Start your observability journey
You can achieve observability of your applications running in AWS with Sumo Logic. Sumo Logic augments the capabilities offered by Amazon CloudWatch and AWS CloudTrail by linking all your telemetry so that you have a single view of your application across AWS services, regions, and accounts. You gain comprehensive visibility into how your apps usually behave and perform in production over time so you can understand and evolve them.
Instead of drilling down, one by one, into each AWS service you use, overview dashboards help you pivot between critical application telemetry. Machine learning-based root cause analysis surfaces anomalies.
Visualizations and alerts reduce the effort needed to see what is happening, where it is happening, why it is happening, and what can be done about it.
Let's explore the different layers of your application stack through the lens of Sumo Logic for AWS Observability.
End User
Going face-to-face
Amazon Cloud Front
Application
The heart of your custom app
AWS Distro for OpenTelemetry
Application Components
What your application depends on
Amazon Relational Database Service
Amazon Simple Queue Service
Amazon DynamoDB
Platform technology
How your application is packaged and delivered
Amazon Elastic Kubernetes Service
AWS Lambda
Amazon Elastic Container Service
AWS Fargate
Infrastructure
Where your application is hosted
Amazon Elastic Compute Cloud
Amazon Virtual Private Cloud
End user:
Going face-to-face
This is the face of your custom browser and mobile app; it’s how your end users engage with you. If there are performance or availability issues, users will stop interacting and might even uninstall the app. Getting the information to the user’s screen with the lowest amount of latency is a challenge when you have a global footprint. Amazon CloudFront is the AWS service designed to address this challenge.
Monitoring your content delivery with Sumo Logic can ensure your content is getting to your users as fast as possible.
However, because users usually encounter problems because of issues further down the stack, you should also investigate what is happening at the application and application component layers.
Amazon CloudFront
Amazon CloudFront serves up data, videos, applications, and APIs to websites, applications, and users with low latency and high transfer speeds. It also allows for quicker service deployment, and it speeds up delivery of cached and dynamic content. However, if it isn’t properly configured, performance and UX support can be less than optimal.
CloudFront generates logs that are collected in Amazon Simple Cloud Storage (S3). Sumo Logic accesses those logs and creates dashboards that you can use to troubleshoot issues and validate content delivery.
With an overview of CloudFront you can more easily:
Analyze content and visitors served.
Correlate the CloudFront data with your internal data to measure CloudFront’s impact as a content delivery system.
Create insights into user activity. Then, make adjustments to improve performance, user experience, and availability.
Application:
The heart of your custom app
Java, JavaScript, Python, .NET, Go, Ruby—your application code lives here. Observability is critical to understanding performance and discovering issues.
That’s why Sumo provides monitoring and diagnostic troubleshooting of your application code, OpenTelemetry project logs, and AWS Distro for OpenTelemetry, using unified logs, metrics, and traces.
Your custom application code brings everything together. It’s the revenue generating part of your business. It’s what your customers care about. Unifying the telemetry from all layers of your application stack, not just the code, can shorten the time needed to diagnose and troubleshoot.
AWS Distro for OpenTelemetry
AWS Distro for OpenTelemetry is a secure, production-ready, AWS-supported distribution of the OpenTelemetry project. AWS Distro for OpenTelemetry lets you instrument your applications just once, instead of running multiple SDKs and agents to collect metrics and traces and can be configured to send those metrics and traces to multiple AWS monitoring solutions, including Amazon CloudWatch.
Sumo Logic supports AWS Distro for OpenTelemetry. You can view dashboards and visualizations that deliver insights into the performance of your applications so you can adjust as needed.
You have what you need to:
Find long running or faulty transactions.
Drill down to any specific trace to better understand the timing relationships and the coding journey through the application infrastructure.
Get full metadata information, error details, metrics-based infrastructure health information, and more.
Application components:
What your application depends on
The application component layer is where web servers, databases, load balancers, messaging platforms, proxy servers, and application servers live. AWS services provide the fast access you need to connect to these dependencies.
Sumo Logic uses data from AWS services like CloudWatch and CloudTrail to deliver a full picture of the health and performance of this layer so you can address issues as they occur to help lower error rates and increase availability.
Web servers and databases are among the critical components of web app infrastructure in not only traditional three-tier app architectures but also modern distributed apps. Breadth of support with out of the box dashboards are critical to managing your application stack.
Amazon Relational Database Service
Amazon Relational Database Service (RDS) is a web service that makes it easier to set up, operate, and scale a relational database in the AWS Cloud. Amazon CloudWatch collects metrics from RDS, such as CPU utilization, read and write latency, and freeable memory. Amazon CloudTrail provides a record of actions taken by a user, role, or an AWS service in Amazon RDS.
Sumo Logic provides visibility into your Amazon RDS instances by collecting data from CloudWatch.
Sumo Logic dashboards with an actionable breakdown of metrics help you keep tabs on RDS system performance, the CPU, and memory, so you can:
Discover trends.
Respond quickly to outlier situations.
Scale resources up and down as required.
Save time and costs.
Achieve greater reliability.
Assure high availability.
Amazon DynamoDB
Amazon DynamoDB is a fully managed NoSQL database service that provides fast and predictable performance with seamless scalability. CloudWatch collects performance metrics for Amazon DynamoDB in three main areas—requests and throttling, errors, and global secondary index creation. DynamoDB is integrated with CloudTrail, which collects logs as events related to restoring and creating tables, backups and more.
Sumo Logic turns this CloudWatch and AWS CloudTrail data into a dashboard with a comprehensive view of DynamoDB health and performance so that you can:
Find correlations between problems and configurations.
Identify outliers in the metrics.
Receive alerts about malicious activity so that your DynamoDB investment performs as expected and remains secure.
Amazon Simple Queue Service
Amazon Simple Queue Service (SQS) is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems, and serverless applications. CloudWatch delivers metrics and logs for your Amazon SQS queues such as metrics related to message size, delay, visibility, deletion, and API calls.
Sumo Logic provides operational insights into your Amazon SQS utilization through preconfigured dashboards.
You can monitor key metrics, view the SQS events for queue activities, and plan the capacity of your SQS service utilization needed to deliver an exceptional end-user experience.
Platform technology:
How your application is packaged and delivered
Contain yourself. Containerize your applications or go serverless with AWS servers and get them to market faster. Ensure their reliability with a centralized view of real-time telemetry.
Sumo Logic helps you stay up to date on container and serverless performance and issues so there are no surprises.
Container technology like Docker enables DevOps teams to build, ship and run distributed applications more efficiently by abstracting from infrastructure and providing portability across providers, regions, and deployments. Monitoring the health of these platform services is critical to maintaining application reliability.
Amazon Elastic Kubernetes Service
Amazon Elastic Kubernetes Services (Amazon EKS) gives you the flexibility of highly available and secure Kubernetes and the automation you need to start, run, and scale Kubernetes applications in the AWS cloud.
The Sumo Logic Kubernetes solution has native integrations with Prometheus, OpenTelemetry, FluentD, Fluentbit, and Falcom, which makes it easy to set up collection deployment using Helm. You get instant access to metrics, logs, traces, and Kubernetes system and security events.
Amazon EKS control plane logging provides audit and diagnostic logs directly from the Amazon EKS control plane to CloudWatch Logs, which can be streamed to your Sumo Logic account. Sumo Logic dashboards and efficient visualizations unite all the data from CloudWatch to deliver advanced analytics, increase visibility, and uncover insights. Use what you see to keep your DevOps, security, and CI/CD processes running smoothly and efficiently so you can release updates and new apps at the speed the business demands.
Amazon Elastic Container Service
Amazon Elastic Container Service (Amazon ECS) is a fully managed container orchestration service that helps you easily deploy, manage, and scale containerized applications. Amazon CloudWatch collects and processes raw date from Amazon ECS into readable, near real-time metrics—cluster reservation, cluster utilization, service utilization, and a task count for running services. Logs are collected from AWS CloudTrail that indicate ECE initiation, IAM uses, container registration, and common create, delete, and update events on ECS resources such as clusters, containers, container agents, tasks, and task definitions.
Sumo Logic uses data visualizations to showcase both metrics and log data.
Custom dashboards detail important metrics and events in easy-to-read formats.
You can analyze the performance of your Amazon ECS clusters performance in real-time, identify issues, and expedite root-cause identification so that issues don’t slow your containers down.
View user access, platform configurations, changes, and all other logs and generate audit trails to demonstrate compliance.
AWS Lambda
AWS Lambda is a serverless compute service that runs your code in response to events and automatically manages the underlying compute resources for you. As a result, you do not have to provision or manage servers. When a function finishes processing an event, Lambda sends the metrics to Amazon CloudWatch. The Lambda runtime environment relays logs and other output from your function's code to CloudWatch.
Sumo Logic visualizations show the status of your Lambda instances and functions based on CloudWatch data.
You can even track and evaluate the adoption and performance of different versions of a single AWS Lambda function, such as resizing to fit a mobile device, tablet, or laptop. With this information all in one place, you can:
Gain visibility into costs of AWS Lambda functions and optimize resources where appropriate.
Ensure your AWS functions are healthy.
Remediate exceptions quickly so that your app deployment processes run smoothly with no interruption or slowdowns.
AWS Fargate
AWS Fargate is a serverless compute engine for containers that works with AWS ECS and EKS. With Fargate, there is no need to provision and manage servers. You specify and pay for resources per application, and it improves security through application isolation by design.
You can use the Sumo Logic integration with Amazon ECS to monitor Fargate resources and AWS FireLens to move application container logs from AWS ECS clusters launched with AWS Fargate to Sumo Logic.
With Sumo Logic, you can monitor and troubleshoot container and application deployment problems before they impact lead times and user experience with Sumo Logic visualizations.
Infrastructure:
Where your application is hosted
The infrastructure layer is where everything comes together as you scale up and down. AWS services provide the infrastructure, and Sumo Logic delivers the tools you need to make data-driven decisions from AWS logs and metrics, reducing the time to investigate security and operational issues.
Using cloud infrastructure allows for faster scaling of applications, because AWS typically provides 99.9% service availability across all regions and APIs.
However, service throttling and out of stock errors are common across all regions and cloud providers and can impact the ability to scale.
Sumo Logic tracks service availability errors, service throttling or rate-limiting errors, and out of stock errors between your API calls and underlying infrastructure.
Service throttling or rate limiting errors occur when the underlying cloud infrastructure rejects API calls to ensure fair, contracted or maximum usage in a multi-tenant environment. Out of stock errors represent scenarios where customers request compute instances of a particular type, but the cloud infrastructure is unable to fulfill it. And finally, service availability errors occur when the underlying infrastructure is experiencing issues and can’t fulfill the API request.
Amazon Elastic Compute Cloud
Amazon Elastic Compute Cloud (EC2) is a web service that provides secure, resizable compute capacity in the cloud, enabling you to control your computing resources. Amazon CloudWatch collects Amazon EC2 metrics for system health, CPU utilization, and memory utilization. Amazon CloudTrail is where operating system, hypervisor, and API events reside.
Sumo Logic captures Amazon EC2 metrics from CloudWatch and CloudTrail and displays them using predefined search queries and dashboards.
App dashboards provide a visual analysis of local host metrics for CPU, disk, memory, network, and TCP. You can use this comprehensive view of the health of EC2 to understand operational performance and diagnose issues to reduce errors and maintain high availability and scalability.
Amazon Virtual Private Cloud
Amazon Virtual Private Cloud (Amazon VPC) is a service that lets you launch AWS resources in a logically isolated virtual network that you define so that you have complete control over your virtual networking environment. Amazon VPC flow logs and inbound/outbound network traffic data are published to CloudWatch. So are metrics related to the health of the VPC.
With Sumo Logic, you can analyze your CloudWatch data and optimize performance—all in one place.
Sumo Logic provides a line-by-line account of the traffic flowing to and from specific addresses that helps you chart traffic origins and gauge impact.
All these capabilities enable you to identify trends, fix malfunctions, and clear up access anomalies before they adversely affect application deployment, adoption, and user satisfaction.
Visual choke points make it easy to keep an eye on other dangerous trends — all in real time. You can also find Access Control List (ACL) inconsistencies and protect your AWS services with proactive defense measures like ACL adjustments.
A complete picture is worth a thousand snapshots
Why move from one screen to another to understand your modern applications and the AWS services that underpin them when you don’t have to? With Sumo Logic deeply integrated into your AWS services, you get:
Multi-service visibility
Eliminate operational blind spots with native support for all of your AWS services. Visualize the entire AWS infrastructure to quickly identify trends, troubleshoot issues, and optimize performance.
App and infrastructure performance
Identify critical AWS application problems proactively by easily correlating performance issues with errors and failures. Get to the root cause quickly with pattern detection using machine-learning.
Prebuilt dashboards
Get easy-to-understand views of all your favorite AWS services like AWS Lambda, ALB, RDS, CloudTrail, and API Gateway—out of the box.
Security and compliance
Identify, correlate, and prioritize threats faster and streamline investigation with security analytics. Maintain compliance with internal and external standards (PCI, HIPAA, GDPR, and more).