Amazon and AWS
Docs for Sumo apps for Amazon and AWS.
This guide has documentation for all of the apps that Sumo provides for Amazon and AWS. Please also see the page for the AWS Observability Solution.
- Amazon Aurora MySQL ULM
- The Sumo Logic App for Aurora MySQL ULM is a unified logs and metrics (ULM) app for your Aurora MySQL database. Logs allow you to monitor database and user activity, incoming connections, query execution time, and errors. The metrics allow you to monitor database resource utilization and throughput performance.
- Amazon Aurora PostgreSQL ULM
- The Sumo Logic App for Aurora PostgreSQL uses unified logs and metrics (ULM) to monitor your Aurora PostgreSQL database. Logs allow you to monitor database and user activity, incoming connections, query execution time, and errors. The metrics allow you to monitor database resource utilization and throughput performance.
- Amazon CloudFront
- The Sumo Logic App for Amazon CloudFront provides analytics on visitor information, rates and statistics, content being served, and other metrics.
- Amazon DynamoDB
- The Sumo App for DynamoDB provides operational insight into your database environment. The app includes Dashboards that allow you to view the events, errors, latency, and capacity of your DynamoDB environment.
- Amazon EKS - Control Plane
- The Sumo Logic App for Amazon EKS - Control Plane App provides visibility into the EKS control plane with operational insights into the API server, scheduler, control manager, and worker nodes. The app’s preconfigured dashboards display resource-related metrics for Kubernetes deployments, clusters, namespaces, pods, containers, and daemonsets.
- Amazon ElastiCache Redis ULM
- The Sumo Logic App for Amazon ElastiCache Redis ULM is a unified logs and metrics (ULM) App that provides visibility into key event and performance analytics to enable proactive diagnosis and response to system and environment issues. The app provides preconfigured dashboards for high-level analysis of event status and trends, locations, and system health and performance metrics.
- Amazon Elastic Container Service (ECS)
- Provides preconfigured searches and Dashboards that allow you to monitor various metrics.
- Amazon GuardDuty
- The Amazon GuardDuty Sumo Logic app provides insights into the activities in your AWS account based on the findings from Amazon GuardDuty. The App includes preconfigured dashboards that allow you to detect unexpected and potentially malicious activities in your AWS account by providing details on threats by severity, VPC, IP, account ID, region, and resource type.
- Amazon Inspector App
- Allows you to monitor your AWS resources for potential security risks.
- Amazon Kinesis - Streams
- The Sumo Logic App for Amazon Kinesis - Streams is a unified logs and metrics (ULM) App which provides information on the events and metrics. The preconfigured dashboards help you monitor the events, API calls, errors, incoming and outgoing records, latencies, and throughput of Kinesis.
- Amazon RDS Metrics
- The Sumo Logic App for Amazon RDS Metrics provides visibility into your Amazon Relational Database Service (RDS) Metrics collected via a CloudWatch Metrics Source.
- Amazon Redshift ULM
- The Sumo Logic App for Amazon Redshift ULM helps you monitor activity in Amazon Redshift.
- Amazon S3 Audit
- Provides a simple web services interface that can be used to store and retrieve any amount of data from anywhere on the web.
- Amazon Security Quick Start
- The Sumo Logic AWS Security QuickStart solution helps customers automate the collection of security events from AWS security services and the installation and configuration of over 11 Sumo Logic apps designed for AWS security.
- Amazon SES
- The Sumo App for Amazon SES provides operational insight into Amazon Simple Email Service. The app includes dashboards that allow you to view information about bounced notifications, delivered notifications, and CloudTrail events.
- Amazon SNS
- The Sumo Logic App for Amazon SNS is a unified logs and metrics (ULM) App that provides insights into the operations and utilization of your SNS service. The preconfigured dashboards help you monitor the key metrics by application, platform, region, and topic name, view the SNS events for activities, and help you plan the capacity of your SNS service.
- Amazon SQS
- The Sumo Logic App for Amazon SQS is a unified logs and metrics (ULM) App that provides operational insights into your Amazon SQS utilization. The preconfigured dashboards help you monitor the key metrics, view the SQS events for queue activities, and help you plan the capacity of your SQS service utilization.
- Amazon VPC Flow Logs
- Logs the IP network traffic of your VPC, allowing you to troubleshoot traffic and security issues.
- AWS CloudTrail
- Ingests logs of API calls made to AWS, providing greater visibility into events that allow for security and operations forensics.
- AWS Config
- Provides a simple web services interface that can be used to track modifications made to the resources that belong to an AWS account.
- AWS Elastic Load Balancer - Application
- Use the Sumo Logic App to analyze raw Application Load Balancer data to investigate the availability of applications running behind Application Load Balancers.
- AWS Elastic Load Balancing
- Distributes incoming application traffic across multiple Amazon EC2 instances in the AWS Cloud.
- AWS Elastic Load Balancing - Classic
- Distributes incoming application traffic across multiple Amazon EC2 instances in the AWS Cloud.
- AWS Elastic Load Balancing Metrics
- The Sumo Logic App for AWS Elastic Load Balancing (ELB) Metrics lets you analyze the CloudWatch ELB metrics for the Application Load Balancer (ALB), and the Classic Load Balancer (CLB). The App provides preconfigured searches and dashboards that allow you to monitor the metrics healthy hosts, unhealthy hosts, HTTP backend codes, latency, requests, and more.
- AWS Elastic Load Balancing ULM - Application
- The Sumo Logic App for AWS Elastic Load Balancing ULM - Application is a unified logs and metrics (ULM) App that gives you visibility into the health of your Application Load Balancer and target groups. Use the preconfigured dashboards to understand the latency, request and host status, threat intel, and HTTP backend codes by availability zone and target group.
- AWS Elastic Load Balancing ULM - Classic
- The Sumo Logic App for AWS Elastic Load Balancing Classic is a unified logs and metrics (ULM) App which helps you monitor the classic load balancer. The preconfigured dashboards provide information on the latency, HTTP backend codes, requests, and host status, that help you investigate the issues in the load balancer.
- AWS Lambda
- The AWS Lambda App helps you monitor the operational and performance trends in all the Lambda functions in your account. The App uses two data sources - AWS CloudWatch logs for Lambda, and CloudTrail Lambda Data Events.
- AWS Lambda ULM
- The AWS Lambda ULM App is a unified logs and metrics (ULM) app for monitoring operation and performance trends of the Lambda functions in your account. Preconfigured dashboards provide insights into executions, such as memory and duration usage by function versions or aliases, as well as performance metrics such as errors, throttles, invocations, and concurrent executions.
- AWS Network Firewall
- AWS Network Firewall application provides visibility into traffic flows and alerts generated by AWS Network Firewall.
- AWS Security Hub
- AWS Security Hub is an AWS security service that provides a comprehensive view of your security state within AWS and your compliance with the security industry standards and best practices. The Sumo Logic App for AWS Security Hub leverages findings data from Security Hub and visually displays the data in Dashboards. The dashboards provide a high-level view of findings, showing the type, when they occurred, the resources that were affected, their severity, and their distribution, showing the cur
- AWS WAF
- The Sumo Logic App for AWS Web Application Firewall (WAF) analyzes traffic flowing through AWS WAF and automatically detects threats via Sumo Logic Threat Intel.
- CIS AWS Foundations Benchmark App
- This app provides alerts and visibility into an organization's AWS security posture. It is based on the CIS AWS Benchmarks Foundation recommendations.
- Global Intelligence for Amazon GuardDuty
- The Sumo Logic Global Intelligence Amazon GuardDuty App integrates Global Intelligence Service (GIS) with Amazon GuardDuty for continuous machine learning and statistical baselines for KPIs (key performance indicators) and KRIs (key risk indicators). The App includes preconfigured dashboards and searches with visual displays for global threat baselines and real-time threat detection across your AWS environment.
- Global Intelligence for AWS CloudTrail SecOps
- The Global Intelligence for AWS CloudTrail App enables you to detect potentially malicious configuration changes in your AWS account by comparing AWS CloudTrail events in your account against a cohort of AWS customers.
- Global Intelligence for AWS CloudTrail DevOps
- Global Intelligence for AWS Cloud Trail - DevOps provides insights for on-call engineers, SRE, and DevOps users to help minimize AWS errors and maximize app availability.
- PCI Compliance for Amazon VPC Flow Logs
- The Sumo Logic App for Payment Card Industry (PCI) Compliance for Amazon VPC Flow Logs App offers dashboards to monitor systems, account and users activity to ensure that login activity and privileged users are within the expected ranges. The PCI Compliance for Amazon VPC Flow Logs App covers PCI requirements 01, 02, and 04.
- PCI Compliance for AWS CloudTrail App
- The Sumo Logic App for Payment Card Industry (PCI) Compliance for AWS CloudTrail App offers dashboards to monitor systems, account and users activity to ensure that login activity and privileged users are within the expected ranges. The PCI Compliance for AWS CloudTrail App covers PCI requirements 02, 07, 08 and 10.
- Threat Intel for AWS
- This App correlates CrowdStrike threat intelligence data with your AWS log data to help detect any threats in your environment.