AWS Client VPN
AWS Client VPN is a managed client-based VPN service that enables you to securely access your AWS resources and resources in your on-premises network. With Client VPN, you can access your resources from any location using an OpenVPN-based VPN client. For more details, refer to the AWS documentation.
Log and metric types
Setup
You can collect the logs and metrics for Sumo Logic's AWS Client VPN integration by following the below steps.
Configure metrics collection
- Collect CloudWatch Metrics with namespace
AWS/ClientVPN
using the AWS Kinesis Firehose for Metrics source. ForAWS/ClientVPN
metrics and dimensions, refer to AWS Client VPN CloudWatch metrics.
Configure logs collection
- Collect AWS CloudTrail Logs using AWS CloudTrail source. AWS Client VPN is integrated with AWS CloudTrail, a service that provides a record of actions taken by a user, role, or AWS service in Client VPN. CloudTrail captures all API calls for Client VPN as events, which includes calls from the Client VPN console and code calls to the Client VPN API operations. If you create a trail, you can enable continuous delivery of CloudTrail events to an Amazon S3 bucket, including events for Client VPN. Use the information collected by CloudTrail to determine the request that was made to Client VPN, the requesting IP address, the requester, when it was made, and additional details.