":"zh-Hans","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u9996\u9875","item":"https:\/\/www.silicloud.com\/zh\/blog\/"},{"@type":"ListItem","position":2,"name":"\u7528Kibana\u5c06\u7b80\u5355\u7f51\u7ad9\u6258\u7ba1\u4e2d\u7684CloudFront\u5b9e\u65f6\u65e5\u5fd7\u53ef\u89c6\u5316"}]},{"@type":"WebSite","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#website","url":"https:\/\/www.silicloud.com\/zh\/blog\/","name":"Blog - Silicon Cloud","description":"","inLanguage":"zh-Hans"},{"@type":"Person","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/f044a4b7fa4ee2701702942002419ca6","name":"\u96c5, \u609f","image":{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/e71a913e914f1aad1efc391f92084294bac54bc782acd289638580134cf667a6?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/e71a913e914f1aad1efc391f92084294bac54bc782acd289638580134cf667a6?s=96&d=mm&r=g","caption":"\u96c5, \u609f"},"url":"https:\/\/www.silicloud.com\/zh\/blog\/author\/yawu\/"},{"@type":"ImageObject","inLanguage":"zh-Hans","@id":"https:\/\/www.silicloud.com\/zh\/blog\/%e7%94%a8kibana%e5%b0%86%e7%ae%80%e5%8d%95%e7%bd%91%e7%ab%99%e6%89%98%e7%ae%a1%e4%b8%ad%e7%9a%84cloudfront%e5%ae%9e%e6%97%b6%e6%97%a5%e5%bf%97%e5%8f%af%e8%a7%86%e5%8c%96\/#local-main-organization-logo","url":"","contentUrl":"","caption":"Blog - Silicon Cloud"}]}},"_links":{"self":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/41107","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/comments?post=41107"}],"version-history":[{"count":2,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/41107\/revisions"}],"predecessor-version":[{"id":91871,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/posts\/41107\/revisions\/91871"}],"wp:attachment":[{"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/media?parent=41107"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/categories?post=41107"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.silicloud.com\/zh\/blog\/wp-json\/wp\/v2\/tags?post=41107"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}