Design mechanism for auto-creation of per-ENI mirroring #33
Labels
Capture Resilience
Work to make traffic capture more resilient to changes in load, configuration, and sources
Comments
chelma
added
the
Capture Resilience
|
Taking a look at things, AWS Event Bridge [1] seems like a good option to explore further. I'm thinking we'll have one or more Lambda functions that are capable of setting up/tearing down the per-ENI resources. We'll probably schedule them to fire on a regular cadence as a backstop, and then use Event Bridge to catch things like EC2 ASG and ECS scale up/down events and react sooner than backstop would fire. LOTS of AWS Services fire these events [2]. [1] https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-what-is.html |
|
Design proposal posted: #35 |
|
Looks like we're aligned on the design proposal. Created follow-up tasks: |
|
Task completed; resolving. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description
Currently, the only way to update which ENIs are monitored in a particular user-VPC is invoke
remove-vpc&add-vpcto tear down capture and stand it back up, a process with currently takes ~10 minutes. This is obviously not the desired experience.This task is to investigate options for more nimble, ideally automatic, creation and destruction of per-ENI mirroring configuration and propose a initial solution to the problem. The proposal should ideally address the following topics:
This task will NOT address changes in the network topography of the user's VPC (e.g. adding/removing subnets); that will be addressed with the
refresh-clustercommand (see: #32)Acceptance Criteria
The text was updated successfully, but these errors were encountered: