100 Days of DevOps — Day 5-(CloudWatch to Slack Notification)
6 min readFeb 15, 2019
Check the updated 101 Days of DevOps Course
Course Registration link: https://www.101daysofdevops.com/register/
Course Link: https://www.101daysofdevops.com/courses/101-days-of-devops/
YouTube link: https://www.youtube.com/user/laprashant/videos
Welcome to Day 5 of 100 Days of DevOps, On Day 2 I discussed the SNS https://medium.com/@devopslearning/100-days-of-devops-day-2-introduction-to-simple-notification-service-sns-97137b2f1f1e and in the current DevOps world, no one denies the importance of Notification especially in cases when something went wrong with your infrastructure(Server Down/CPU Utilization high…).In this tutorial, I will show you how to integrate CloudWatch with Slack, so that you will be notified and take an effective measure.
This can be achieved by following a few steps
- Create an AWS Access key and Secret Key
- Create an IAM Role
- Deploy the lambda function
- Create an SNS topic
- Create a Cloudwatch Alarm
Step1: Create an AWS Access key and Secret Key
- Go to IAM console https://console.aws.amazon.com/iam/home?region=us-west-2#/home
- Click on Users → Particular user → Security Credentials
- Click on Create Access Key
- Save this Access Key and Secret Key as we need them later while configuring Lambda function
Step2: Create an IAM Role
- Go to IAM console https://console.aws.amazon.com/iam/home?region=us-west-2#/home
- Roles → Create role → AWS service → Lambda
- Search for AWSLambdaBasicExecutionRole
- Give your Role a name
- Click on create Role
- Copy the role arn, we need it for future configuration
Step3: Deploy the Lambda Function
- For the purpose of this demo, I am using Public GitHub Repo
# Step 1
$ git clone https://github.com/assertible/lambda-cloudwatch-slack.gitCloning into 'lambda-cloudwatch-slack'...remote: Enumerating objects: 244, done.remote: Total 244 (delta 0), reused 0 (delta 0), pack-reused 244Receiving objects: 100% (244/244), 668.48 KiB | 3.56 MiB/s, done.Resolving deltas: 100% (120/120), done.#Step 2
$ cd lambda-cloudwatch-slack/#Step 3
cp .env.example .env
- Now we need to perform some configuration at Slack End
- Go to Slack, Apps section and click on Add apps
- Search for incoming-webhook
- Enter the channel name where you want to send a notification, also note down Webhook URL
- Under .env file,enter the following info
#ENCRYPTED_HOOK_URL= you can use ENCRYPTED_HOOK_URL if you want
UNENCRYPTED_HOOK_URL=Step3
AWS_FUNCTION_NAME=cloudwatch-to-slack
AWS_REGION=us-west-2
AWS_ROLE="Step2"
# You can get AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY here: https://console.aws.amazon.com/iam/home#/users
# Click on user -> Security credentials -> Access keys -> Create access key
AWS_ACCESS_KEY_ID= Step1
AWS_SECRET_ACCESS_KEY= Step1- After making these changes, execute the following command on the terminal
$ npm installadded 136 packages in 4.039s╭─────────────────────────────────────╮│ ││ Update available 5.6.0 → 5.8.0 ││ Run npm i -g npm to update ││ │╰─────────────────────────────────────╯
- Finally, deploy it
$ npm run deploy> lambda-cloudwatch-slack@0.3.0 deploy /Users/plakhera/Documents/lambda-cloudwatch-slack> ./scripts/deploy.shWarning!!! You are building on a platform that is not 64-bit Linux (darwin.x64).If any of your Node dependencies include C-extensions, they may not work as expected in the Lambda environment.=> Moving files to temporary directory=> Running npm install --production=> Zipping deployment package=> Zipping repo. This might take up to 30 seconds=> Reading zip file to memory=> Reading event source file to memory=> Uploading zip file to AWS Lambda us-west-2 with parameters:{ FunctionName: 'cloudwatch-to-slack',Code: { ZipFile: <Buffer 50 4b 03 04 14 00 08 00 08 00 20 10 4a 4e 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00 2e 65 6e 76 6d 90 5d 4f 83 30 18 85 ef f9 15 8d bb 5c 18 9b ... > },Handler: 'index.handler',Role: 'arn:aws:iam::XXXXXX:role/cloudwatch-to-lambda',Runtime: 'nodejs8.10',Description: 'Better Slack notifications for AWS CloudWatch',MemorySize: 128,Timeout: 60,Publish: false,VpcConfig: { SubnetIds: [], SecurityGroupIds: [] },Environment: { Variables: { UNENCRYPTED_HOOK_URL: 'https://hooks.slack.com/services/XXXXXXXX' } },KMSKeyArn: '',DeadLetterConfig: { TargetArn: null },TracingConfig: { Mode: null } }^C╭─────────────────────────────────────╮│ ││ Update available 5.6.0 → 6.7.0 ││ Run npm i -g npm to update ││ │╰─────────────────────────────────────╯
- If everything looks good, you will see the new function on the lambda page
Step4: Create an SNS topic
- Go to https://us-west-2.console.aws.amazon.com/sns/v2/home?region=us-west-2#/home
- Click on create a topic and enter Topic name(eg: cloudwatch-to-lambda-sns-topic)
- Click on newly create a topic and then from Actions drop-down Subscribe to topic
- Click on Create subscription, using AWS Lambda as Protocol
Step5: Create CloudWatch Alarm
- Go to CloudWatch home page https://us-west-2.console.aws.amazon.com/cloudwatch/home?region=us-west-2
- Alarms → Create Alarm → Metric → Select Metric → EC2 → Per Instance Metric
- Select CPU Utilization
- Fill all the necessary details
- In order to replicate the scenario, I am using stress tool, which is available as the part of RedHat epel repo
# stress --cpu 10 --timeout 300stress: info: [15259] dispatching hogs: 10 cpu, 0 io, 0 vm, 0 hddstress: info: [15259] successful run completed in 300s
- You will see the notification like this
Looking forward from you guys to join this journey and spend a minimum an hour every day for the next 100 days on DevOps work and post your progress using any of the below medium.
- Twitter: @100daysofdevops OR @lakhera2015
- Facebook: https://www.facebook.com/groups/795382630808645/
- Medium: https://medium.com/@devopslearning
- Slack: https://devops-myworld.slack.com/messages/CF41EFG49/
- GitHub Link:https://github.com/100daysofdevops
Reference
