Hi all!
My client wants to collect ec2, ebs, rds metrics using Metricbeat on private subnet ec2 instance with AWS module. So I searched for ways to do it.
Judging by document, there are common services to reach like IAM, STS, CloudWatch, EC2, Tagging right?
So I looked up for VPC Endpoints if there are services but IAM, Tagging wasn't there. I also tried using NAT Gateway and access through public internet but client won't be happy even though no one can access from public internet.
So here's the question: To use Metricbeat AWS module on private subnet ec2, is using public internet unavoidable?
Hello! Sorry for the late response. Right now in Metricbeat, AWS module collects monitoring metrics all from CloudWatch using AWS GetMetricData API. With your setup, do you know if you can make the Cloudwatch GetMetricData API call using AWS CLI on the private subnet EC2?
@tanwk2@Jignesh_Makwana I'm not sure this would help.
My client made Private Subnet EC2 to reach IAM endpoint somehow.
I asked him how and he told me if there's VPC that can reach IAM endpoint and Private EC2 is available to reach the VPC's EC2, it can reach it.
I'm not familiar with AWS and haven't tested it so I cannot guarantee.
I'll try to upload a result after the test.
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.