AWS Transit Gateway
Introduction
AWS Transit Gateway provides a centralized hub for connecting Virtual Private Clouds (VPCs) and on-premises networks. Monitoring ensures you have visibility into the traffic and connections between these networks. It helps in understanding how data flows through your network and identifying any bottlenecks or inefficiencies.
Getting Started
Compatibility
vuSmartMaps supports monitoring the traffic and connections of your Transit Gateway Hub which connects your Virtual Private Clouds (VPCs) and on-premises networks. It helps in understanding how data flows through your network and identifying any bottlenecks or inefficiencies.
Data Collection Method
vuSmartMaps collects AWS Transit Gateway data using an internal data collector. This agent collects data based on the source configuration.
Prerequisites
Dependent Configuration
To configure this O11ySource, create a 'credential' of type 'aws' under the 'Definition' tab.
Inputs for Configuring Data Source
- Data Source Name: Data source name to uniquely identify the source.
- AWS Region: AWS Region where the instance of this component is running. For eg: Asia Pacific (Mumbai), the region would be ap-south-1
- AWS Credential: AWS credential that provides Access key and Secret key to access Cloudwatch.
- Polling Frequency: Specifies the interval in seconds at which data is collected. Data collection occurs once every specified period.
Firewall Requirement
To collect data from this O11ySource, ensure the following ports are opened:
| Source IP | Destination IP | Destination Port | Protocol | Direction |
|---|---|---|---|---|
| vuSmartMaps IP | AWS CloudWatch IPs | 443* | TCP | Outbound |
*Before providing the firewall requirements, please update the port based on the customer environment.
Configuring the Target
Health and Performance metrics of AWS Transit Gateway is collected through AWS CloudWatch Service. So AWS CloudWatch services must be enabled in your AWS account. AWS Transit Gateway should have APIs configured for which monitoring is enabled. Please enable detailed metrics if you want to see resource and method level metrics for HTTP APIs.
An IAM role or user with the following permissions is required to access CloudWatch metrics.
- cloudwatch:GetMetricData
- cloudwatch:ListMetrics
Configuration Steps
Enablethe AWS Transit Gateway O11ySource.- Select the sources tab and press the
+button to add a new instance that has to be monitored. - Provide the required configurations:
- *Source Name
- *AWS Region
- *AWS Credential
- *Period (in mins)
- Click
Saveto close the data source window.
Metrics Collected
| Name | Description | Data Type |
|---|---|---|
| BytesDropCountBlackhole | The number of bytes dropped because they matched a blackhole | UInt64 |
| BytesDropCountNoRoute | The number of bytes dropped because they did not match a route. | UInt64 |
| BytesIn | The number of bytes received by the transit gateway. | UInt64 |
| BytesOut | The number of bytes sent from the transit gateway. | UInt64 |
| PacketsIn | The number of packets received by the transit gateway. | UInt64 |
| PacketsOut | The number of packets sent by the transit gateway. | UInt64 |
| PacketDropCountBlackhole | The number of packets dropped because they matched a blackhole route. | UInt64 |
| PacketDropCountNoRoute | The number of packets dropped because they did not match a route. | UInt64 |
| Transit Gateway | The Transit Gateway | String |
| Transit Gateway Attachment | The Transit Gateway Attachment | String |
| Vublock name | The vublock name | LowCardinality(String) |
| Timestamp | Time the data is generated in the target machine | DateTime64 |
| Tenant Id | Tenant Id | LowCardinality(String) |
| BU Id | BU Id | LowCardinality(String) |
| Document Type | Document Type | LowCardinality(String) |
| Region | AWS Region | LowCardinality(String) |
| Name | Name Of Source | String |
| topic_name | Name of kafka input topic | LowCardinality(String) |
| @timestamp | Timestamp | String |
