AWS Network Firewall

AWS Network Firewall works together with AWS Firewall Manager so you can build policies based on Network Firewall rules and then centrally apply those policies across your virtual private clouds (VPCs) and accounts.

AWS Network Firewall publishes both logs and metrics to CloudWatch. Using Honeycomb’s AWS integrations, you can send that data to Honeycomb.

How it works

AWS CloudWatch provides Subscription Filters, which can be configured to forward all logs in a log group to a Kinesis Firehose destination. Kinesis Firehose then streams those logs to Honeycomb. Some AWS services use an additional step in the workflow that uses Lambda to structure log data before sending it to Honeycomb. Log data for Amazon API Gateway is unstructured and does not use this step.

AWS CloudWatch provides Metric Streams, which forward all metrics captured to third-party destinations. Metrics are streamed to Honeycomb using AWS Kinesis Data Firehose.


This service sends logs to CloudWatch and then forwards them (unstructured) to Honeycomb via Kinesis Firehose. It also sends metrics to CloudWatch and also forwards them to Honeycomb via AWS Kinesis.

Resources

Documentation

Honeycomb Docs for AWS

read more
Webpage

AWS Network Firewall (AWS)

read more
Terraform Module

Honeycomb Terraform AWS Integrations (Terraform Registry)

read more
Github

Honeycomb CloudFormation Templates Repo

read more
Github

Honeycomb Terraform AWS Modules Repo

read more
Blog

Honeycomb AWS Integrations Let You Bubble Up Lurking Issues

read more