Skip to content

AWS VPC Endpoint

The displayed Metrics for the AWS VPC Endpoint include the number of concurrent active connections, the number of bytes exchanged between the endpoint and the endpoint service (bidirectional aggregate), the number of new connections established through this endpoint, the number of packets dropped by this endpoint, the number of RST packets received by this endpoint, etc.

Configuration

Install Func

It is recommended to enable Guance Integration - Extension - DataFlux Func (Automata): All prerequisites are automatically installed. Please continue with the script installation.

If you deploy Func on your own, refer to Self-deployed Func

Installation Script

Note: Please prepare an Amazon AK that meets the requirements in advance (for simplicity, you can directly grant global read-only permissions ReadOnlyAccess)

Managed Version Enablement Script

  1. Log in to the Guance console.
  2. Click on the 【Integration】 menu and select 【Cloud Account Management】.
  3. Click 【Add Cloud Account】, choose 【AWS】, and fill in the required information on the interface. If cloud account information has been configured before, skip this step.
  4. Click 【Test】. After a successful test, click 【Save】. If the test fails, check whether the related configuration information is correct and retest.
  5. In the 【Cloud Account Management】 list, you can see the added cloud accounts. Click on the corresponding cloud account to enter the details page.
  6. Click the 【Integration】 button on the cloud account details page. Under the Not Installed list, find AWS VPC Endpoint, click the 【Install】 button, and install it via the installation interface.

Manual Enablement Script

  1. Log in to the Func console, click 【Script Market】, enter the official script market, and search for guance_aws_vpc_endpoint.
  2. After clicking 【Install】, input the corresponding parameters: AWS AK ID, AK Secret, and account name.
  3. Click 【Deploy Startup Script】, and the system will automatically create a Startup script set and automatically configure the corresponding startup script.
  4. After enabling, you can see the corresponding automatic trigger configuration in 「Management / Automatic Trigger Configuration」. Click 【Execute】 to immediately execute once without waiting for the scheduled time. Wait a moment, then view the execution task records and corresponding logs.

We default collect some configurations, for details see the Metrics section.

Verification

  1. In 「Management / Automatic Trigger Configuration」, confirm whether the corresponding task has an automatic trigger configuration, and at the same time, you can view the corresponding task records and logs to check for any abnormalities.
  2. In Guance, 「Infrastructure / Custom」, check if asset information exists.
  3. In Guance, 「Metrics」, check if there are corresponding monitoring data.

Metrics

After configuring Amazon-CloudWatch, the default Measurement set is as follows. You can collect more Metrics through configuration:

Amazon CloudWatch AWS Simple Notification Service Metrics Details

Metric Name Description Unit Valid Statistics Dimensions
ActiveConnections The number of concurrent active connections. This includes connections in SYN_SENT and ESTABLISHED states Count Average, Maximum, Minimum EndpointType, ServiceName, VPCEndpointId, VPCId
EndpointType, ServiceName, SubnetId, VPCEndpointId, VPCId
BytesProcessed The number of bytes exchanged between the endpoint and the endpoint service, bidirectional aggregate. This is the number of bytes the endpoint owner needs to pay for Bytes Average, Sum, Maximum, Minimum EndpointType, ServiceName, VPCEndpointId, VPCId
EndpointType, ServiceName, SubnetId, VPCEndpointId, VPCId
NewConnections The number of new connections established through this endpoint Count Average, Sum, Maximum, Minimum EndpointType, ServiceName, VPCEndpointId, VPCId
EndpointType, ServiceName, SubnetId, VPCEndpointId, VPCId
PacketsDropped The number of packets dropped by this endpoint. This metric may not capture all packet drops. An increase in value may indicate that the endpoint or endpoint service is not functioning properly Count Average, Sum, Maximum EndpointType, ServiceName, VPCEndpointId, VPCId
EndpointType, ServiceName, SubnetId, VPCEndpointId, VPCId
RstPacketsReceived The number of RST packets received by this endpoint. An increase in value may indicate that the endpoint service is not functioning properly Count Average, Sum, Maximum EndpointType, ServiceName, VPCEndpointId, VPCId
EndpointType, ServiceName, SubnetId, VPCEndpointId, VPCId

Feedback

Is this page helpful? ×