Once your Log Management in the Amazon S3 has been set up you may wish to test the log files are being written and are downloadable.
In order to do this, we'll outline an approach using Amazons 'AWS Command Line Interface' For alternative methods please see here
- Download and install the AWS CLI from https://aws.amazon.com/cli/
- Create your Cisco managed bucket as described here
- Alternatively, configure logging to use your own S3 bucket as described here
Configuring your Security Credentials in AWS cli
At the command line enter:
You will be presented with the following 4 questions, the first three were given when you created the bucket. The 'Default region name' should normally be set to your geographically closest region. For a full list please see here
You can rerun this configuration at any time, and it will show a reduced version of your credentials e.g.
AWS Access Key ID [****************HVBA]:
AWS Secret Access Key [****************OuFw]:
Default region name [us-east-1]:
Default output format [None]:
Copy your bucket to a folder on your computer
Enter the following command, replacing with your new bucket name.
aws s3 sync s3://<yourbucketname> c:\<your local folder>
aws s3 sync s3://umbrella-managed-2293370-96b88e0e21ac0136373b7009a340dc5f/ c:\temp\
You should see an output like this:
download: s3://umbrella-managed-2293370-96b88e0e21ac0136373b7009a340dc5f/dnslogs/2018-05-01/2018-05-01-12-30-0e41.csv.gz to dnslogs\2018-05-01\2018-05-01-12-30-0e41.csv.gz
download: s3://umbrella-managed-2293370-96b88e0e21ac0136373b7009a340dc5f/dnslogs/2018-05-01/2018-05-01-12-40-0e41.csv.gz to dnslogs\2018-05-01\2018-05-01-12-40-0e41.csv.gz
download: s3://umbrella-managed-2293370-96b88e0e21ac0136373b7009a340dc5f/dnslogs/2018-05-01/2018-05-01-12-30-b3ab.csv.gz to dnslogs\2018-05-01\2018-05-01-12-30-b3ab.csv.gz
Please note: The full command line interface documentation is available from Amazon here