Usando AWS re:Post, accetti AWS re:Post Termini di utilizzo
AWS re:Postre:Post

Understanding usage of s3

0

Hello, I'm making small my web-application for studying, using ec2, rds, s3 in aws. I am a free-tier user. and I want to understand the usage of s3, because my usage of s3 is increasing too high.

I just made a s3 and put 81 objects in it. and I accessed my web-application 3 times. My web-application is public but no one knows it but me.

I found my usage of s3, 'Put,Copy,Post or List Requests' part is increasing about 200, and 'Get Requests' part is increasing about 500. and my key

I don't get why the requests increased that much, I wonder if I access S3 in aws console, just click my bucket,(not any single file) would it make the requests of s3 increase? if so, the amount of request is equal to the amount of objects(in mycase 81 objects)?

also, is there any possiblilty that my usage of s3 is increasing, from ec2 or rds..?

(my usage of key management service is also increasing too high all of a sudden, I'm running my ec2 for 2days and if it cause? or like I ask above, if I access to Key Management Service in aws console, and click the key part, the usage of Key Management Service increase? )

Because I had this problem a few weeks ago, I coudn't solve this problem. As I get worried about costs, if it increased too much like this, I cannot afford to pay that much At that time the requests are increasing about 2~3000 a day, when I don't put anything to my bucket, and get from my bucket as well. I changed my bucket to be secret from public after 2 days, but still it happened. I've just deleted my buket, sdk. (At that time I used sdk for S3 as well. but I removed all of them now) and nothing was happened until I made my bucket again.

I'm very confused and worried about the costs, Please, I will appriciate if anyone helps me to understand about those..

  • mike
    2 anni fa

    There are lots of services/bots/things out on the internet that crawl publicly accessible endpoints. I wouldn't make the assumption that you're the only person that knows about it. A quick update would be to change your security group at the front-end to only allow your IP address, this will prevent those crawlers from making requests against your website.

Argomenti
ArchiviazioneSicurezza, identità e conformità
Tag
Servizio di archiviazione semplice di AmazonServizio di gestione delle chiavi AWS
Lingua
English
AWS-User-3386906
posta 2 anni fa1166 visualizzazioni
2 Risposte
0

Hello

First and foremost, I would recommend you create a budget for your usage. This will help you get notified if your usage goes beyond your specified $ limits, either on daily or monthly basis. You can access this from the top right hand corner under your login, sub-option billing. Also I am sure you are not using your root account and rather create another account with admin and billing access as that is the best practice.

https://console.aws.amazon.com/billing/home

Finally EC2 is billed if it is running instance. You can stop or terminate the instance if it is not in use.

https://aws.amazon.com/premiumsupport/knowledge-center/ec2-instance-hour-billing/

Hope this helps...

Kamal
con risposta 2 anni fa
  • AWS-User-3386906
    2 anni fa

    Hello, Thanks for the answer, and I already created a buget. and I know EC2 will be charged if I use it over 750 hours per month as I'm free-tier user. Also I have only one instance in my one region, not other region. what I want to know is like I wrote in my question, how the usage of s3 works.(and also about usage of key management service)

    and I'm using just root account at the moment,, but guess it will be safe to use another account.

0

Hello,

In order to better understand who or what is accessing your bucket you should make use of Monitoring S3 access with Server Access Logging https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html

This will help you to better understand who or what is accessing your S3 bucket and objects and better understand the S3 usage bill.

You should also log Amazon S3 API Calls using AWS CloudTrail https://docs.aws.amazon.com/AmazonS3/latest/userguide/cloudtrail-logging.html

By auditing both logs you can better understand if unauthorized API calls or access to be bucket is occurring and correct your S3 Bucket Policies and Access Control Lists.

Please also have a look at the Security Best Practices when using IAM https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html

AWS
Nuno_Q
con risposta 2 anni fa

Accesso non effettuato. Accedi per postare una risposta.

Una buona risposta soddisfa chiaramente la domanda, fornisce un feedback costruttivo e incoraggia la crescita professionale del richiedente.

Linee guida per rispondere alle domande

Contenuto pertinente