Connect Akto with AWS ECS
Introduction
Learn about how to send API traffic data from AWS ECS setup to Akto from your environment. Depending on your ECS infrastructure type refer to these respective sections:
Adding Akto traffic collector to ECS FARGATE cluster
When the ECS cluster is running on AWS FARGATE infrastructure, we will add a container to the task definition of the task, from which we want to monitor. Refer the below image to check your cluster type.
Setup Akto data processor using the guide here. Keep the value
AKTO_NLB_IPhandy, as we will need them later.Add a container with the configuration defined below. Please replace the
AKTO_NLB_IPvariable, as obtained from step 1.{ "name": "mirror-api-logging", "image": "aktosecurity/mirror-api-logging:k8s_agent", "cpu": 1024, "memory": 1024, "portMappings": [], "essential": false, "environment": [ { "name": "AKTO_TRAFFIC_BATCH_TIME_SECS", "value": "10" }, { "name": "AKTO_MONGO_CONN", "value": "mongodb://0.0.0.0:27017/admini" }, { "name": "AKTO_TRAFFIC_BATCH_SIZE", "value": "10" }, { "name": "AKTO_INFRA_MIRRORING_MODE", "value": "gcp" }, { "name": "AKTO_KAFKA_BROKER_MAL", "value": "<AKTO_NLB_IP>:9092" } ], "environmentFiles": [], "mountPoints": [], "volumesFrom": [], "systemControls": [] }
ECS task definition After adding this definition to the task, update the task revision in the service.
Update ECS service The containers for the task should show both your primary container and mirror-api-logging container.
Updated service
Adding Akto traffic collector to ECS EC2 instances cluster
When the ECS cluster is a EC2 instances cluster, we will create a task definition for the mirror-api-logging container and run the task as a daemonset.
Setup Akto data processor using the guide here. Keep the value
AKTO_NLB_IPhandy, as we will need them later.We will create a new task definition with launch type as EC2 instances, network mode host and the container details as follows. You can directly create a new task definition using the JSON given below. You can also refer the screenshots attached. Please replace the
AKTO_NLB_IPvariable, as obtained from step 1.{ "family": "mirror-api-logging", "containerDefinitions": [ { "name": "mirror-api-logging", "image": "aktosecurity/mirror-api-logging:k8s_agent", "cpu": 1024, "memory": 1024, "portMappings": [], "essential": true, "environment": [ { "name": "AKTO_TRAFFIC_BATCH_TIME_SECS", "value": "10" }, { "name": "AKTO_MONGO_CONN", "value": "mongodb://0.0.0.0:27017/admini" }, { "name": "AKTO_TRAFFIC_BATCH_SIZE", "value": "10" }, { "name": "AKTO_INFRA_MIRRORING_MODE", "value": "gcp" }, { "name": "AKTO_KAFKA_BROKER_MAL", "value": "<AKTO_NLB_IP>:9092" } ], "environmentFiles": [], "mountPoints": [], "volumesFrom": [], "ulimits": [], "logConfiguration": { "logDriver": "awslogs", "options": { "awslogs-create-group": "true", "awslogs-group": "/ecs/mirror-api-logging", "awslogs-region": "ap-south-1", "awslogs-stream-prefix": "ecs" }, "secretOptions": [] }, "systemControls": [] } ], "executionRoleArn": "<Use default execution role>", "networkMode": "host", "requiresCompatibilities": [ "EC2" ], "runtimePlatform": { "cpuArchitecture": "X86_64", "operatingSystemFamily": "LINUX" } }
Task configuration 
Task configuration 
Task configuration 
Task configuration We will create a daemonset service with launch type EC2. Go to services tab in the ECS cluster and click on
Create.
Daemonset configuration Select
Launch typeinCompute optionsandEC2inLaunch type.
Daemonset configuration Select
ServiceinApplication type, selectmirror-api-logginginFamily( The task definition we just created ), entermirror-api-loggingasService nameand set theService typeasDaemon. Then click onCreateon the bottom of the page.
Daemonset configuration Voila, you have created a daemonset in ECS. You should see the traffic in Akto dashboard in some time.
Last updated
Was this helpful?