Skip to content
/ AwsElasticSearchSnapshot Public

This project is for automatic the snapshot creation of individual index in AWS Elasticsearch service

License

GPL-3.0 license
1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

bijohnvincent/AwsElasticSearchSnapshot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.gitignore
.gitignore
 
 
EsBackupToS3.py
EsBackupToS3.py
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

AwsElasticSearchSnapshot

This project is for automatic the snapshot creation of individual indices in AWS Elasticsearch service. You can also create a single snapshot that includes all indices in your ES domain.

This solution is based on the AWS documentation 'Working with Manual Index Snapshots (AWS CLI)' (http://docs.aws.amazon.com/elasticsearch-service/latest/developerguide/es-managedomains.html#es-managedomains-snapshots)

Complete the prerequisites in above link before implementing this solution in Lambda.

IAM Policies

Folllwoing IAM policies are attached to the IAM role given to Lambda function

AWSLambdaBasicExecutionRole

This is an AWS managed policy just select it from policy list

EsPermissions

Add this in 'inline policies'

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
                "es:ESHttp*"
            ],
            "Effect": "Allow",
            "Resource": "arn:aws:es:<region>:<AWS account number>:domain/<ES domain name>/*"
        }
    ]
}

SnsPermissions

Add this in 'inline policies'

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "Stmt1498233095000",
            "Effect": "Allow",
            "Action": [
                "sns:Publish"
            ],
            "Resource": [
                "arn:aws:sns:<region>:<AWS account number>:<Sns Topic name>"
            ]
        }
    ]
}

ElasticSearch resource policy

Add resource policy in following format to the existing statement.

{
  "Sid": "",
  "Effect": "Allow",
  "Principal": {
    "AWS": "arn:aws:sts::<AWS account number>:assumed-role/<Name of above IAM role>/<Name of lambda function>"
  },
  "Action": "es:*",
  "Resource": "arn:aws:es:<region>:<AWS account number>:domain/<ES domain name>/*"
}

Scheduling snapshots

Create a Rule in AWS cloudWatch Event for scheduling snapshots.

  • Select 'Schedule' and specify a 'Cron Expression' (eg: 05 00 ? * * *)
  • In 'Targets', select the Lambda function you created. Recommend to 'Configure version/alias'
  • You may leave 'Configure input' as is if you want to create a snapsot of indices together.
  • If you have multiple indices, it is recommended to take snapshot separately so that you can resore it individually. To create separate snapshots for each group of indices, select 'Constant (JSON text)' and add your index pattern name as in below format:

{ "backupIndex" : "<Index pattern>*" }

eg: { "backupIndex" : "logstash-*" }

eg: { "backupIndex" : "cwl-*" }

eg: { "backupIndex" : ".kibana*" }

  • Based on the size of the indices, snapshot will take some time to complete the process in elasticSearch server. So when you are taking snapshots separately, you have to ensure enough time to complete the previous snapshot before initialing snapshot of another index.

About

This project is for automatic the snapshot creation of individual index in AWS Elasticsearch service

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages