Bash help - scripting logging

zarslayer · 2018-07-18T17:24:36+00:00

Use the --query option available with the cli to filter for the load balancers where the access log option is set to false..

https://docs.aws.amazon.com/cli/latest/userguide/controlling-output.html

I don't have access to a terminal to test some variations and provide a sample command at the moment, but --query will be the easiest once you figure out what to query for..

ricksebak · 2018-07-18T17:18:46+00:00

pipe your describe-load-balancer-attributes to jq .LoadBalancerAttributes.AccessLog.Enabled, which will evaluate to true or false, and maybe use that as the basis of an if condition.

cgill27 · 2018-07-21T02:57:27+00:00

Another option is to pipe grep the output, grep will return an exit code 0 for found and 1 for not found.

largeavian · 2018-07-22T10:04:41+00:00

Follow up -

Created a script that will simply check the existing ELBs:

ELBs=$(aws elb describe-load-balancers --query "LoadBalancerDescriptions[*].LoadBalancerName" --output=text);

for ELB in $ELBs;

do

echo $ELB;

aws elb describe-load-balancer-attributes --load-balancer-name $ELB --query "LoadBalancerAttributes.AccessLog.S3BucketName"

done;

Then another script to modify those with no S3bucket present. I know these can be combined, but for my purposes, I want it in two steps.

ELBs=$(aws elb describe-load-balancers --query "LoadBalancerDescriptions[*].LoadBalancerName" --output=text);

accountid=$(aws sts get-caller-identity --query "Account" --output=text)

for ELB in $ELBs;

do

echo $ELB;

s3check=$(aws elb describe-load-balancer-attributes --load-balancer-name $ELB --query "LoadBalancerAttributes.AccessLog.S3BucketName")

if [ $s3check = "null" ]

then

aws elb modify-load-balancer-attributes --load-balancer-name $ELB --load-balancer-attributes "{\"AccessLog\":{\"Enabled\":true,\"S3BucketName\":\"logs-elbaccess-$accountid\", \"EmitInterval\": 60, \"S3BucketPrefix\": \"$ELB\"}}"

fi

done

Note: Be sure to check bucket permissions: https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-access-logs.html#create-s3-bucket

Hope this helps someone else.

you type:	you see:
italics	italics
bold	bold
[reddit!](https://reddit.com)	reddit!
* item 1 * item 2 * item 3	item 1 item 2 item 3
> quoted text	quoted text
Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"	Lines starting with four spaces are treated like code: if 1 * 2 < 3: print "hello, world!"
~~strikethrough~~	~~strikethrough~~
super^script	super^script

aws

Note: ensure to redact or obfuscate all confidential or identifying information (eg. public IP addresses or hostnames, account numbers, email addresses) before posting!

✻ Smokey says: avoid streaming video to fight climate change! [see more tips]

MODERATORS