AWS CloudWatch Logs filter pattern issues
I have a several crawlers that crawls multiple sites and stores the contents in a database. The logs from the program are stored in CloudWatch Logs.
If the crawlers successfully pulls back content it looks like similarly to below
HTTP GET: 200 - https://www.thecheyennepost.com/news/national/r
HTTP GET: 200 - https://www.thecheyennepost.com/news/f-e-warren-hous
The issue I'm dealing with is identifying when 400 errors pop up. Below is an example:
HTTP GET: 429 - https://www.livingstonparishnews.com/search/?l=25&sort=
HTTP GET: 429 - https://www.livingstonparishnews.com/search/?l=25&sort=rele
HTTP GET: 429 - https://www.ktbs.com/search/?l=25&s=start_time&sd=desc&f=
I tried using status_code=4* but that didn't do anything
I just want to be able to filter any and all 400 errors.
Any help that can be provided would be greatly appreciated.
Yes! Now you can with Logs Insights :)
First... you need to have the new UI or in another way go to "Logs Insights" service... jaja
CloudWatch -> CloudWatch Logs -> Log groups -> [your service logs]
With the new UI you can see this button (or go to Logs Insights in the search engine of aws cli):
Now you can see this:
- It's a box for querys, it's like a SQL.
- The time range in which you will search
Now in your case.. you need this query (tell me if you need to filter another thing)
fields @message
| sort @timestamp desc
| filter @message like /4{1}[0-9]{1}[0-9]{1}/
I see your logs and you have spaces between your status code and I think this is the best
fields @message
| sort @timestamp desc
| filter @message like / 4{1}[0-9]{1}[0-9]{1} /
And that's all
Now run the query and you will see only logs that contains status codes [4xx]. I hope that solve your problem
NOTE: if you go directly from search engine to Logs Insights you need to select the service logs that you scan with the query. On the combobox in top of query box.
- How to pull every single image (tag or untagged) from AWS ECR?
- In CloudFormation how can I link RDS and Secrets Manager so I don't have to hardcode the password?
- How to install postgresql-client to Amazon EC2 Linux machine?
- PyCharm: Why "Python Console" is not accessing ~\.aws\credentials file? How to set it within "Python Console"
- Is it possible to run aws s3 sync with boto3?
- Python 3 asyncio with aioboto3 seems sequential
- Serverless / AWS Lambda - Create the triggers for the published lambda versions
- AWS Glue missing permissions
- Invoking lambda from API gateway test, but hitting the endpoint does not invoke the lambda. 500 returned
- terraform destroy needs original terraform code to destroy?
- How to correctly/safely access parameters from AWS SSM Parameter store for my Python script on EC2 instance?
- Why is my image not displaying on my Web page?
- How to copy blobs from azure to aws using python?
- S3 Bucket action doesn't apply to any resources
- Couldn't proceed with upgrade process as new nodes are not joining node group standard-workers
- How to customize "From" name for SNS emails
- Changing the name of a Load Balancer on AWS Console
- how to decrease the exceution time of aws lambda function nodejs
- Timeout when trying to retrieve EC2 instance-id metadata from within it
- Row was updated or deleted by another transaction (or unsaved-value mapping was incorrect)
- Downloading an entire S3 bucket?
- Unable to unzip .zip file on linux machine
- Missing Authentication Token while accessing API Gateway?
- AWS S3 Access Denied when open object URL in browser
- How to update a nested field in dynamodb via cli?
- AWS Lambda NodeJs unable to return response
- How can I access my AWS MSK managed kafka queue from my local machine and EC2 instances in other regions
- How to recreate EC2 instances of an autoscaling group with terraform?
- AWS Cloudwatch Alarm Issue
- AWS EC2 | using Rusoto SDK: Couldn't find AWS credentials