fixed cloudwatch logs

Author: chpy04

.ebextensions/02_cloudwatch_agent.config

@@ -0,0 +1,63 @@
+files:
+  "/opt/aws/amazon-cloudwatch-agent/etc/amazon-cloudwatch-agent.json":
+    mode: "000644"
+    owner: root
+    group: root
+    content: |
+      {
+        "agent": {
+          "metrics_collection_interval": 60,
+          "run_as_user": "root"
+        },
+        "metrics": {
+          "namespace": "CWAgent",
+          "metrics_collected": {
+            "mem": {
+              "measurement": [
+                {
+                  "name": "mem_used_percent",
+                  "rename": "MemoryUtilization",
+                  "unit": "Percent"
+                }
+              ],
+              "metrics_collection_interval": 60
+            },
+            "disk": {
+              "measurement": [
+                {
+                  "name": "used_percent",
+                  "rename": "DiskUtilization",
+                  "unit": "Percent"
+                }
+              ],
+              "metrics_collection_interval": 60,
+              "resources": [
+                "*"
+              ]
+            }
+          },
+          "append_dimensions": {
+            "AutoScalingGroupName": "${aws:AutoScalingGroupName}",
+            "InstanceId": "${aws:InstanceId}"
+          }
+        }
+      }
+
+commands:
+  01_install_cloudwatch_agent:
+    command: |
+      if ! command -v amazon-cloudwatch-agent-ctl &> /dev/null; then
+        wget -q https://s3.amazonaws.com/amazoncloudwatch-agent/amazon_linux/amd64/latest/amazon-cloudwatch-agent.rpm
+        rpm -U ./amazon-cloudwatch-agent.rpm
+        rm -f ./amazon-cloudwatch-agent.rpm
+      fi
+    test: "[ ! -f /opt/aws/amazon-cloudwatch-agent/bin/amazon-cloudwatch-agent-ctl ]"
+
+  02_stop_cloudwatch_agent:
+    command: |
+      /opt/aws/amazon-cloudwatch-agent/bin/amazon-cloudwatch-agent-ctl \
+        -a fetch-config \
+        -m ec2 \
+        -c file:/opt/aws/amazon-cloudwatch-agent/etc/amazon-cloudwatch-agent.json \
+        -s
+    ignoreErrors: true

infrastructure/environments/production/main.tf

@@ -137,8 +137,8 @@ module "rds" {
 
   # Monitoring
   performance_insights_enabled = true
-  # Note: Alarms will be created by monitoring module
-  # alarm_actions = []  # Empty for now to avoid circular dependency
+  # Pass SNS topic for alarm notifications
+  alarm_actions = [aws_sns_topic.alerts.arn]
 }
 
 # Note: ACM Certificates are now created in the DNS module
@@ -240,6 +240,19 @@ module "frontend" {
   }
 }
 
+#############
+# SNS Topic for Alerts (created first to avoid circular dependency)
+#############
+resource "aws_sns_topic" "alerts" {
+  name = "${local.project_name}-${local.environment}-alerts"
+
+  tags = {
+    Name        = "${local.project_name}-${local.environment}-alerts"
+    Environment = local.environment
+    Project     = local.project_name
+  }
+}
+
 #############
 # Monitoring Module
 #############
@@ -253,4 +266,5 @@ module "monitoring" {
   eb_autoscaling_group_name  = module.elasticbeanstalk.autoscaling_groups[0]
   rds_instance_id            = module.rds.db_instance_id
   log_retention_days         = 30
+  sns_topic_arn              = aws_sns_topic.alerts.arn
 }

infrastructure/environments/production/outputs.tf

@@ -117,7 +117,7 @@ output "cloudwatch_dashboard_name" {
 
 output "sns_topic_arn" {
   description = "SNS topic ARN for alerts"
-  value       = module.monitoring.sns_topic_arn
+  value       = aws_sns_topic.alerts.arn
 }
 
 #####################

infrastructure/modules/monitoring/main.tf

@@ -1,25 +1,5 @@
 # Monitoring Module - CloudWatch Dashboards and Alarms
 
-#############
-# SNS Topic for Alerts
-#############
-resource "aws_sns_topic" "alerts" {
-  name = "${var.project_name}-${var.environment}-alerts"
-
-  tags = {
-    Name        = "${var.project_name}-${var.environment}-alerts"
-    Environment = var.environment
-    Project     = var.project_name
-  }
-}
-
-# TODO: Add email subscriptions
-# resource "aws_sns_topic_subscription" "alerts_email" {
-#   topic_arn = aws_sns_topic.alerts.arn
-#   protocol  = "email"
-#   endpoint  = "your-email@example.com"
-# }
-
 #############
 # CloudWatch Dashboard
 #############
@@ -28,64 +8,123 @@ resource "aws_cloudwatch_dashboard" "main" {
 
   dashboard_body = jsonencode({
     widgets = [
-      # EB CPU Utilization
+      # EC2 CPU Utilization
       {
         type = "metric"
         properties = {
           metrics = [
-            ["AWS/ElasticBeanstalk", "EnvironmentHealth", { stat = "Average" }]
+            ["AWS/EC2", "CPUUtilization", "AutoScalingGroupName", var.eb_autoscaling_group_name, { stat = "Average" }]
           ]
           period = 300
           stat   = "Average"
           region = var.aws_region
-          title  = "Environment Health"
+          title  = "EC2 CPU Utilization (%)"
+          yAxis = {
+            left = {
+              min = 0
+              max = 100
+            }
+          }
         }
       },
-      # EB Memory Utilization
+      # EC2 Memory Utilization
       {
         type = "metric"
         properties = {
           metrics = [
-            ["CWAgent", "mem_used_percent", "AutoScalingGroupName", var.eb_autoscaling_group_name]
+            ["CWAgent", "mem_used_percent", "AutoScalingGroupName", var.eb_autoscaling_group_name, { stat = "Average" }]
           ]
           period = 300
           stat   = "Average"
           region = var.aws_region
-          title  = "Memory Utilization (%)"
+          title  = "EC2 Memory Utilization (%)"
+          yAxis = {
+            left = {
+              min = 0
+              max = 100
+            }
+          }
         }
       },
       # EB Request Count
       {
         type = "metric"
         properties = {
           metrics = [
-            ["AWS/ElasticBeanstalk", "RequestCount", { stat = "Sum" }]
+            ["AWS/ElasticBeanstalk", "RequestCount", "EnvironmentName", var.eb_environment_name, { stat = "Sum" }]
           ]
           period = 300
           stat   = "Sum"
           region = var.aws_region
           title  = "Request Count"
         }
       },
-      # RDS CPU
+      # HTTP 5xx Errors
       {
         type = "metric"
         properties = {
           metrics = [
-            ["AWS/RDS", "CPUUtilization", "DBInstanceIdentifier", var.rds_instance_id]
+            ["AWS/ElasticBeanstalk", "ApplicationRequests5xx", "EnvironmentName", var.eb_environment_name, { stat = "Sum" }]
+          ]
+          period = 300
+          stat   = "Sum"
+          region = var.aws_region
+          title  = "HTTP 5xx Errors"
+        }
+      },
+      # RDS CPU Utilization
+      {
+        type = "metric"
+        properties = {
+          metrics = [
+            ["AWS/RDS", "CPUUtilization", "DBInstanceIdentifier", var.rds_instance_id, { stat = "Average" }]
           ]
           period = 300
           stat   = "Average"
           region = var.aws_region
-          title  = "RDS CPU Utilization"
+          title  = "RDS CPU Utilization (%)"
+          yAxis = {
+            left = {
+              min = 0
+              max = 100
+            }
+          }
         }
       },
-      # RDS Connections
+      # RDS Read/Write IOPS
       {
         type = "metric"
         properties = {
           metrics = [
-            ["AWS/RDS", "DatabaseConnections", "DBInstanceIdentifier", var.rds_instance_id]
+            ["AWS/RDS", "ReadIOPS", "DBInstanceIdentifier", var.rds_instance_id, { stat = "Average", label = "Read IOPS" }],
+            [".", "WriteIOPS", ".", ".", { stat = "Average", label = "Write IOPS" }]
+          ]
+          period = 300
+          stat   = "Average"
+          region = var.aws_region
+          title  = "RDS Read/Write IOPS"
+        }
+      },
+      # RDS Network Throughput
+      {
+        type = "metric"
+        properties = {
+          metrics = [
+            ["AWS/RDS", "NetworkReceiveThroughput", "DBInstanceIdentifier", var.rds_instance_id, { stat = "Average", label = "Network In" }],
+            [".", "NetworkTransmitThroughput", ".", ".", { stat = "Average", label = "Network Out" }]
+          ]
+          period = 300
+          stat   = "Average"
+          region = var.aws_region
+          title  = "RDS Network Throughput (Bytes/sec)"
+        }
+      },
+      # RDS Database Connections
+      {
+        type = "metric"
+        properties = {
+          metrics = [
+            ["AWS/RDS", "DatabaseConnections", "DBInstanceIdentifier", var.rds_instance_id, { stat = "Average" }]
           ]
           period = 300
           stat   = "Average"
@@ -98,12 +137,12 @@ resource "aws_cloudwatch_dashboard" "main" {
         type = "metric"
         properties = {
           metrics = [
-            ["AWS/RDS", "FreeableMemory", "DBInstanceIdentifier", var.rds_instance_id]
+            ["AWS/RDS", "FreeableMemory", "DBInstanceIdentifier", var.rds_instance_id, { stat = "Average" }]
           ]
           period = 300
           stat   = "Average"
           region = var.aws_region
-          title  = "RDS Freeable Memory"
+          title  = "RDS Freeable Memory (Bytes)"
         }
       }
     ]
@@ -125,7 +164,7 @@ resource "aws_cloudwatch_metric_alarm" "eb_cpu_high" {
   statistic           = "Average"
   threshold           = 80
   alarm_description   = "This metric monitors EC2 CPU utilization"
-  alarm_actions       = [aws_sns_topic.alerts.arn]
+  alarm_actions       = [var.sns_topic_arn]
 
   dimensions = {
     AutoScalingGroupName = var.eb_autoscaling_group_name
@@ -137,15 +176,7 @@ resource "aws_cloudwatch_metric_alarm" "eb_cpu_high" {
   }
 }
 
-# NOTE: Memory alarms below require CloudWatch Agent to be installed on EB instances.
-# To enable memory monitoring:
-# 1. Create .ebextensions/cloudwatch-agent.config in your app
-# 2. Follow AWS docs: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/Install-CloudWatch-Agent.html
-# 3. Uncomment the alarms below
-
-# High Memory Alarm (requires CloudWatch Agent) - COMMENTED OUT
-# Uncomment after installing CloudWatch Agent
-/*
+# High Memory Alarm
 resource "aws_cloudwatch_metric_alarm" "eb_memory_high" {
   alarm_name          = "${var.project_name}-${var.environment}-eb-memory-high"
   comparison_operator = "GreaterThanThreshold"
@@ -156,7 +187,7 @@ resource "aws_cloudwatch_metric_alarm" "eb_memory_high" {
   statistic           = "Average"
   threshold           = 80
   alarm_description   = "This metric monitors EC2 memory utilization"
-  alarm_actions       = [aws_sns_topic.alerts.arn]
+  alarm_actions       = [var.sns_topic_arn]
 
   dimensions = {
     AutoScalingGroupName = var.eb_autoscaling_group_name
@@ -167,11 +198,8 @@ resource "aws_cloudwatch_metric_alarm" "eb_memory_high" {
     Project     = var.project_name
   }
 }
-*/
 
-# Critical Memory Alarm (requires CloudWatch Agent) - COMMENTED OUT
-# Uncomment after installing CloudWatch Agent
-/*
+# Critical Memory Alarm
 resource "aws_cloudwatch_metric_alarm" "eb_memory_critical" {
   alarm_name          = "${var.project_name}-${var.environment}-eb-memory-critical"
   comparison_operator = "GreaterThanThreshold"
@@ -182,7 +210,7 @@ resource "aws_cloudwatch_metric_alarm" "eb_memory_critical" {
   statistic           = "Average"
   threshold           = 90
   alarm_description   = "This metric monitors EC2 memory utilization - CRITICAL"
-  alarm_actions       = [aws_sns_topic.alerts.arn]
+  alarm_actions       = [var.sns_topic_arn]
 
   dimensions = {
     AutoScalingGroupName = var.eb_autoscaling_group_name
@@ -193,20 +221,20 @@ resource "aws_cloudwatch_metric_alarm" "eb_memory_critical" {
     Project     = var.project_name
   }
 }
-*/
-
-# Environment Health Alarm
-resource "aws_cloudwatch_metric_alarm" "eb_environment_health" {
-  alarm_name          = "${var.project_name}-${var.environment}-eb-health-degraded"
-  comparison_operator = "LessThanThreshold"
-  evaluation_periods  = 1
-  metric_name         = "EnvironmentHealth"
+
+# HTTP 5xx Error Rate Alarm
+# This monitors server errors which indicate application health issues
+resource "aws_cloudwatch_metric_alarm" "eb_http_5xx_errors" {
+  alarm_name          = "${var.project_name}-${var.environment}-eb-http-5xx-high"
+  comparison_operator = "GreaterThanThreshold"
+  evaluation_periods  = 2
+  metric_name         = "ApplicationRequests5xx"
   namespace           = "AWS/ElasticBeanstalk"
   period              = 300
-  statistic           = "Average"
-  threshold           = 15  # Healthy = 25, Warning = 15, Degraded = 10
-  alarm_description   = "Environment health is degraded"
-  alarm_actions       = [aws_sns_topic.alerts.arn]
+  statistic           = "Sum"
+  threshold           = 10  # Alert if more than 10 5xx errors in 5 minutes
+  alarm_description   = "High rate of HTTP 5xx errors indicates application issues"
+  alarm_actions       = [var.sns_topic_arn]
 
   dimensions = {
     EnvironmentName = var.eb_environment_name

infrastructure/modules/monitoring/outputs.tf

@@ -1,10 +1,5 @@
 # Monitoring Module Outputs
 
-output "sns_topic_arn" {
-  description = "ARN of the SNS topic for alerts"
-  value       = aws_sns_topic.alerts.arn
-}
-
 output "dashboard_name" {
   description = "Name of the CloudWatch dashboard"
   value       = aws_cloudwatch_dashboard.main.dashboard_name

infrastructure/modules/monitoring/variables.tf

@@ -35,3 +35,8 @@ variable "log_retention_days" {
   type        = number
   default     = 7
 }
+
+variable "sns_topic_arn" {
+  description = "ARN of the SNS topic for alarm notifications"
+  type        = string
+}