DEV Community

Cover image for AWS CloudWatch Logging and Live Tail using AWS CLI!
Girish Bhatia
Girish Bhatia

Posted on

AWS CloudWatch Logging and Live Tail using AWS CLI!

In the previous articles, I explained how to set up live tail logging in AWS CloudWatch. The setup of log group live tail logging was completed using AWS Console. Subsequently, I also explained how to use a programmatic approach to start the log live tail using Python and Boto3.

In this article, I will demonstrate another way to get live tail for the selected cloud log group using AWS CLI. I will use AWS CLI to write a command that will publish the live tail based on the cloud watch group and filter pattern provided.

If you鈥檙e a Linux user, you鈥檙e likely familiar with the tail command for viewing live logs. CloudWatch鈥檚 live tail feature works similarly, allowing you to monitor logs in real time as your functions are executed.

This feature is incredibly helpful for various use cases, including debugging issues, monitoring deployments, command center oversight, identifying performance issues, and more.

If you are interested in prior articles on the cloud watch logs topics, Please refer to the links below:

Link: AWS Logging, Monitoring & Auditing with AWS CloudWatch and CloudTrail!
Link: AWS Lambda Log Aggregation Using CloudWatch Custom Log Group & Logs Insights!
Link: AWS CloudWatch Logging and Live Tail!
Link:AWS CloudWatch Logging and Live Tail using Python/Boto3 SDK!

Let's look at the architecture diagram!

Image arch

Let's see the steps to create this solution using AWS CloudWatch live tail and Lambda logging.

Few points about CloudWatch Live Tail

  • CloudWatch Live Tail provides options to refine and target specific log data:
  • Use Highlight to flag events that match your specified terms (up to 5 terms).
  • Use Filter to limit the events displayed in the session.
  • You can select up to 10 log groups to include in the live tail session.

AWS may update this limit so please refer to AWS documentation for the latest limit.

Note: CloudWatch Live Tail is charged on a per-minute basis during the session, making it a flexible, on-demand solution for troubleshooting and monitoring.

Review the CloudWatch Log Group

For this CloudWatch Logs live tail demonstration, I will use the log group /aws/lambda/MeetingNotesSummarizer. This log group is already in place for an existing Lambda function, and all logs generated by this function are stored here. This setup allows us to monitor and analyze the log data produced by this Lambda function in real time.

Review the Lambda Function Description

The Lambda function we鈥檙e using is pre-configured with logging capabilities. This function supports a Generative AI use case and includes guardrails to ensure data security and compliance. For example, if Personally Identifiable Information (PII) is detected in the data processed by this function, a guardrail log entry will be generated in the CloudWatch log group to flag the occurrence. This helps maintain data safety by providing insights into sensitive data handling during AI operations.

Review the AWS CLI Command

This command uses AWS CLI. Once executed, the command will monitors the AWS CloudWatch logs in real time (live tail) with the option to filter the logs.

We will also be able to highlight desired term in the log using the interactive mode.

You will need to ensure that you have AWS CLI 2.16.0 or higher installed.

You can run aws --version command to check the AWS CLI version installed.

Image cliversion

Example AWS CLI Command:

Image commands

Press 'h' to highlight term
Press 'c' to clean highlighted term
You can stop the program by pressing CTRL+C.

Run the AWS CLI command and start the live tail session!

Image tail

Invoke the Lambda Function

To validate the policy configuration, Let's invoke a lambda function to write to the logs.

I am using a GenAI app created by me to invoke the lambda in the backend. This App uses multiple AWS services including API Gateway, Lambda, Bedrock and others.

Image app

Monitor the Live tail for highlighted and Filtered logs

When lambda function is invoked, logs will be created and live tail will show it as well!

Image tailresults

Let's try Interactive Mode

Image interactive

Press h and enter GUARDRAIL ( to highlight )
Invoke the lambda function again and monitor the tail.
Notice that this term is now highlighted in different color:

Image res

Press esc to terminate the session!

Cleanup - Delete Log Group, End the live tail session

If you don't need the log group, make sure to delete it and end the live tail session.

Conclusion

In this article, we successfully demonstrated how to implement a live tail for CloudWatch logs using AWS CLI. If you watched the previous workshop on setting up a live tail using the AWS Console, you now know an alternative method to achieve the same functionality using AWS CLI.

Logging and monitoring are essential components of observability, and mastering different techniques can greatly enhance your skills in this area.

Thank you for reading!

Click here to watch the YouTube video for this solution:


https://www.youtube.com/watch?v=2-73M33-AQ8

饾挗饾捑饾搰饾捑饾搱饾捊 鈩潚金潚娥潛夝潚攫潚�br> 饾槇饾槥饾槡 饾槉饾槮饾槼饾樀饾槳饾槯饾槳饾槮饾槬 饾槡饾槹饾槶饾樁饾樀饾槳饾槹饾槸 饾槇饾槼饾槫饾槱饾槳饾樀饾槮饾槫饾樀 & 饾構饾槮饾樂饾槮饾槶饾槹饾槺饾槮饾槼 饾槇饾槾饾槾饾槹饾槫饾槳饾槩饾樀饾槮
饾槉饾槶饾槹饾樁饾槬 饾槢饾槮饾槫饾槱饾槸饾槹饾槶饾槹饾槰饾樅 饾槍饾槸饾樀饾槱饾樁饾槾饾槳饾槩饾槾饾樀

Top comments (0)