Step-by-Step Explanation:
Understand the Problem:
Each Lambda function generates 1 GB of log data daily in its own CloudWatch Logs log group.
The security team needs a count of application errors, grouped by type, across all log groups.
Analyze the Requirements:
Aggregate and analyze log data across multiple log groups.
Count and group errors by type.
Evaluate the Options:
Option A: Perform a CloudWatch Logs Insights query.
CloudWatch Logs Insights allows querying and analyzing log data.
The stats command and count function can aggregate and count errors across log groups.
Option B: Perform a CloudWatch Logs search with groupby and count.
CloudWatch Logs search does not support these functions; Logs Insights is needed for advanced queries.
Option C: Perform an Amazon Athena query.
Athena can query data in S3 but is not directly applicable to CloudWatch Logs.
Option D: Perform an Amazon RDS query.
RDS queries are for database data, not applicable to log data in CloudWatch.
Select the Best Solution:
Option A: CloudWatch Logs Insights is designed for querying and analyzing log data, making it the appropriate choice for counting and grouping errors.
Amazon CloudWatch Logs Insights
CloudWatch Logs Insights provides powerful querying capabilities to aggregate and analyze log data, including counting and grouping errors.
