Amazon ECS Service Connect enhances observability with Envoy Access Logs

Amazon ECS Service Connect

Amazon ECS Service Connect now supports Envoy access logs, providing deeper observability into request-level traffic patterns and service interactions. This new capability captures detailed per-request telemetry for end-to-end tracing, debugging, and compliance monitoring.

Envoy Access logs capture detailed traffic metadata enabling request-level visibility into service communication patterns. This enables you to perform network diagnostics, troubleshoot issues efficiently, and maintain audit trails for compliance requirements.

What to do

• Configure access logs within ECS Service Connect by updating the ServiceConnectConfiguration to enable access logging.
• Query strings are redacted by default to protect sensitive data.
• Envoy access logs will output to the standard output (STDOUT) stream alongside application logs and flow through the existing ECS log pipeline without requiring additional infrastructure.
• This configuration supports all existing application protocols (HTTP, HTTP2, GRPC and TCP).

Source: AWS release notes

If you need further guidance on AWS, our experts are available at AWS@westloop.io. You may also reach us by submitting the Contact Us form.