1 Answer
- Newest
- Most votes
- Most comments
0
Based on the details provided, it sounds like you have the logging from your API Gateway/Lambda application configured correctly to send logs to CloudWatch Logs, but the subscription filter to forward those logs from CloudWatch to Kinesis is not working as expected. A few things you could check: [1]
- Verify the IAM role used by the subscription filter has the necessary permissions to read logs from the CloudWatch log group and write to the Kinesis stream. [2]
- Check that the subscription filter is configured to match the correct log group and log stream prefix for your Lambda function logs.
- Ensure no filters are applied in the subscription that may be excluding the log events.
- Check for any errors in CloudWatch Logs that may provide clues, such as insufficient IAM permissions or connection issues to Kinesis.
- Confirm the Kinesis stream has sufficient shard capacity to receive the additional log volume from CloudWatch.
- Try reducing the log level in Lambda temporarily to send fewer logs as a test.
I'd also suggest using the AWS CLI or SDK to put a test record in the CloudWatch log group and verify it reaches the Kinesis stream, to isolate the subscription filter as the potential issue. Let me know if any of those suggestions help or if you have additional logs/configuration details that could provide more context.
Sources:
answered 8 months ago
Relevant content
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 10 months ago
- AWS OFFICIALUpdated 6 months ago
- AWS OFFICIALUpdated 5 months ago