Viewing docs for AWS v7.33.0
published on Monday, Jun 15, 2026 by Pulumi
published on Monday, Jun 15, 2026 by Pulumi
Viewing docs for AWS v7.33.0
published on Monday, Jun 15, 2026 by Pulumi
published on Monday, Jun 15, 2026 by Pulumi
Manages an AWS CloudWatch Observability Admin Telemetry Rule.
A telemetry rule defines how telemetry data (logs, metrics, or traces) should be collected for AWS resources within an AWS account. The rule can target one or more Regions and optionally configure a destination (such as CloudWatch Logs or S3) along with source-specific parameters for VPC flow logs, WAF logs, CloudTrail events, ELB access logs, and more.
NOTE: Before using this resource, telemetry evaluation must be enabled for your AWS account. Use the
aws.observabilityadmin.TelemetryEvaluationresource to enable it.
Example Usage
Basic Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.observabilityadmin.TelemetryEvaluation("example", {});
const exampleTelemetryRule = new aws.observabilityadmin.TelemetryRule("example", {
ruleName: "example-telemetry-rule",
rule: {
telemetryType: "Logs",
resourceType: "AWS::EC2::VPC",
},
}, {
dependsOn: [example],
});
import pulumi
import pulumi_aws as aws
example = aws.observabilityadmin.TelemetryEvaluation("example")
example_telemetry_rule = aws.observabilityadmin.TelemetryRule("example",
rule_name="example-telemetry-rule",
rule={
"telemetry_type": "Logs",
"resource_type": "AWS::EC2::VPC",
},
opts = pulumi.ResourceOptions(depends_on=[example]))
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v7/go/aws/observabilityadmin"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := observabilityadmin.NewTelemetryEvaluation(ctx, "example", nil)
if err != nil {
return err
}
_, err = observabilityadmin.NewTelemetryRule(ctx, "example", &observabilityadmin.TelemetryRuleArgs{
RuleName: pulumi.String("example-telemetry-rule"),
Rule: &observabilityadmin.TelemetryRuleRuleArgs{
TelemetryType: pulumi.String("Logs"),
ResourceType: pulumi.String("AWS::EC2::VPC"),
},
}, pulumi.DependsOn([]pulumi.Resource{
example,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Observabilityadmin.TelemetryEvaluation("example");
var exampleTelemetryRule = new Aws.Observabilityadmin.TelemetryRule("example", new()
{
RuleName = "example-telemetry-rule",
Rule = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleArgs
{
TelemetryType = "Logs",
ResourceType = "AWS::EC2::VPC",
},
}, new CustomResourceOptions
{
DependsOn =
{
example,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.observabilityadmin.TelemetryEvaluation;
import com.pulumi.aws.observabilityadmin.TelemetryRule;
import com.pulumi.aws.observabilityadmin.TelemetryRuleArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new TelemetryEvaluation("example");
var exampleTelemetryRule = new TelemetryRule("exampleTelemetryRule", TelemetryRuleArgs.builder()
.ruleName("example-telemetry-rule")
.rule(TelemetryRuleRuleArgs.builder()
.telemetryType("Logs")
.resourceType("AWS::EC2::VPC")
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(example)
.build());
}
}
resources:
example:
type: aws:observabilityadmin:TelemetryEvaluation
exampleTelemetryRule:
type: aws:observabilityadmin:TelemetryRule
name: example
properties:
ruleName: example-telemetry-rule
rule:
telemetryType: Logs
resourceType: AWS::EC2::VPC
options:
dependsOn:
- ${example}
pulumi {
required_providers {
aws = {
source = "pulumi/aws"
}
}
}
resource "aws_observabilityadmin_telemetryevaluation" "example" {
}
resource "aws_observabilityadmin_telemetryrule" "example" {
depends_on = [aws_observabilityadmin_telemetryevaluation.example]
rule_name = "example-telemetry-rule"
rule = {
telemetry_type = "Logs"
resource_type = "AWS::EC2::VPC"
}
}
VPC Flow Logs to CloudWatch Logs
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.observabilityadmin.TelemetryEvaluation("example", {});
const exampleTelemetryRule = new aws.observabilityadmin.TelemetryRule("example", {
ruleName: "vpc-flow-logs-rule",
rule: {
telemetryType: "Logs",
resourceType: "AWS::EC2::VPC",
telemetrySourceTypes: ["VPC_FLOW_LOGS"],
allRegions: true,
allowFieldUpdates: true,
destinationConfiguration: {
destinationType: "cloud-watch-logs",
destinationPattern: "/aws/vpcflowlogs/<resourceId>",
retentionInDays: 30,
vpcFlowLogParameters: {
trafficType: "ALL",
maxAggregationInterval: 60,
},
},
},
}, {
dependsOn: [example],
});
import pulumi
import pulumi_aws as aws
example = aws.observabilityadmin.TelemetryEvaluation("example")
example_telemetry_rule = aws.observabilityadmin.TelemetryRule("example",
rule_name="vpc-flow-logs-rule",
rule={
"telemetry_type": "Logs",
"resource_type": "AWS::EC2::VPC",
"telemetry_source_types": ["VPC_FLOW_LOGS"],
"all_regions": True,
"allow_field_updates": True,
"destination_configuration": {
"destination_type": "cloud-watch-logs",
"destination_pattern": "/aws/vpcflowlogs/<resourceId>",
"retention_in_days": 30,
"vpc_flow_log_parameters": {
"traffic_type": "ALL",
"max_aggregation_interval": 60,
},
},
},
opts = pulumi.ResourceOptions(depends_on=[example]))
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v7/go/aws/observabilityadmin"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := observabilityadmin.NewTelemetryEvaluation(ctx, "example", nil)
if err != nil {
return err
}
_, err = observabilityadmin.NewTelemetryRule(ctx, "example", &observabilityadmin.TelemetryRuleArgs{
RuleName: pulumi.String("vpc-flow-logs-rule"),
Rule: &observabilityadmin.TelemetryRuleRuleArgs{
TelemetryType: pulumi.String("Logs"),
ResourceType: pulumi.String("AWS::EC2::VPC"),
TelemetrySourceTypes: pulumi.StringArray{
pulumi.String("VPC_FLOW_LOGS"),
},
AllRegions: pulumi.Bool(true),
AllowFieldUpdates: pulumi.Bool(true),
DestinationConfiguration: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationArgs{
DestinationType: pulumi.String("cloud-watch-logs"),
DestinationPattern: pulumi.String("/aws/vpcflowlogs/<resourceId>"),
RetentionInDays: pulumi.Int(30),
VpcFlowLogParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs{
TrafficType: pulumi.String("ALL"),
MaxAggregationInterval: pulumi.Int(60),
},
},
},
}, pulumi.DependsOn([]pulumi.Resource{
example,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Observabilityadmin.TelemetryEvaluation("example");
var exampleTelemetryRule = new Aws.Observabilityadmin.TelemetryRule("example", new()
{
RuleName = "vpc-flow-logs-rule",
Rule = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleArgs
{
TelemetryType = "Logs",
ResourceType = "AWS::EC2::VPC",
TelemetrySourceTypes = new[]
{
"VPC_FLOW_LOGS",
},
AllRegions = true,
AllowFieldUpdates = true,
DestinationConfiguration = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationArgs
{
DestinationType = "cloud-watch-logs",
DestinationPattern = "/aws/vpcflowlogs/<resourceId>",
RetentionInDays = 30,
VpcFlowLogParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs
{
TrafficType = "ALL",
MaxAggregationInterval = 60,
},
},
},
}, new CustomResourceOptions
{
DependsOn =
{
example,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.observabilityadmin.TelemetryEvaluation;
import com.pulumi.aws.observabilityadmin.TelemetryRule;
import com.pulumi.aws.observabilityadmin.TelemetryRuleArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new TelemetryEvaluation("example");
var exampleTelemetryRule = new TelemetryRule("exampleTelemetryRule", TelemetryRuleArgs.builder()
.ruleName("vpc-flow-logs-rule")
.rule(TelemetryRuleRuleArgs.builder()
.telemetryType("Logs")
.resourceType("AWS::EC2::VPC")
.telemetrySourceTypes("VPC_FLOW_LOGS")
.allRegions(true)
.allowFieldUpdates(true)
.destinationConfiguration(TelemetryRuleRuleDestinationConfigurationArgs.builder()
.destinationType("cloud-watch-logs")
.destinationPattern("/aws/vpcflowlogs/<resourceId>")
.retentionInDays(30)
.vpcFlowLogParameters(TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs.builder()
.trafficType("ALL")
.maxAggregationInterval(60)
.build())
.build())
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(example)
.build());
}
}
resources:
example:
type: aws:observabilityadmin:TelemetryEvaluation
exampleTelemetryRule:
type: aws:observabilityadmin:TelemetryRule
name: example
properties:
ruleName: vpc-flow-logs-rule
rule:
telemetryType: Logs
resourceType: AWS::EC2::VPC
telemetrySourceTypes:
- VPC_FLOW_LOGS
allRegions: true
allowFieldUpdates: true
destinationConfiguration:
destinationType: cloud-watch-logs
destinationPattern: /aws/vpcflowlogs/<resourceId>
retentionInDays: 30
vpcFlowLogParameters:
trafficType: ALL
maxAggregationInterval: 60
options:
dependsOn:
- ${example}
pulumi {
required_providers {
aws = {
source = "pulumi/aws"
}
}
}
resource "aws_observabilityadmin_telemetryevaluation" "example" {
}
resource "aws_observabilityadmin_telemetryrule" "example" {
depends_on = [aws_observabilityadmin_telemetryevaluation.example]
rule_name = "vpc-flow-logs-rule"
rule = {
telemetry_type = "Logs"
resource_type = "AWS::EC2::VPC"
telemetry_source_types = ["VPC_FLOW_LOGS"]
all_regions = true
allow_field_updates = true
destination_configuration = {
destination_type = "cloud-watch-logs"
destination_pattern = "/aws/vpcflowlogs/<resourceId>"
retention_in_days = 30
vpc_flow_log_parameters = {
traffic_type = "ALL"
max_aggregation_interval = 60
}
}
}
}
Replicated Across Specific Regions
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.observabilityadmin.TelemetryEvaluation("example", {});
const exampleTelemetryRule = new aws.observabilityadmin.TelemetryRule("example", {
ruleName: "multi-region-rule",
rule: {
telemetryType: "Logs",
resourceType: "AWS::EKS::Cluster",
regions: [
"us-east-1",
"us-west-2",
"eu-west-1",
],
},
}, {
dependsOn: [example],
});
import pulumi
import pulumi_aws as aws
example = aws.observabilityadmin.TelemetryEvaluation("example")
example_telemetry_rule = aws.observabilityadmin.TelemetryRule("example",
rule_name="multi-region-rule",
rule={
"telemetry_type": "Logs",
"resource_type": "AWS::EKS::Cluster",
"regions": [
"us-east-1",
"us-west-2",
"eu-west-1",
],
},
opts = pulumi.ResourceOptions(depends_on=[example]))
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v7/go/aws/observabilityadmin"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := observabilityadmin.NewTelemetryEvaluation(ctx, "example", nil)
if err != nil {
return err
}
_, err = observabilityadmin.NewTelemetryRule(ctx, "example", &observabilityadmin.TelemetryRuleArgs{
RuleName: pulumi.String("multi-region-rule"),
Rule: &observabilityadmin.TelemetryRuleRuleArgs{
TelemetryType: pulumi.String("Logs"),
ResourceType: pulumi.String("AWS::EKS::Cluster"),
Regions: pulumi.StringArray{
pulumi.String("us-east-1"),
pulumi.String("us-west-2"),
pulumi.String("eu-west-1"),
},
},
}, pulumi.DependsOn([]pulumi.Resource{
example,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Observabilityadmin.TelemetryEvaluation("example");
var exampleTelemetryRule = new Aws.Observabilityadmin.TelemetryRule("example", new()
{
RuleName = "multi-region-rule",
Rule = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleArgs
{
TelemetryType = "Logs",
ResourceType = "AWS::EKS::Cluster",
Regions = new[]
{
"us-east-1",
"us-west-2",
"eu-west-1",
},
},
}, new CustomResourceOptions
{
DependsOn =
{
example,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.observabilityadmin.TelemetryEvaluation;
import com.pulumi.aws.observabilityadmin.TelemetryRule;
import com.pulumi.aws.observabilityadmin.TelemetryRuleArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new TelemetryEvaluation("example");
var exampleTelemetryRule = new TelemetryRule("exampleTelemetryRule", TelemetryRuleArgs.builder()
.ruleName("multi-region-rule")
.rule(TelemetryRuleRuleArgs.builder()
.telemetryType("Logs")
.resourceType("AWS::EKS::Cluster")
.regions(
"us-east-1",
"us-west-2",
"eu-west-1")
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(example)
.build());
}
}
resources:
example:
type: aws:observabilityadmin:TelemetryEvaluation
exampleTelemetryRule:
type: aws:observabilityadmin:TelemetryRule
name: example
properties:
ruleName: multi-region-rule
rule:
telemetryType: Logs
resourceType: AWS::EKS::Cluster
regions:
- us-east-1
- us-west-2
- eu-west-1
options:
dependsOn:
- ${example}
pulumi {
required_providers {
aws = {
source = "pulumi/aws"
}
}
}
resource "aws_observabilityadmin_telemetryevaluation" "example" {
}
resource "aws_observabilityadmin_telemetryrule" "example" {
depends_on = [aws_observabilityadmin_telemetryevaluation.example]
rule_name = "multi-region-rule"
rule = {
telemetry_type = "Logs"
resource_type = "AWS::EKS::Cluster"
regions = ["us-east-1", "us-west-2", "eu-west-1"]
}
}
WAF Logging with Filters and Redacted Fields
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.observabilityadmin.TelemetryEvaluation("example", {});
const exampleTelemetryRule = new aws.observabilityadmin.TelemetryRule("example", {
ruleName: "waf-logs-rule",
rule: {
telemetryType: "Logs",
resourceType: "AWS::WAFv2::WebACL",
destinationConfiguration: {
destinationType: "cloud-watch-logs",
destinationPattern: "aws-waf-logs-<resourceId>",
retentionInDays: 30,
wafLoggingParameters: {
logType: "WAF_LOGS",
loggingFilter: {
defaultBehavior: "KEEP",
filters: [{
behavior: "DROP",
requirement: "MEETS_ANY",
conditions: [{
actionCondition: {
action: "ALLOW",
},
}],
}],
},
redactedFields: [{
queryString: "",
singleHeader: {
name: "authorization",
},
}],
},
},
},
}, {
dependsOn: [example],
});
import pulumi
import pulumi_aws as aws
example = aws.observabilityadmin.TelemetryEvaluation("example")
example_telemetry_rule = aws.observabilityadmin.TelemetryRule("example",
rule_name="waf-logs-rule",
rule={
"telemetry_type": "Logs",
"resource_type": "AWS::WAFv2::WebACL",
"destination_configuration": {
"destination_type": "cloud-watch-logs",
"destination_pattern": "aws-waf-logs-<resourceId>",
"retention_in_days": 30,
"waf_logging_parameters": {
"log_type": "WAF_LOGS",
"logging_filter": {
"default_behavior": "KEEP",
"filters": [{
"behavior": "DROP",
"requirement": "MEETS_ANY",
"conditions": [{
"action_condition": {
"action": "ALLOW",
},
}],
}],
},
"redacted_fields": [{
"query_string": "",
"single_header": {
"name": "authorization",
},
}],
},
},
},
opts = pulumi.ResourceOptions(depends_on=[example]))
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v7/go/aws/observabilityadmin"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := observabilityadmin.NewTelemetryEvaluation(ctx, "example", nil)
if err != nil {
return err
}
_, err = observabilityadmin.NewTelemetryRule(ctx, "example", &observabilityadmin.TelemetryRuleArgs{
RuleName: pulumi.String("waf-logs-rule"),
Rule: &observabilityadmin.TelemetryRuleRuleArgs{
TelemetryType: pulumi.String("Logs"),
ResourceType: pulumi.String("AWS::WAFv2::WebACL"),
DestinationConfiguration: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationArgs{
DestinationType: pulumi.String("cloud-watch-logs"),
DestinationPattern: pulumi.String("aws-waf-logs-<resourceId>"),
RetentionInDays: pulumi.Int(30),
WafLoggingParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs{
LogType: pulumi.String("WAF_LOGS"),
LoggingFilter: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs{
DefaultBehavior: pulumi.String("KEEP"),
Filters: observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs{
Behavior: pulumi.String("DROP"),
Requirement: pulumi.String("MEETS_ANY"),
Conditions: observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs{
ActionCondition: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs{
Action: pulumi.String("ALLOW"),
},
},
},
},
},
},
RedactedFields: observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs{
QueryString: pulumi.String(""),
SingleHeader: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs{
Name: pulumi.String("authorization"),
},
},
},
},
},
},
}, pulumi.DependsOn([]pulumi.Resource{
example,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Observabilityadmin.TelemetryEvaluation("example");
var exampleTelemetryRule = new Aws.Observabilityadmin.TelemetryRule("example", new()
{
RuleName = "waf-logs-rule",
Rule = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleArgs
{
TelemetryType = "Logs",
ResourceType = "AWS::WAFv2::WebACL",
DestinationConfiguration = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationArgs
{
DestinationType = "cloud-watch-logs",
DestinationPattern = "aws-waf-logs-<resourceId>",
RetentionInDays = 30,
WafLoggingParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs
{
LogType = "WAF_LOGS",
LoggingFilter = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs
{
DefaultBehavior = "KEEP",
Filters = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs
{
Behavior = "DROP",
Requirement = "MEETS_ANY",
Conditions = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs
{
ActionCondition = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs
{
Action = "ALLOW",
},
},
},
},
},
},
RedactedFields = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs
{
QueryString = "",
SingleHeader = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs
{
Name = "authorization",
},
},
},
},
},
},
}, new CustomResourceOptions
{
DependsOn =
{
example,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.observabilityadmin.TelemetryEvaluation;
import com.pulumi.aws.observabilityadmin.TelemetryRule;
import com.pulumi.aws.observabilityadmin.TelemetryRuleArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new TelemetryEvaluation("example");
var exampleTelemetryRule = new TelemetryRule("exampleTelemetryRule", TelemetryRuleArgs.builder()
.ruleName("waf-logs-rule")
.rule(TelemetryRuleRuleArgs.builder()
.telemetryType("Logs")
.resourceType("AWS::WAFv2::WebACL")
.destinationConfiguration(TelemetryRuleRuleDestinationConfigurationArgs.builder()
.destinationType("cloud-watch-logs")
.destinationPattern("aws-waf-logs-<resourceId>")
.retentionInDays(30)
.wafLoggingParameters(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs.builder()
.logType("WAF_LOGS")
.loggingFilter(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs.builder()
.defaultBehavior("KEEP")
.filters(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs.builder()
.behavior("DROP")
.requirement("MEETS_ANY")
.conditions(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs.builder()
.actionCondition(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs.builder()
.action("ALLOW")
.build())
.build())
.build())
.build())
.redactedFields(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs.builder()
.queryString("")
.singleHeader(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs.builder()
.name("authorization")
.build())
.build())
.build())
.build())
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(example)
.build());
}
}
resources:
example:
type: aws:observabilityadmin:TelemetryEvaluation
exampleTelemetryRule:
type: aws:observabilityadmin:TelemetryRule
name: example
properties:
ruleName: waf-logs-rule
rule:
telemetryType: Logs
resourceType: AWS::WAFv2::WebACL
destinationConfiguration:
destinationType: cloud-watch-logs
destinationPattern: aws-waf-logs-<resourceId>
retentionInDays: 30
wafLoggingParameters:
logType: WAF_LOGS
loggingFilter:
defaultBehavior: KEEP
filters:
- behavior: DROP
requirement: MEETS_ANY
conditions:
- actionCondition:
action: ALLOW
redactedFields:
- queryString: ""
singleHeader:
name: authorization
options:
dependsOn:
- ${example}
pulumi {
required_providers {
aws = {
source = "pulumi/aws"
}
}
}
resource "aws_observabilityadmin_telemetryevaluation" "example" {
}
resource "aws_observabilityadmin_telemetryrule" "example" {
depends_on = [aws_observabilityadmin_telemetryevaluation.example]
rule_name = "waf-logs-rule"
rule = {
telemetry_type = "Logs"
resource_type = "AWS::WAFv2::WebACL"
destination_configuration = {
destination_type = "cloud-watch-logs"
destination_pattern = "aws-waf-logs-<resourceId>"
retention_in_days = 30
waf_logging_parameters = {
log_type = "WAF_LOGS"
logging_filter = {
default_behavior = "KEEP"
filters = [{
"behavior" = "DROP"
"requirement" = "MEETS_ANY"
"conditions" = [{
"actionCondition" = {
"action" = "ALLOW"
}
}]
}]
}
redacted_fields = [{
"queryString" = ""
"singleHeader" = {
"name" = "authorization"
}
}]
}
}
}
}
With Tags
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const example = new aws.observabilityadmin.TelemetryEvaluation("example", {});
const exampleTelemetryRule = new aws.observabilityadmin.TelemetryRule("example", {
ruleName: "tagged-rule",
rule: {
telemetryType: "Logs",
resourceType: "AWS::EC2::VPC",
},
tags: {
Environment: "production",
Purpose: "monitoring",
},
}, {
dependsOn: [example],
});
import pulumi
import pulumi_aws as aws
example = aws.observabilityadmin.TelemetryEvaluation("example")
example_telemetry_rule = aws.observabilityadmin.TelemetryRule("example",
rule_name="tagged-rule",
rule={
"telemetry_type": "Logs",
"resource_type": "AWS::EC2::VPC",
},
tags={
"Environment": "production",
"Purpose": "monitoring",
},
opts = pulumi.ResourceOptions(depends_on=[example]))
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v7/go/aws/observabilityadmin"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := observabilityadmin.NewTelemetryEvaluation(ctx, "example", nil)
if err != nil {
return err
}
_, err = observabilityadmin.NewTelemetryRule(ctx, "example", &observabilityadmin.TelemetryRuleArgs{
RuleName: pulumi.String("tagged-rule"),
Rule: &observabilityadmin.TelemetryRuleRuleArgs{
TelemetryType: pulumi.String("Logs"),
ResourceType: pulumi.String("AWS::EC2::VPC"),
},
Tags: pulumi.StringMap{
"Environment": pulumi.String("production"),
"Purpose": pulumi.String("monitoring"),
},
}, pulumi.DependsOn([]pulumi.Resource{
example,
}))
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var example = new Aws.Observabilityadmin.TelemetryEvaluation("example");
var exampleTelemetryRule = new Aws.Observabilityadmin.TelemetryRule("example", new()
{
RuleName = "tagged-rule",
Rule = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleArgs
{
TelemetryType = "Logs",
ResourceType = "AWS::EC2::VPC",
},
Tags =
{
{ "Environment", "production" },
{ "Purpose", "monitoring" },
},
}, new CustomResourceOptions
{
DependsOn =
{
example,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.observabilityadmin.TelemetryEvaluation;
import com.pulumi.aws.observabilityadmin.TelemetryRule;
import com.pulumi.aws.observabilityadmin.TelemetryRuleArgs;
import com.pulumi.aws.observabilityadmin.inputs.TelemetryRuleRuleArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.ArrayList;
import java.util.Arrays;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new TelemetryEvaluation("example");
var exampleTelemetryRule = new TelemetryRule("exampleTelemetryRule", TelemetryRuleArgs.builder()
.ruleName("tagged-rule")
.rule(TelemetryRuleRuleArgs.builder()
.telemetryType("Logs")
.resourceType("AWS::EC2::VPC")
.build())
.tags(Map.ofEntries(
Map.entry("Environment", "production"),
Map.entry("Purpose", "monitoring")
))
.build(), CustomResourceOptions.builder()
.dependsOn(example)
.build());
}
}
resources:
example:
type: aws:observabilityadmin:TelemetryEvaluation
exampleTelemetryRule:
type: aws:observabilityadmin:TelemetryRule
name: example
properties:
ruleName: tagged-rule
rule:
telemetryType: Logs
resourceType: AWS::EC2::VPC
tags:
Environment: production
Purpose: monitoring
options:
dependsOn:
- ${example}
pulumi {
required_providers {
aws = {
source = "pulumi/aws"
}
}
}
resource "aws_observabilityadmin_telemetryevaluation" "example" {
}
resource "aws_observabilityadmin_telemetryrule" "example" {
depends_on = [aws_observabilityadmin_telemetryevaluation.example]
rule_name = "tagged-rule"
rule = {
telemetry_type = "Logs"
resource_type = "AWS::EC2::VPC"
}
tags = {
"Environment" = "production"
"Purpose" = "monitoring"
}
}
Create TelemetryRule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new TelemetryRule(name: string, args: TelemetryRuleArgs, opts?: CustomResourceOptions);@overload
def TelemetryRule(resource_name: str,
args: TelemetryRuleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def TelemetryRule(resource_name: str,
opts: Optional[ResourceOptions] = None,
rule: Optional[TelemetryRuleRuleArgs] = None,
rule_name: Optional[str] = None,
region: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None,
timeouts: Optional[TelemetryRuleTimeoutsArgs] = None)func NewTelemetryRule(ctx *Context, name string, args TelemetryRuleArgs, opts ...ResourceOption) (*TelemetryRule, error)public TelemetryRule(string name, TelemetryRuleArgs args, CustomResourceOptions? opts = null)
public TelemetryRule(String name, TelemetryRuleArgs args)
public TelemetryRule(String name, TelemetryRuleArgs args, CustomResourceOptions options)
type: aws:observabilityadmin:TelemetryRule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "aws_observabilityadmin_telemetryrule" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args TelemetryRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args TelemetryRuleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args TelemetryRuleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args TelemetryRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args TelemetryRuleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var telemetryRuleResource = new Aws.Observabilityadmin.TelemetryRule("telemetryRuleResource", new()
{
Rule = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleArgs
{
TelemetryType = "string",
AllRegions = false,
AllowFieldUpdates = false,
DestinationConfiguration = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationArgs
{
CloudtrailParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersArgs
{
AdvancedEventSelectors = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorArgs
{
FieldSelectors = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorFieldSelectorArgs
{
Field = "string",
EndsWiths = new[]
{
"string",
},
Equals = new[]
{
"string",
},
NotEndsWiths = new[]
{
"string",
},
NotEquals = new[]
{
"string",
},
NotStartsWiths = new[]
{
"string",
},
StartsWiths = new[]
{
"string",
},
},
},
Name = "string",
},
},
},
DestinationPattern = "string",
DestinationType = "string",
ElbLoadBalancerLoggingParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationElbLoadBalancerLoggingParametersArgs
{
FieldDelimiter = "string",
OutputFormat = "string",
},
LogDeliveryParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationLogDeliveryParametersArgs
{
LogTypes = new[]
{
"string",
},
},
MskMonitoringParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationMskMonitoringParametersArgs
{
EnhancedMonitoring = "string",
},
RetentionInDays = 0,
VpcFlowLogParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs
{
LogFormat = "string",
MaxAggregationInterval = 0,
TrafficType = "string",
},
WafLoggingParameters = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs
{
LogType = "string",
LoggingFilter = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs
{
DefaultBehavior = "string",
Filters = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs
{
Behavior = "string",
Conditions = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs
{
ActionCondition = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs
{
Action = "string",
},
LabelNameCondition = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionLabelNameConditionArgs
{
LabelName = "string",
},
},
},
Requirement = "string",
},
},
},
RedactedFields = new[]
{
new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs
{
Method = "string",
QueryString = "string",
SingleHeader = new Aws.Observabilityadmin.Inputs.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs
{
Name = "string",
},
UriPath = "string",
},
},
},
},
Regions = new[]
{
"string",
},
ResourceType = "string",
Scope = "string",
SelectionCriteria = "string",
TelemetrySourceTypes = new[]
{
"string",
},
},
RuleName = "string",
Region = "string",
Tags =
{
{ "string", "string" },
},
Timeouts = new Aws.Observabilityadmin.Inputs.TelemetryRuleTimeoutsArgs
{
Create = "string",
Delete = "string",
Update = "string",
},
});
example, err := observabilityadmin.NewTelemetryRule(ctx, "telemetryRuleResource", &observabilityadmin.TelemetryRuleArgs{
Rule: &observabilityadmin.TelemetryRuleRuleArgs{
TelemetryType: pulumi.String("string"),
AllRegions: pulumi.Bool(false),
AllowFieldUpdates: pulumi.Bool(false),
DestinationConfiguration: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationArgs{
CloudtrailParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersArgs{
AdvancedEventSelectors: observabilityadmin.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorArgs{
FieldSelectors: observabilityadmin.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorFieldSelectorArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorFieldSelectorArgs{
Field: pulumi.String("string"),
EndsWiths: pulumi.StringArray{
pulumi.String("string"),
},
Equals: pulumi.StringArray{
pulumi.String("string"),
},
NotEndsWiths: pulumi.StringArray{
pulumi.String("string"),
},
NotEquals: pulumi.StringArray{
pulumi.String("string"),
},
NotStartsWiths: pulumi.StringArray{
pulumi.String("string"),
},
StartsWiths: pulumi.StringArray{
pulumi.String("string"),
},
},
},
Name: pulumi.String("string"),
},
},
},
DestinationPattern: pulumi.String("string"),
DestinationType: pulumi.String("string"),
ElbLoadBalancerLoggingParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationElbLoadBalancerLoggingParametersArgs{
FieldDelimiter: pulumi.String("string"),
OutputFormat: pulumi.String("string"),
},
LogDeliveryParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationLogDeliveryParametersArgs{
LogTypes: pulumi.StringArray{
pulumi.String("string"),
},
},
MskMonitoringParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationMskMonitoringParametersArgs{
EnhancedMonitoring: pulumi.String("string"),
},
RetentionInDays: pulumi.Int(0),
VpcFlowLogParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs{
LogFormat: pulumi.String("string"),
MaxAggregationInterval: pulumi.Int(0),
TrafficType: pulumi.String("string"),
},
WafLoggingParameters: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs{
LogType: pulumi.String("string"),
LoggingFilter: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs{
DefaultBehavior: pulumi.String("string"),
Filters: observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs{
Behavior: pulumi.String("string"),
Conditions: observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs{
ActionCondition: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs{
Action: pulumi.String("string"),
},
LabelNameCondition: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionLabelNameConditionArgs{
LabelName: pulumi.String("string"),
},
},
},
Requirement: pulumi.String("string"),
},
},
},
RedactedFields: observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArray{
&observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs{
Method: pulumi.String("string"),
QueryString: pulumi.String("string"),
SingleHeader: &observabilityadmin.TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs{
Name: pulumi.String("string"),
},
UriPath: pulumi.String("string"),
},
},
},
},
Regions: pulumi.StringArray{
pulumi.String("string"),
},
ResourceType: pulumi.String("string"),
Scope: pulumi.String("string"),
SelectionCriteria: pulumi.String("string"),
TelemetrySourceTypes: pulumi.StringArray{
pulumi.String("string"),
},
},
RuleName: pulumi.String("string"),
Region: pulumi.String("string"),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
Timeouts: &observabilityadmin.TelemetryRuleTimeoutsArgs{
Create: pulumi.String("string"),
Delete: pulumi.String("string"),
Update: pulumi.String("string"),
},
})
resource "aws_observabilityadmin_telemetryrule" "telemetryRuleResource" {
rule = {
telemetry_type = "string"
all_regions = false
allow_field_updates = false
destination_configuration = {
cloudtrail_parameters = {
advanced_event_selectors = [{
"fieldSelectors" = [{
"field" = "string"
"endsWiths" = ["string"]
"equals" = ["string"]
"notEndsWiths" = ["string"]
"notEquals" = ["string"]
"notStartsWiths" = ["string"]
"startsWiths" = ["string"]
}]
"name" = "string"
}]
}
destination_pattern = "string"
destination_type = "string"
elb_load_balancer_logging_parameters = {
field_delimiter = "string"
output_format = "string"
}
log_delivery_parameters = {
log_types = ["string"]
}
msk_monitoring_parameters = {
enhanced_monitoring = "string"
}
retention_in_days = 0
vpc_flow_log_parameters = {
log_format = "string"
max_aggregation_interval = 0
traffic_type = "string"
}
waf_logging_parameters = {
log_type = "string"
logging_filter = {
default_behavior = "string"
filters = [{
"behavior" = "string"
"conditions" = [{
"actionCondition" = {
"action" = "string"
}
"labelNameCondition" = {
"labelName" = "string"
}
}]
"requirement" = "string"
}]
}
redacted_fields = [{
"method" = "string"
"queryString" = "string"
"singleHeader" = {
"name" = "string"
}
"uriPath" = "string"
}]
}
}
regions = ["string"]
resource_type = "string"
scope = "string"
selection_criteria = "string"
telemetry_source_types = ["string"]
}
rule_name = "string"
region = "string"
tags = {
"string" = "string"
}
timeouts = {
create = "string"
delete = "string"
update = "string"
}
}
var telemetryRuleResource = new TelemetryRule("telemetryRuleResource", TelemetryRuleArgs.builder()
.rule(TelemetryRuleRuleArgs.builder()
.telemetryType("string")
.allRegions(false)
.allowFieldUpdates(false)
.destinationConfiguration(TelemetryRuleRuleDestinationConfigurationArgs.builder()
.cloudtrailParameters(TelemetryRuleRuleDestinationConfigurationCloudtrailParametersArgs.builder()
.advancedEventSelectors(TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorArgs.builder()
.fieldSelectors(TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorFieldSelectorArgs.builder()
.field("string")
.endsWiths("string")
.equals("string")
.notEndsWiths("string")
.notEquals("string")
.notStartsWiths("string")
.startsWiths("string")
.build())
.name("string")
.build())
.build())
.destinationPattern("string")
.destinationType("string")
.elbLoadBalancerLoggingParameters(TelemetryRuleRuleDestinationConfigurationElbLoadBalancerLoggingParametersArgs.builder()
.fieldDelimiter("string")
.outputFormat("string")
.build())
.logDeliveryParameters(TelemetryRuleRuleDestinationConfigurationLogDeliveryParametersArgs.builder()
.logTypes("string")
.build())
.mskMonitoringParameters(TelemetryRuleRuleDestinationConfigurationMskMonitoringParametersArgs.builder()
.enhancedMonitoring("string")
.build())
.retentionInDays(0)
.vpcFlowLogParameters(TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs.builder()
.logFormat("string")
.maxAggregationInterval(0)
.trafficType("string")
.build())
.wafLoggingParameters(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs.builder()
.logType("string")
.loggingFilter(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs.builder()
.defaultBehavior("string")
.filters(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs.builder()
.behavior("string")
.conditions(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs.builder()
.actionCondition(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs.builder()
.action("string")
.build())
.labelNameCondition(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionLabelNameConditionArgs.builder()
.labelName("string")
.build())
.build())
.requirement("string")
.build())
.build())
.redactedFields(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs.builder()
.method("string")
.queryString("string")
.singleHeader(TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs.builder()
.name("string")
.build())
.uriPath("string")
.build())
.build())
.build())
.regions("string")
.resourceType("string")
.scope("string")
.selectionCriteria("string")
.telemetrySourceTypes("string")
.build())
.ruleName("string")
.region("string")
.tags(Map.of("string", "string"))
.timeouts(TelemetryRuleTimeoutsArgs.builder()
.create("string")
.delete("string")
.update("string")
.build())
.build());
telemetry_rule_resource = aws.observabilityadmin.TelemetryRule("telemetryRuleResource",
rule={
"telemetry_type": "string",
"all_regions": False,
"allow_field_updates": False,
"destination_configuration": {
"cloudtrail_parameters": {
"advanced_event_selectors": [{
"field_selectors": [{
"field": "string",
"ends_withs": ["string"],
"equals": ["string"],
"not_ends_withs": ["string"],
"not_equals": ["string"],
"not_starts_withs": ["string"],
"starts_withs": ["string"],
}],
"name": "string",
}],
},
"destination_pattern": "string",
"destination_type": "string",
"elb_load_balancer_logging_parameters": {
"field_delimiter": "string",
"output_format": "string",
},
"log_delivery_parameters": {
"log_types": ["string"],
},
"msk_monitoring_parameters": {
"enhanced_monitoring": "string",
},
"retention_in_days": 0,
"vpc_flow_log_parameters": {
"log_format": "string",
"max_aggregation_interval": 0,
"traffic_type": "string",
},
"waf_logging_parameters": {
"log_type": "string",
"logging_filter": {
"default_behavior": "string",
"filters": [{
"behavior": "string",
"conditions": [{
"action_condition": {
"action": "string",
},
"label_name_condition": {
"label_name": "string",
},
}],
"requirement": "string",
}],
},
"redacted_fields": [{
"method": "string",
"query_string": "string",
"single_header": {
"name": "string",
},
"uri_path": "string",
}],
},
},
"regions": ["string"],
"resource_type": "string",
"scope": "string",
"selection_criteria": "string",
"telemetry_source_types": ["string"],
},
rule_name="string",
region="string",
tags={
"string": "string",
},
timeouts={
"create": "string",
"delete": "string",
"update": "string",
})
const telemetryRuleResource = new aws.observabilityadmin.TelemetryRule("telemetryRuleResource", {
rule: {
telemetryType: "string",
allRegions: false,
allowFieldUpdates: false,
destinationConfiguration: {
cloudtrailParameters: {
advancedEventSelectors: [{
fieldSelectors: [{
field: "string",
endsWiths: ["string"],
equals: ["string"],
notEndsWiths: ["string"],
notEquals: ["string"],
notStartsWiths: ["string"],
startsWiths: ["string"],
}],
name: "string",
}],
},
destinationPattern: "string",
destinationType: "string",
elbLoadBalancerLoggingParameters: {
fieldDelimiter: "string",
outputFormat: "string",
},
logDeliveryParameters: {
logTypes: ["string"],
},
mskMonitoringParameters: {
enhancedMonitoring: "string",
},
retentionInDays: 0,
vpcFlowLogParameters: {
logFormat: "string",
maxAggregationInterval: 0,
trafficType: "string",
},
wafLoggingParameters: {
logType: "string",
loggingFilter: {
defaultBehavior: "string",
filters: [{
behavior: "string",
conditions: [{
actionCondition: {
action: "string",
},
labelNameCondition: {
labelName: "string",
},
}],
requirement: "string",
}],
},
redactedFields: [{
method: "string",
queryString: "string",
singleHeader: {
name: "string",
},
uriPath: "string",
}],
},
},
regions: ["string"],
resourceType: "string",
scope: "string",
selectionCriteria: "string",
telemetrySourceTypes: ["string"],
},
ruleName: "string",
region: "string",
tags: {
string: "string",
},
timeouts: {
create: "string",
"delete": "string",
update: "string",
},
});
type: aws:observabilityadmin:TelemetryRule
properties:
region: string
rule:
allRegions: false
allowFieldUpdates: false
destinationConfiguration:
cloudtrailParameters:
advancedEventSelectors:
- fieldSelectors:
- endsWiths:
- string
equals:
- string
field: string
notEndsWiths:
- string
notEquals:
- string
notStartsWiths:
- string
startsWiths:
- string
name: string
destinationPattern: string
destinationType: string
elbLoadBalancerLoggingParameters:
fieldDelimiter: string
outputFormat: string
logDeliveryParameters:
logTypes:
- string
mskMonitoringParameters:
enhancedMonitoring: string
retentionInDays: 0
vpcFlowLogParameters:
logFormat: string
maxAggregationInterval: 0
trafficType: string
wafLoggingParameters:
logType: string
loggingFilter:
defaultBehavior: string
filters:
- behavior: string
conditions:
- actionCondition:
action: string
labelNameCondition:
labelName: string
requirement: string
redactedFields:
- method: string
queryString: string
singleHeader:
name: string
uriPath: string
regions:
- string
resourceType: string
scope: string
selectionCriteria: string
telemetrySourceTypes:
- string
telemetryType: string
ruleName: string
tags:
string: string
timeouts:
create: string
delete: string
update: string
TelemetryRule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The TelemetryRule resource accepts the following input properties:
- Rule
Telemetry
Rule Rule - Configuration block for the telemetry rule. See
rulebelow. - Rule
Name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- Region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- Dictionary<string, string>
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Timeouts
Telemetry
Rule Timeouts
- Rule
Telemetry
Rule Rule Args - Configuration block for the telemetry rule. See
rulebelow. - Rule
Name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- Region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- map[string]string
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Timeouts
Telemetry
Rule Timeouts Args
- rule object
- Configuration block for the telemetry rule. See
rulebelow. - rule_
name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- map(string)
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - timeouts object
- rule
Telemetry
Rule Rule - Configuration block for the telemetry rule. See
rulebelow. - rule
Name String Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- region String
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- Map<String,String>
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - timeouts
Telemetry
Rule Timeouts
- rule
Telemetry
Rule Rule - Configuration block for the telemetry rule. See
rulebelow. - rule
Name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- {[key: string]: string}
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - timeouts
Telemetry
Rule Timeouts
- rule
Telemetry
Rule Rule Args - Configuration block for the telemetry rule. See
rulebelow. - rule_
name str Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- region str
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- Mapping[str, str]
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - timeouts
Telemetry
Rule Timeouts Args
- rule Property Map
- Configuration block for the telemetry rule. See
rulebelow. - rule
Name String Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- region String
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- Map<String>
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - timeouts Property Map
Outputs
All input properties are implicitly available as output properties. Additionally, the TelemetryRule resource produces the following output properties:
Look up Existing TelemetryRule Resource
Get an existing TelemetryRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: TelemetryRuleState, opts?: CustomResourceOptions): TelemetryRule@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
region: Optional[str] = None,
rule: Optional[TelemetryRuleRuleArgs] = None,
rule_arn: Optional[str] = None,
rule_name: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None,
tags_all: Optional[Mapping[str, str]] = None,
timeouts: Optional[TelemetryRuleTimeoutsArgs] = None) -> TelemetryRulefunc GetTelemetryRule(ctx *Context, name string, id IDInput, state *TelemetryRuleState, opts ...ResourceOption) (*TelemetryRule, error)public static TelemetryRule Get(string name, Input<string> id, TelemetryRuleState? state, CustomResourceOptions? opts = null)public static TelemetryRule get(String name, Output<String> id, TelemetryRuleState state, CustomResourceOptions options)resources: _: type: aws:observabilityadmin:TelemetryRule get: id: ${id}import {
to = aws_observabilityadmin_telemetryrule.example
id = "${id}"
}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- Rule
Telemetry
Rule Rule - Configuration block for the telemetry rule. See
rulebelow. - Rule
Arn string - ARN of the telemetry rule.
- Rule
Name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- Dictionary<string, string>
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Dictionary<string, string>
- Map of tags assigned to the resource, including those inherited from the provider
defaultTagsconfiguration block. - Timeouts
Telemetry
Rule Timeouts
- Region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- Rule
Telemetry
Rule Rule Args - Configuration block for the telemetry rule. See
rulebelow. - Rule
Arn string - ARN of the telemetry rule.
- Rule
Name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- map[string]string
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - map[string]string
- Map of tags assigned to the resource, including those inherited from the provider
defaultTagsconfiguration block. - Timeouts
Telemetry
Rule Timeouts Args
- region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- rule object
- Configuration block for the telemetry rule. See
rulebelow. - rule_
arn string - ARN of the telemetry rule.
- rule_
name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- map(string)
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - map(string)
- Map of tags assigned to the resource, including those inherited from the provider
defaultTagsconfiguration block. - timeouts object
- region String
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- rule
Telemetry
Rule Rule - Configuration block for the telemetry rule. See
rulebelow. - rule
Arn String - ARN of the telemetry rule.
- rule
Name String Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- Map<String,String>
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String,String>
- Map of tags assigned to the resource, including those inherited from the provider
defaultTagsconfiguration block. - timeouts
Telemetry
Rule Timeouts
- region string
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- rule
Telemetry
Rule Rule - Configuration block for the telemetry rule. See
rulebelow. - rule
Arn string - ARN of the telemetry rule.
- rule
Name string Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- {[key: string]: string}
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - {[key: string]: string}
- Map of tags assigned to the resource, including those inherited from the provider
defaultTagsconfiguration block. - timeouts
Telemetry
Rule Timeouts
- region str
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- rule
Telemetry
Rule Rule Args - Configuration block for the telemetry rule. See
rulebelow. - rule_
arn str - ARN of the telemetry rule.
- rule_
name str Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- Mapping[str, str]
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Mapping[str, str]
- Map of tags assigned to the resource, including those inherited from the provider
defaultTagsconfiguration block. - timeouts
Telemetry
Rule Timeouts Args
- region String
- Region where this resource will be managed. Defaults to the Region set in the provider configuration.
- rule Property Map
- Configuration block for the telemetry rule. See
rulebelow. - rule
Arn String - ARN of the telemetry rule.
- rule
Name String Name of the telemetry rule. Must be between 1 and 100 characters and contain only alphanumeric characters, hyphens, underscores, periods, hash symbols, and forward slashes. Changing this argument forces a new resource to be created.
The following arguments are optional:
- Map<String>
- Key-value map of resource tags. If configured with a provider
defaultTagsconfiguration block present, tags with matching keys will overwrite those defined at the provider-level. - Map<String>
- Map of tags assigned to the resource, including those inherited from the provider
defaultTagsconfiguration block. - timeouts Property Map
Supporting Types
TelemetryRuleRule, TelemetryRuleRuleArgs
- Telemetry
Type string - Type of telemetry data to collect. Valid values:
Logs,Metrics,Traces. - All
Regions bool - Whether to replicate the rule to every Region in the partition where CloudWatch Observability Admin is available. Mutually exclusive with
regions. - Allow
Field boolUpdates - Whether CloudWatch Observability Admin should detect and remediate configuration drift in managed telemetry resources. Currently supported for
AWS::EC2::VPCresources (VPC flow logs). - Destination
Configuration TelemetryRule Rule Destination Configuration - Configuration block specifying where and how the telemetry data is delivered. See
destinationConfigurationbelow. - Regions List<string>
- Set of Regions to replicate the rule to. Mutually exclusive with
allRegions. Order is not preserved. - Resource
Type string - AWS resource type to apply the rule to (for example
AWS::EC2::VPC,AWS::EKS::Cluster,AWS::WAFv2::WebACL). - Scope string
- Organizational scope to which the rule applies, specified using accounts or organizational units.
- Selection
Criteria string - Criteria for selecting which resources the rule applies to, such as resource tags.
- Telemetry
Source List<string>Types - List of telemetry source types to configure for the resource (for example
VPC_FLOW_LOGS,EKS_AUDIT_LOGS). Must correlate with the chosenresourceType. If not provided, the API may default this value based onresourceType(for exampleVPC_FLOW_LOGSforAWS::EC2::VPC).
- Telemetry
Type string - Type of telemetry data to collect. Valid values:
Logs,Metrics,Traces. - All
Regions bool - Whether to replicate the rule to every Region in the partition where CloudWatch Observability Admin is available. Mutually exclusive with
regions. - Allow
Field boolUpdates - Whether CloudWatch Observability Admin should detect and remediate configuration drift in managed telemetry resources. Currently supported for
AWS::EC2::VPCresources (VPC flow logs). - Destination
Configuration TelemetryRule Rule Destination Configuration - Configuration block specifying where and how the telemetry data is delivered. See
destinationConfigurationbelow. - Regions []string
- Set of Regions to replicate the rule to. Mutually exclusive with
allRegions. Order is not preserved. - Resource
Type string - AWS resource type to apply the rule to (for example
AWS::EC2::VPC,AWS::EKS::Cluster,AWS::WAFv2::WebACL). - Scope string
- Organizational scope to which the rule applies, specified using accounts or organizational units.
- Selection
Criteria string - Criteria for selecting which resources the rule applies to, such as resource tags.
- Telemetry
Source []stringTypes - List of telemetry source types to configure for the resource (for example
VPC_FLOW_LOGS,EKS_AUDIT_LOGS). Must correlate with the chosenresourceType. If not provided, the API may default this value based onresourceType(for exampleVPC_FLOW_LOGSforAWS::EC2::VPC).
- telemetry_
type string - Type of telemetry data to collect. Valid values:
Logs,Metrics,Traces. - all_
regions bool - Whether to replicate the rule to every Region in the partition where CloudWatch Observability Admin is available. Mutually exclusive with
regions. - allow_
field_ boolupdates - Whether CloudWatch Observability Admin should detect and remediate configuration drift in managed telemetry resources. Currently supported for
AWS::EC2::VPCresources (VPC flow logs). - destination_
configuration object - Configuration block specifying where and how the telemetry data is delivered. See
destinationConfigurationbelow. - regions list(string)
- Set of Regions to replicate the rule to. Mutually exclusive with
allRegions. Order is not preserved. - resource_
type string - AWS resource type to apply the rule to (for example
AWS::EC2::VPC,AWS::EKS::Cluster,AWS::WAFv2::WebACL). - scope string
- Organizational scope to which the rule applies, specified using accounts or organizational units.
- selection_
criteria string - Criteria for selecting which resources the rule applies to, such as resource tags.
- telemetry_
source_ list(string)types - List of telemetry source types to configure for the resource (for example
VPC_FLOW_LOGS,EKS_AUDIT_LOGS). Must correlate with the chosenresourceType. If not provided, the API may default this value based onresourceType(for exampleVPC_FLOW_LOGSforAWS::EC2::VPC).
- telemetry
Type String - Type of telemetry data to collect. Valid values:
Logs,Metrics,Traces. - all
Regions Boolean - Whether to replicate the rule to every Region in the partition where CloudWatch Observability Admin is available. Mutually exclusive with
regions. - allow
Field BooleanUpdates - Whether CloudWatch Observability Admin should detect and remediate configuration drift in managed telemetry resources. Currently supported for
AWS::EC2::VPCresources (VPC flow logs). - destination
Configuration TelemetryRule Rule Destination Configuration - Configuration block specifying where and how the telemetry data is delivered. See
destinationConfigurationbelow. - regions List<String>
- Set of Regions to replicate the rule to. Mutually exclusive with
allRegions. Order is not preserved. - resource
Type String - AWS resource type to apply the rule to (for example
AWS::EC2::VPC,AWS::EKS::Cluster,AWS::WAFv2::WebACL). - scope String
- Organizational scope to which the rule applies, specified using accounts or organizational units.
- selection
Criteria String - Criteria for selecting which resources the rule applies to, such as resource tags.
- telemetry
Source List<String>Types - List of telemetry source types to configure for the resource (for example
VPC_FLOW_LOGS,EKS_AUDIT_LOGS). Must correlate with the chosenresourceType. If not provided, the API may default this value based onresourceType(for exampleVPC_FLOW_LOGSforAWS::EC2::VPC).
- telemetry
Type string - Type of telemetry data to collect. Valid values:
Logs,Metrics,Traces. - all
Regions boolean - Whether to replicate the rule to every Region in the partition where CloudWatch Observability Admin is available. Mutually exclusive with
regions. - allow
Field booleanUpdates - Whether CloudWatch Observability Admin should detect and remediate configuration drift in managed telemetry resources. Currently supported for
AWS::EC2::VPCresources (VPC flow logs). - destination
Configuration TelemetryRule Rule Destination Configuration - Configuration block specifying where and how the telemetry data is delivered. See
destinationConfigurationbelow. - regions string[]
- Set of Regions to replicate the rule to. Mutually exclusive with
allRegions. Order is not preserved. - resource
Type string - AWS resource type to apply the rule to (for example
AWS::EC2::VPC,AWS::EKS::Cluster,AWS::WAFv2::WebACL). - scope string
- Organizational scope to which the rule applies, specified using accounts or organizational units.
- selection
Criteria string - Criteria for selecting which resources the rule applies to, such as resource tags.
- telemetry
Source string[]Types - List of telemetry source types to configure for the resource (for example
VPC_FLOW_LOGS,EKS_AUDIT_LOGS). Must correlate with the chosenresourceType. If not provided, the API may default this value based onresourceType(for exampleVPC_FLOW_LOGSforAWS::EC2::VPC).
- telemetry_
type str - Type of telemetry data to collect. Valid values:
Logs,Metrics,Traces. - all_
regions bool - Whether to replicate the rule to every Region in the partition where CloudWatch Observability Admin is available. Mutually exclusive with
regions. - allow_
field_ boolupdates - Whether CloudWatch Observability Admin should detect and remediate configuration drift in managed telemetry resources. Currently supported for
AWS::EC2::VPCresources (VPC flow logs). - destination_
configuration TelemetryRule Rule Destination Configuration - Configuration block specifying where and how the telemetry data is delivered. See
destinationConfigurationbelow. - regions Sequence[str]
- Set of Regions to replicate the rule to. Mutually exclusive with
allRegions. Order is not preserved. - resource_
type str - AWS resource type to apply the rule to (for example
AWS::EC2::VPC,AWS::EKS::Cluster,AWS::WAFv2::WebACL). - scope str
- Organizational scope to which the rule applies, specified using accounts or organizational units.
- selection_
criteria str - Criteria for selecting which resources the rule applies to, such as resource tags.
- telemetry_
source_ Sequence[str]types - List of telemetry source types to configure for the resource (for example
VPC_FLOW_LOGS,EKS_AUDIT_LOGS). Must correlate with the chosenresourceType. If not provided, the API may default this value based onresourceType(for exampleVPC_FLOW_LOGSforAWS::EC2::VPC).
- telemetry
Type String - Type of telemetry data to collect. Valid values:
Logs,Metrics,Traces. - all
Regions Boolean - Whether to replicate the rule to every Region in the partition where CloudWatch Observability Admin is available. Mutually exclusive with
regions. - allow
Field BooleanUpdates - Whether CloudWatch Observability Admin should detect and remediate configuration drift in managed telemetry resources. Currently supported for
AWS::EC2::VPCresources (VPC flow logs). - destination
Configuration Property Map - Configuration block specifying where and how the telemetry data is delivered. See
destinationConfigurationbelow. - regions List<String>
- Set of Regions to replicate the rule to. Mutually exclusive with
allRegions. Order is not preserved. - resource
Type String - AWS resource type to apply the rule to (for example
AWS::EC2::VPC,AWS::EKS::Cluster,AWS::WAFv2::WebACL). - scope String
- Organizational scope to which the rule applies, specified using accounts or organizational units.
- selection
Criteria String - Criteria for selecting which resources the rule applies to, such as resource tags.
- telemetry
Source List<String>Types - List of telemetry source types to configure for the resource (for example
VPC_FLOW_LOGS,EKS_AUDIT_LOGS). Must correlate with the chosenresourceType. If not provided, the API may default this value based onresourceType(for exampleVPC_FLOW_LOGSforAWS::EC2::VPC).
TelemetryRuleRuleDestinationConfiguration, TelemetryRuleRuleDestinationConfigurationArgs
- Cloudtrail
Parameters TelemetryRule Rule Destination Configuration Cloudtrail Parameters - CloudTrail-specific parameters when CloudTrail is the source. See
cloudtrailParametersbelow. - Destination
Pattern string - Pattern used to generate the destination path or name. May contain alphanumeric characters, the macros
<accountId>and<resourceId>, and the symbols_,/,-. - Destination
Type string - Destination type for the telemetry data (for example
cloud-watch-logs). - Elb
Load TelemetryBalancer Logging Parameters Rule Rule Destination Configuration Elb Load Balancer Logging Parameters - ELB load balancer logging parameters when the resource is an ELB. See
elbLoadBalancerLoggingParametersbelow. - Log
Delivery TelemetryParameters Rule Rule Destination Configuration Log Delivery Parameters - Amazon Bedrock AgentCore log delivery parameters. See
logDeliveryParametersbelow. - Msk
Monitoring TelemetryParameters Rule Rule Destination Configuration Msk Monitoring Parameters - Amazon MSK cluster monitoring parameters. See
mskMonitoringParametersbelow. - Retention
In intDays - Number of days to retain the telemetry data in the destination.
- Vpc
Flow TelemetryLog Parameters Rule Rule Destination Configuration Vpc Flow Log Parameters - VPC Flow Logs-specific parameters when the resource is
AWS::EC2::VPC. SeevpcFlowLogParametersbelow. - Waf
Logging TelemetryParameters Rule Rule Destination Configuration Waf Logging Parameters - WAF logging parameters when the resource is
AWS::WAFv2::WebACL. SeewafLoggingParametersbelow.
- Cloudtrail
Parameters TelemetryRule Rule Destination Configuration Cloudtrail Parameters - CloudTrail-specific parameters when CloudTrail is the source. See
cloudtrailParametersbelow. - Destination
Pattern string - Pattern used to generate the destination path or name. May contain alphanumeric characters, the macros
<accountId>and<resourceId>, and the symbols_,/,-. - Destination
Type string - Destination type for the telemetry data (for example
cloud-watch-logs). - Elb
Load TelemetryBalancer Logging Parameters Rule Rule Destination Configuration Elb Load Balancer Logging Parameters - ELB load balancer logging parameters when the resource is an ELB. See
elbLoadBalancerLoggingParametersbelow. - Log
Delivery TelemetryParameters Rule Rule Destination Configuration Log Delivery Parameters - Amazon Bedrock AgentCore log delivery parameters. See
logDeliveryParametersbelow. - Msk
Monitoring TelemetryParameters Rule Rule Destination Configuration Msk Monitoring Parameters - Amazon MSK cluster monitoring parameters. See
mskMonitoringParametersbelow. - Retention
In intDays - Number of days to retain the telemetry data in the destination.
- Vpc
Flow TelemetryLog Parameters Rule Rule Destination Configuration Vpc Flow Log Parameters - VPC Flow Logs-specific parameters when the resource is
AWS::EC2::VPC. SeevpcFlowLogParametersbelow. - Waf
Logging TelemetryParameters Rule Rule Destination Configuration Waf Logging Parameters - WAF logging parameters when the resource is
AWS::WAFv2::WebACL. SeewafLoggingParametersbelow.
- cloudtrail_
parameters object - CloudTrail-specific parameters when CloudTrail is the source. See
cloudtrailParametersbelow. - destination_
pattern string - Pattern used to generate the destination path or name. May contain alphanumeric characters, the macros
<accountId>and<resourceId>, and the symbols_,/,-. - destination_
type string - Destination type for the telemetry data (for example
cloud-watch-logs). - elb_
load_ objectbalancer_ logging_ parameters - ELB load balancer logging parameters when the resource is an ELB. See
elbLoadBalancerLoggingParametersbelow. - log_
delivery_ objectparameters - Amazon Bedrock AgentCore log delivery parameters. See
logDeliveryParametersbelow. - msk_
monitoring_ objectparameters - Amazon MSK cluster monitoring parameters. See
mskMonitoringParametersbelow. - retention_
in_ numberdays - Number of days to retain the telemetry data in the destination.
- vpc_
flow_ objectlog_ parameters - VPC Flow Logs-specific parameters when the resource is
AWS::EC2::VPC. SeevpcFlowLogParametersbelow. - waf_
logging_ objectparameters - WAF logging parameters when the resource is
AWS::WAFv2::WebACL. SeewafLoggingParametersbelow.
- cloudtrail
Parameters TelemetryRule Rule Destination Configuration Cloudtrail Parameters - CloudTrail-specific parameters when CloudTrail is the source. See
cloudtrailParametersbelow. - destination
Pattern String - Pattern used to generate the destination path or name. May contain alphanumeric characters, the macros
<accountId>and<resourceId>, and the symbols_,/,-. - destination
Type String - Destination type for the telemetry data (for example
cloud-watch-logs). - elb
Load TelemetryBalancer Logging Parameters Rule Rule Destination Configuration Elb Load Balancer Logging Parameters - ELB load balancer logging parameters when the resource is an ELB. See
elbLoadBalancerLoggingParametersbelow. - log
Delivery TelemetryParameters Rule Rule Destination Configuration Log Delivery Parameters - Amazon Bedrock AgentCore log delivery parameters. See
logDeliveryParametersbelow. - msk
Monitoring TelemetryParameters Rule Rule Destination Configuration Msk Monitoring Parameters - Amazon MSK cluster monitoring parameters. See
mskMonitoringParametersbelow. - retention
In IntegerDays - Number of days to retain the telemetry data in the destination.
- vpc
Flow TelemetryLog Parameters Rule Rule Destination Configuration Vpc Flow Log Parameters - VPC Flow Logs-specific parameters when the resource is
AWS::EC2::VPC. SeevpcFlowLogParametersbelow. - waf
Logging TelemetryParameters Rule Rule Destination Configuration Waf Logging Parameters - WAF logging parameters when the resource is
AWS::WAFv2::WebACL. SeewafLoggingParametersbelow.
- cloudtrail
Parameters TelemetryRule Rule Destination Configuration Cloudtrail Parameters - CloudTrail-specific parameters when CloudTrail is the source. See
cloudtrailParametersbelow. - destination
Pattern string - Pattern used to generate the destination path or name. May contain alphanumeric characters, the macros
<accountId>and<resourceId>, and the symbols_,/,-. - destination
Type string - Destination type for the telemetry data (for example
cloud-watch-logs). - elb
Load TelemetryBalancer Logging Parameters Rule Rule Destination Configuration Elb Load Balancer Logging Parameters - ELB load balancer logging parameters when the resource is an ELB. See
elbLoadBalancerLoggingParametersbelow. - log
Delivery TelemetryParameters Rule Rule Destination Configuration Log Delivery Parameters - Amazon Bedrock AgentCore log delivery parameters. See
logDeliveryParametersbelow. - msk
Monitoring TelemetryParameters Rule Rule Destination Configuration Msk Monitoring Parameters - Amazon MSK cluster monitoring parameters. See
mskMonitoringParametersbelow. - retention
In numberDays - Number of days to retain the telemetry data in the destination.
- vpc
Flow TelemetryLog Parameters Rule Rule Destination Configuration Vpc Flow Log Parameters - VPC Flow Logs-specific parameters when the resource is
AWS::EC2::VPC. SeevpcFlowLogParametersbelow. - waf
Logging TelemetryParameters Rule Rule Destination Configuration Waf Logging Parameters - WAF logging parameters when the resource is
AWS::WAFv2::WebACL. SeewafLoggingParametersbelow.
- cloudtrail_
parameters TelemetryRule Rule Destination Configuration Cloudtrail Parameters - CloudTrail-specific parameters when CloudTrail is the source. See
cloudtrailParametersbelow. - destination_
pattern str - Pattern used to generate the destination path or name. May contain alphanumeric characters, the macros
<accountId>and<resourceId>, and the symbols_,/,-. - destination_
type str - Destination type for the telemetry data (for example
cloud-watch-logs). - elb_
load_ Telemetrybalancer_ logging_ parameters Rule Rule Destination Configuration Elb Load Balancer Logging Parameters - ELB load balancer logging parameters when the resource is an ELB. See
elbLoadBalancerLoggingParametersbelow. - log_
delivery_ Telemetryparameters Rule Rule Destination Configuration Log Delivery Parameters - Amazon Bedrock AgentCore log delivery parameters. See
logDeliveryParametersbelow. - msk_
monitoring_ Telemetryparameters Rule Rule Destination Configuration Msk Monitoring Parameters - Amazon MSK cluster monitoring parameters. See
mskMonitoringParametersbelow. - retention_
in_ intdays - Number of days to retain the telemetry data in the destination.
- vpc_
flow_ Telemetrylog_ parameters Rule Rule Destination Configuration Vpc Flow Log Parameters - VPC Flow Logs-specific parameters when the resource is
AWS::EC2::VPC. SeevpcFlowLogParametersbelow. - waf_
logging_ Telemetryparameters Rule Rule Destination Configuration Waf Logging Parameters - WAF logging parameters when the resource is
AWS::WAFv2::WebACL. SeewafLoggingParametersbelow.
- cloudtrail
Parameters Property Map - CloudTrail-specific parameters when CloudTrail is the source. See
cloudtrailParametersbelow. - destination
Pattern String - Pattern used to generate the destination path or name. May contain alphanumeric characters, the macros
<accountId>and<resourceId>, and the symbols_,/,-. - destination
Type String - Destination type for the telemetry data (for example
cloud-watch-logs). - elb
Load Property MapBalancer Logging Parameters - ELB load balancer logging parameters when the resource is an ELB. See
elbLoadBalancerLoggingParametersbelow. - log
Delivery Property MapParameters - Amazon Bedrock AgentCore log delivery parameters. See
logDeliveryParametersbelow. - msk
Monitoring Property MapParameters - Amazon MSK cluster monitoring parameters. See
mskMonitoringParametersbelow. - retention
In NumberDays - Number of days to retain the telemetry data in the destination.
- vpc
Flow Property MapLog Parameters - VPC Flow Logs-specific parameters when the resource is
AWS::EC2::VPC. SeevpcFlowLogParametersbelow. - waf
Logging Property MapParameters - WAF logging parameters when the resource is
AWS::WAFv2::WebACL. SeewafLoggingParametersbelow.
TelemetryRuleRuleDestinationConfigurationCloudtrailParameters, TelemetryRuleRuleDestinationConfigurationCloudtrailParametersArgs
- Advanced
Event List<TelemetrySelectors Rule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector> - List of advanced event selectors used to filter CloudTrail events. See
advancedEventSelectorsbelow.
- Advanced
Event []TelemetrySelectors Rule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector - List of advanced event selectors used to filter CloudTrail events. See
advancedEventSelectorsbelow.
- advanced_
event_ list(object)selectors - List of advanced event selectors used to filter CloudTrail events. See
advancedEventSelectorsbelow.
- advanced
Event List<TelemetrySelectors Rule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector> - List of advanced event selectors used to filter CloudTrail events. See
advancedEventSelectorsbelow.
- advanced
Event TelemetrySelectors Rule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector[] - List of advanced event selectors used to filter CloudTrail events. See
advancedEventSelectorsbelow.
- advanced_
event_ Sequence[Telemetryselectors Rule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector] - List of advanced event selectors used to filter CloudTrail events. See
advancedEventSelectorsbelow.
- advanced
Event List<Property Map>Selectors - List of advanced event selectors used to filter CloudTrail events. See
advancedEventSelectorsbelow.
TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelector, TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorArgs
- Field
Selectors List<TelemetryRule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector Field Selector> - List of field selectors that compose the selector statement. See
fieldSelectorsbelow. - Name string
- Descriptive name for the advanced event selector.
- Field
Selectors []TelemetryRule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector Field Selector - List of field selectors that compose the selector statement. See
fieldSelectorsbelow. - Name string
- Descriptive name for the advanced event selector.
- field_
selectors list(object) - List of field selectors that compose the selector statement. See
fieldSelectorsbelow. - name string
- Descriptive name for the advanced event selector.
- field
Selectors List<TelemetryRule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector Field Selector> - List of field selectors that compose the selector statement. See
fieldSelectorsbelow. - name String
- Descriptive name for the advanced event selector.
- field
Selectors TelemetryRule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector Field Selector[] - List of field selectors that compose the selector statement. See
fieldSelectorsbelow. - name string
- Descriptive name for the advanced event selector.
- field_
selectors Sequence[TelemetryRule Rule Destination Configuration Cloudtrail Parameters Advanced Event Selector Field Selector] - List of field selectors that compose the selector statement. See
fieldSelectorsbelow. - name str
- Descriptive name for the advanced event selector.
- field
Selectors List<Property Map> - List of field selectors that compose the selector statement. See
fieldSelectorsbelow. - name String
- Descriptive name for the advanced event selector.
TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorFieldSelector, TelemetryRuleRuleDestinationConfigurationCloudtrailParametersAdvancedEventSelectorFieldSelectorArgs
- Field string
- Name of the field to use for selection.
- Ends
Withs List<string> - Match if the field value ends with one of the specified values.
- Equals List<string>
- Match if the field value equals one of the specified values.
- Not
Ends List<string>Withs - Match if the field value does not end with one of the specified values.
- Not
Equals List<string> - Match if the field value does not equal any of the specified values.
- Not
Starts List<string>Withs - Match if the field value does not start with any of the specified values.
- Starts
Withs List<string> - Match if the field value starts with one of the specified values.
- Field string
- Name of the field to use for selection.
- Ends
Withs []string - Match if the field value ends with one of the specified values.
- Equals []string
- Match if the field value equals one of the specified values.
- Not
Ends []stringWiths - Match if the field value does not end with one of the specified values.
- Not
Equals []string - Match if the field value does not equal any of the specified values.
- Not
Starts []stringWiths - Match if the field value does not start with any of the specified values.
- Starts
Withs []string - Match if the field value starts with one of the specified values.
- field string
- Name of the field to use for selection.
- ends_
withs list(string) - Match if the field value ends with one of the specified values.
- equals list(string)
- Match if the field value equals one of the specified values.
- not_
ends_ list(string)withs - Match if the field value does not end with one of the specified values.
- not_
equals list(string) - Match if the field value does not equal any of the specified values.
- not_
starts_ list(string)withs - Match if the field value does not start with any of the specified values.
- starts_
withs list(string) - Match if the field value starts with one of the specified values.
- field String
- Name of the field to use for selection.
- ends
Withs List<String> - Match if the field value ends with one of the specified values.
- equals_ List<String>
- Match if the field value equals one of the specified values.
- not
Ends List<String>Withs - Match if the field value does not end with one of the specified values.
- not
Equals List<String> - Match if the field value does not equal any of the specified values.
- not
Starts List<String>Withs - Match if the field value does not start with any of the specified values.
- starts
Withs List<String> - Match if the field value starts with one of the specified values.
- field string
- Name of the field to use for selection.
- ends
Withs string[] - Match if the field value ends with one of the specified values.
- equals string[]
- Match if the field value equals one of the specified values.
- not
Ends string[]Withs - Match if the field value does not end with one of the specified values.
- not
Equals string[] - Match if the field value does not equal any of the specified values.
- not
Starts string[]Withs - Match if the field value does not start with any of the specified values.
- starts
Withs string[] - Match if the field value starts with one of the specified values.
- field str
- Name of the field to use for selection.
- ends_
withs Sequence[str] - Match if the field value ends with one of the specified values.
- equals Sequence[str]
- Match if the field value equals one of the specified values.
- not_
ends_ Sequence[str]withs - Match if the field value does not end with one of the specified values.
- not_
equals Sequence[str] - Match if the field value does not equal any of the specified values.
- not_
starts_ Sequence[str]withs - Match if the field value does not start with any of the specified values.
- starts_
withs Sequence[str] - Match if the field value starts with one of the specified values.
- field String
- Name of the field to use for selection.
- ends
Withs List<String> - Match if the field value ends with one of the specified values.
- equals List<String>
- Match if the field value equals one of the specified values.
- not
Ends List<String>Withs - Match if the field value does not end with one of the specified values.
- not
Equals List<String> - Match if the field value does not equal any of the specified values.
- not
Starts List<String>Withs - Match if the field value does not start with any of the specified values.
- starts
Withs List<String> - Match if the field value starts with one of the specified values.
TelemetryRuleRuleDestinationConfigurationElbLoadBalancerLoggingParameters, TelemetryRuleRuleDestinationConfigurationElbLoadBalancerLoggingParametersArgs
- Field
Delimiter string - Delimiter character used to separate fields in ELB access log entries when using plain text format.
- Output
Format string - Format for ELB access log entries. Valid values:
plain-text,json.
- Field
Delimiter string - Delimiter character used to separate fields in ELB access log entries when using plain text format.
- Output
Format string - Format for ELB access log entries. Valid values:
plain-text,json.
- field_
delimiter string - Delimiter character used to separate fields in ELB access log entries when using plain text format.
- output_
format string - Format for ELB access log entries. Valid values:
plain-text,json.
- field
Delimiter String - Delimiter character used to separate fields in ELB access log entries when using plain text format.
- output
Format String - Format for ELB access log entries. Valid values:
plain-text,json.
- field
Delimiter string - Delimiter character used to separate fields in ELB access log entries when using plain text format.
- output
Format string - Format for ELB access log entries. Valid values:
plain-text,json.
- field_
delimiter str - Delimiter character used to separate fields in ELB access log entries when using plain text format.
- output_
format str - Format for ELB access log entries. Valid values:
plain-text,json.
- field
Delimiter String - Delimiter character used to separate fields in ELB access log entries when using plain text format.
- output
Format String - Format for ELB access log entries. Valid values:
plain-text,json.
TelemetryRuleRuleDestinationConfigurationLogDeliveryParameters, TelemetryRuleRuleDestinationConfigurationLogDeliveryParametersArgs
- Log
Types List<string> - List of log types that the source is sending.
- Log
Types []string - List of log types that the source is sending.
- log_
types list(string) - List of log types that the source is sending.
- log
Types List<String> - List of log types that the source is sending.
- log
Types string[] - List of log types that the source is sending.
- log_
types Sequence[str] - List of log types that the source is sending.
- log
Types List<String> - List of log types that the source is sending.
TelemetryRuleRuleDestinationConfigurationMskMonitoringParameters, TelemetryRuleRuleDestinationConfigurationMskMonitoringParametersArgs
- Enhanced
Monitoring string - Level of enhanced monitoring for the MSK cluster. Valid values:
DEFAULT,PER_BROKER,PER_TOPIC_PER_BROKER,PER_TOPIC_PER_PARTITION.
- Enhanced
Monitoring string - Level of enhanced monitoring for the MSK cluster. Valid values:
DEFAULT,PER_BROKER,PER_TOPIC_PER_BROKER,PER_TOPIC_PER_PARTITION.
- enhanced_
monitoring string - Level of enhanced monitoring for the MSK cluster. Valid values:
DEFAULT,PER_BROKER,PER_TOPIC_PER_BROKER,PER_TOPIC_PER_PARTITION.
- enhanced
Monitoring String - Level of enhanced monitoring for the MSK cluster. Valid values:
DEFAULT,PER_BROKER,PER_TOPIC_PER_BROKER,PER_TOPIC_PER_PARTITION.
- enhanced
Monitoring string - Level of enhanced monitoring for the MSK cluster. Valid values:
DEFAULT,PER_BROKER,PER_TOPIC_PER_BROKER,PER_TOPIC_PER_PARTITION.
- enhanced_
monitoring str - Level of enhanced monitoring for the MSK cluster. Valid values:
DEFAULT,PER_BROKER,PER_TOPIC_PER_BROKER,PER_TOPIC_PER_PARTITION.
- enhanced
Monitoring String - Level of enhanced monitoring for the MSK cluster. Valid values:
DEFAULT,PER_BROKER,PER_TOPIC_PER_BROKER,PER_TOPIC_PER_PARTITION.
TelemetryRuleRuleDestinationConfigurationVpcFlowLogParameters, TelemetryRuleRuleDestinationConfigurationVpcFlowLogParametersArgs
- Log
Format string - Format string for VPC Flow Log entries.
- Max
Aggregation intInterval - Maximum interval (in seconds) between the capture of flow log records. Valid values:
60,600. - Traffic
Type string - Type of traffic to log. Valid values:
ACCEPT,REJECT,ALL.
- Log
Format string - Format string for VPC Flow Log entries.
- Max
Aggregation intInterval - Maximum interval (in seconds) between the capture of flow log records. Valid values:
60,600. - Traffic
Type string - Type of traffic to log. Valid values:
ACCEPT,REJECT,ALL.
- log_
format string - Format string for VPC Flow Log entries.
- max_
aggregation_ numberinterval - Maximum interval (in seconds) between the capture of flow log records. Valid values:
60,600. - traffic_
type string - Type of traffic to log. Valid values:
ACCEPT,REJECT,ALL.
- log
Format String - Format string for VPC Flow Log entries.
- max
Aggregation IntegerInterval - Maximum interval (in seconds) between the capture of flow log records. Valid values:
60,600. - traffic
Type String - Type of traffic to log. Valid values:
ACCEPT,REJECT,ALL.
- log
Format string - Format string for VPC Flow Log entries.
- max
Aggregation numberInterval - Maximum interval (in seconds) between the capture of flow log records. Valid values:
60,600. - traffic
Type string - Type of traffic to log. Valid values:
ACCEPT,REJECT,ALL.
- log_
format str - Format string for VPC Flow Log entries.
- max_
aggregation_ intinterval - Maximum interval (in seconds) between the capture of flow log records. Valid values:
60,600. - traffic_
type str - Type of traffic to log. Valid values:
ACCEPT,REJECT,ALL.
- log
Format String - Format string for VPC Flow Log entries.
- max
Aggregation NumberInterval - Maximum interval (in seconds) between the capture of flow log records. Valid values:
60,600. - traffic
Type String - Type of traffic to log. Valid values:
ACCEPT,REJECT,ALL.
TelemetryRuleRuleDestinationConfigurationWafLoggingParameters, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersArgs
- Log
Type string - Type of WAF logs to collect (currently
WAF_LOGS). - Logging
Filter TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter - Filter configuration that determines which WAF log records to include or exclude. See
loggingFilterbelow. - Redacted
Fields List<TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field> - List of fields to redact from WAF logs. See
redactedFieldsbelow.
- Log
Type string - Type of WAF logs to collect (currently
WAF_LOGS). - Logging
Filter TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter - Filter configuration that determines which WAF log records to include or exclude. See
loggingFilterbelow. - Redacted
Fields []TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field - List of fields to redact from WAF logs. See
redactedFieldsbelow.
- log_
type string - Type of WAF logs to collect (currently
WAF_LOGS). - logging_
filter object - Filter configuration that determines which WAF log records to include or exclude. See
loggingFilterbelow. - redacted_
fields list(object) - List of fields to redact from WAF logs. See
redactedFieldsbelow.
- log
Type String - Type of WAF logs to collect (currently
WAF_LOGS). - logging
Filter TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter - Filter configuration that determines which WAF log records to include or exclude. See
loggingFilterbelow. - redacted
Fields List<TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field> - List of fields to redact from WAF logs. See
redactedFieldsbelow.
- log
Type string - Type of WAF logs to collect (currently
WAF_LOGS). - logging
Filter TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter - Filter configuration that determines which WAF log records to include or exclude. See
loggingFilterbelow. - redacted
Fields TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field[] - List of fields to redact from WAF logs. See
redactedFieldsbelow.
- log_
type str - Type of WAF logs to collect (currently
WAF_LOGS). - logging_
filter TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter - Filter configuration that determines which WAF log records to include or exclude. See
loggingFilterbelow. - redacted_
fields Sequence[TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field] - List of fields to redact from WAF logs. See
redactedFieldsbelow.
- log
Type String - Type of WAF logs to collect (currently
WAF_LOGS). - logging
Filter Property Map - Filter configuration that determines which WAF log records to include or exclude. See
loggingFilterbelow. - redacted
Fields List<Property Map> - List of fields to redact from WAF logs. See
redactedFieldsbelow.
TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilter, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterArgs
- Default
Behavior string - Default action for log records that do not match any filter. Valid values:
KEEP,DROP. - Filters
List<Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter> - List of filter configurations. See
filtersbelow.
- Default
Behavior string - Default action for log records that do not match any filter. Valid values:
KEEP,DROP. - Filters
[]Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter - List of filter configurations. See
filtersbelow.
- default_
behavior string - Default action for log records that do not match any filter. Valid values:
KEEP,DROP. - filters list(object)
- List of filter configurations. See
filtersbelow.
- default
Behavior String - Default action for log records that do not match any filter. Valid values:
KEEP,DROP. - filters
List<Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter> - List of filter configurations. See
filtersbelow.
- default
Behavior string - Default action for log records that do not match any filter. Valid values:
KEEP,DROP. - filters
Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter[] - List of filter configurations. See
filtersbelow.
- default_
behavior str - Default action for log records that do not match any filter. Valid values:
KEEP,DROP. - filters
Sequence[Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter] - List of filter configurations. See
filtersbelow.
- default
Behavior String - Default action for log records that do not match any filter. Valid values:
KEEP,DROP. - filters List<Property Map>
- List of filter configurations. See
filtersbelow.
TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilter, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterArgs
- Behavior string
- Action to take for matching log records. Valid values:
KEEP,DROP. - Conditions
List<Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition> - Conditions that determine if a log record matches this filter. See
conditionsbelow. - Requirement string
- Whether the log record must meet all conditions or any condition. Valid values:
MEETS_ALL,MEETS_ANY.
- Behavior string
- Action to take for matching log records. Valid values:
KEEP,DROP. - Conditions
[]Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition - Conditions that determine if a log record matches this filter. See
conditionsbelow. - Requirement string
- Whether the log record must meet all conditions or any condition. Valid values:
MEETS_ALL,MEETS_ANY.
- behavior string
- Action to take for matching log records. Valid values:
KEEP,DROP. - conditions list(object)
- Conditions that determine if a log record matches this filter. See
conditionsbelow. - requirement string
- Whether the log record must meet all conditions or any condition. Valid values:
MEETS_ALL,MEETS_ANY.
- behavior String
- Action to take for matching log records. Valid values:
KEEP,DROP. - conditions
List<Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition> - Conditions that determine if a log record matches this filter. See
conditionsbelow. - requirement String
- Whether the log record must meet all conditions or any condition. Valid values:
MEETS_ALL,MEETS_ANY.
- behavior string
- Action to take for matching log records. Valid values:
KEEP,DROP. - conditions
Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition[] - Conditions that determine if a log record matches this filter. See
conditionsbelow. - requirement string
- Whether the log record must meet all conditions or any condition. Valid values:
MEETS_ALL,MEETS_ANY.
- behavior str
- Action to take for matching log records. Valid values:
KEEP,DROP. - conditions
Sequence[Telemetry
Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition] - Conditions that determine if a log record matches this filter. See
conditionsbelow. - requirement str
- Whether the log record must meet all conditions or any condition. Valid values:
MEETS_ALL,MEETS_ANY.
- behavior String
- Action to take for matching log records. Valid values:
KEEP,DROP. - conditions List<Property Map>
- Conditions that determine if a log record matches this filter. See
conditionsbelow. - requirement String
- Whether the log record must meet all conditions or any condition. Valid values:
MEETS_ALL,MEETS_ANY.
TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterCondition, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionArgs
- Action
Condition TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Action Condition - Condition that matches based on the WAF action. See
actionConditionbelow. - Label
Name TelemetryCondition Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Label Name Condition - Condition that matches based on WAF rule labels. See
labelNameConditionbelow.
- Action
Condition TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Action Condition - Condition that matches based on the WAF action. See
actionConditionbelow. - Label
Name TelemetryCondition Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Label Name Condition - Condition that matches based on WAF rule labels. See
labelNameConditionbelow.
- action_
condition object - Condition that matches based on the WAF action. See
actionConditionbelow. - label_
name_ objectcondition - Condition that matches based on WAF rule labels. See
labelNameConditionbelow.
- action
Condition TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Action Condition - Condition that matches based on the WAF action. See
actionConditionbelow. - label
Name TelemetryCondition Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Label Name Condition - Condition that matches based on WAF rule labels. See
labelNameConditionbelow.
- action
Condition TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Action Condition - Condition that matches based on the WAF action. See
actionConditionbelow. - label
Name TelemetryCondition Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Label Name Condition - Condition that matches based on WAF rule labels. See
labelNameConditionbelow.
- action_
condition TelemetryRule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Action Condition - Condition that matches based on the WAF action. See
actionConditionbelow. - label_
name_ Telemetrycondition Rule Rule Destination Configuration Waf Logging Parameters Logging Filter Filter Condition Label Name Condition - Condition that matches based on WAF rule labels. See
labelNameConditionbelow.
- action
Condition Property Map - Condition that matches based on the WAF action. See
actionConditionbelow. - label
Name Property MapCondition - Condition that matches based on WAF rule labels. See
labelNameConditionbelow.
TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionCondition, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionActionConditionArgs
- Action string
- WAF action to match against. Valid values:
ALLOW,BLOCK,COUNT,CAPTCHA,CHALLENGE,EXCLUDED_AS_COUNT.
- Action string
- WAF action to match against. Valid values:
ALLOW,BLOCK,COUNT,CAPTCHA,CHALLENGE,EXCLUDED_AS_COUNT.
- action string
- WAF action to match against. Valid values:
ALLOW,BLOCK,COUNT,CAPTCHA,CHALLENGE,EXCLUDED_AS_COUNT.
- action String
- WAF action to match against. Valid values:
ALLOW,BLOCK,COUNT,CAPTCHA,CHALLENGE,EXCLUDED_AS_COUNT.
- action string
- WAF action to match against. Valid values:
ALLOW,BLOCK,COUNT,CAPTCHA,CHALLENGE,EXCLUDED_AS_COUNT.
- action str
- WAF action to match against. Valid values:
ALLOW,BLOCK,COUNT,CAPTCHA,CHALLENGE,EXCLUDED_AS_COUNT.
- action String
- WAF action to match against. Valid values:
ALLOW,BLOCK,COUNT,CAPTCHA,CHALLENGE,EXCLUDED_AS_COUNT.
TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionLabelNameCondition, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersLoggingFilterFilterConditionLabelNameConditionArgs
- Label
Name string - Label name to match (alphanumeric, underscores, hyphens, and colons; up to 1024 characters).
- Label
Name string - Label name to match (alphanumeric, underscores, hyphens, and colons; up to 1024 characters).
- label_
name string - Label name to match (alphanumeric, underscores, hyphens, and colons; up to 1024 characters).
- label
Name String - Label name to match (alphanumeric, underscores, hyphens, and colons; up to 1024 characters).
- label
Name string - Label name to match (alphanumeric, underscores, hyphens, and colons; up to 1024 characters).
- label_
name str - Label name to match (alphanumeric, underscores, hyphens, and colons; up to 1024 characters).
- label
Name String - Label name to match (alphanumeric, underscores, hyphens, and colons; up to 1024 characters).
TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedField, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldArgs
- Method string
- Redact the HTTP method from WAF logs. Set to an empty string to enable redaction.
- Query
String string - Redact the entire query string from WAF logs. Set to an empty string to enable redaction.
- Single
Header TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field Single Header - Redact a specific header by name from WAF logs. See
singleHeaderbelow. - Uri
Path string - Redact the URI path from WAF logs. Set to an empty string to enable redaction.
- Method string
- Redact the HTTP method from WAF logs. Set to an empty string to enable redaction.
- Query
String string - Redact the entire query string from WAF logs. Set to an empty string to enable redaction.
- Single
Header TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field Single Header - Redact a specific header by name from WAF logs. See
singleHeaderbelow. - Uri
Path string - Redact the URI path from WAF logs. Set to an empty string to enable redaction.
- method string
- Redact the HTTP method from WAF logs. Set to an empty string to enable redaction.
- query_
string string - Redact the entire query string from WAF logs. Set to an empty string to enable redaction.
- single_
header object - Redact a specific header by name from WAF logs. See
singleHeaderbelow. - uri_
path string - Redact the URI path from WAF logs. Set to an empty string to enable redaction.
- method String
- Redact the HTTP method from WAF logs. Set to an empty string to enable redaction.
- query
String String - Redact the entire query string from WAF logs. Set to an empty string to enable redaction.
- single
Header TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field Single Header - Redact a specific header by name from WAF logs. See
singleHeaderbelow. - uri
Path String - Redact the URI path from WAF logs. Set to an empty string to enable redaction.
- method string
- Redact the HTTP method from WAF logs. Set to an empty string to enable redaction.
- query
String string - Redact the entire query string from WAF logs. Set to an empty string to enable redaction.
- single
Header TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field Single Header - Redact a specific header by name from WAF logs. See
singleHeaderbelow. - uri
Path string - Redact the URI path from WAF logs. Set to an empty string to enable redaction.
- method str
- Redact the HTTP method from WAF logs. Set to an empty string to enable redaction.
- query_
string str - Redact the entire query string from WAF logs. Set to an empty string to enable redaction.
- single_
header TelemetryRule Rule Destination Configuration Waf Logging Parameters Redacted Field Single Header - Redact a specific header by name from WAF logs. See
singleHeaderbelow. - uri_
path str - Redact the URI path from WAF logs. Set to an empty string to enable redaction.
- method String
- Redact the HTTP method from WAF logs. Set to an empty string to enable redaction.
- query
String String - Redact the entire query string from WAF logs. Set to an empty string to enable redaction.
- single
Header Property Map - Redact a specific header by name from WAF logs. See
singleHeaderbelow. - uri
Path String - Redact the URI path from WAF logs. Set to an empty string to enable redaction.
TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeader, TelemetryRuleRuleDestinationConfigurationWafLoggingParametersRedactedFieldSingleHeaderArgs
- Name string
- Header name to redact (up to 64 characters).
- Name string
- Header name to redact (up to 64 characters).
- name string
- Header name to redact (up to 64 characters).
- name String
- Header name to redact (up to 64 characters).
- name string
- Header name to redact (up to 64 characters).
- name str
- Header name to redact (up to 64 characters).
- name String
- Header name to redact (up to 64 characters).
TelemetryRuleTimeouts, TelemetryRuleTimeoutsArgs
- Create string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- Delete string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
- Update string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- Create string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- Delete string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
- Update string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- create string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- delete string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
- update string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- create String
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- delete String
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
- update String
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- create string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- delete string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
- update string
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- create str
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- delete str
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
- update str
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- create String
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
- delete String
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Setting a timeout for a Delete operation is only applicable if changes are saved into state before the destroy operation occurs.
- update String
- A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours).
Import
Identity Schema
Required
ruleName(String) Name of the telemetry rule.
Optional
accountId(String) AWS Account where this resource is managed.region(String) Region where this resource is managed.
Using pulumi import, import CloudWatch Observability Admin Telemetry Rules using ruleName. For example:
$ pulumi import aws:observabilityadmin/telemetryRule:TelemetryRule example example-telemetry-rule
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- AWS Classic pulumi/pulumi-aws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
awsTerraform Provider.
Viewing docs for AWS v7.33.0
published on Monday, Jun 15, 2026 by Pulumi
published on Monday, Jun 15, 2026 by Pulumi