How to monitor AWS WAF logging centrally using Amazon Managed Grafana
AWS Cloud Operations Blog
This article explains how to monitor AWS WAF logs centrally using Amazon Managed Grafana. It provides a solution to centralize and visualize AWS WAF logs from multiple accounts and regions, enabling near real-time monitoring and analysis for security teams.
Specifically, the article covers:
- Architecture overview using services like AWS Firewall Manager, Amazon S3, Kinesis Data Firehose, AWS Glue, Amazon Athena, and Amazon Managed Grafana
- Prerequisites for setting up the solution
- Step-by-step walkthrough:
- Deploying resources using a CloudFormation template
- Configuring centralized logging for AWS WAF policy using Firewall Manager
- Creating a view in Amazon Athena for WAF logs
- Configuring Amazon Athena as a data source in Amazon Managed Grafana
- Importing and visualizing a pre-built AWS WAF Insights dashboard in Amazon Managed Grafana
- Cleanup steps to remove resources and avoid future charges
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Apr 1
2025
2025
Monitor AWS Transit Gateway Flow Logs centrally using Amazon Managed Grafana
Jul 10
2024
2024
Centralize observability with Amazon Managed Grafana Enterprise plugins
Feb 18
2025
2025
AWS WAF enhances Data Protection and logging experience
Oct 28
2024
2024
Scaling AWS multi-region and account logs delivery to Grafana Cloud
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.