Thời gian lưu trữ của AWS Config khác với thời gian S3 lifecycle
Share Everywhere
Case:
Nếu trường hợp AWS Config có retention period khác với S3 lifecyle chứ data của AWS Config thì thời gian lưu trữ sẽ thế nào?
Mình đã hỏi trên re:Post và nhận được câu trả lời sau, bạn tham khảo nhé:
https://repost.aws/questions/QUbUv6cmFURzuyf9XVcjaskw#ANA3F_VRFmSKWMlRBAlpn-rA
I'll attempt to answer your questions
-
The FAQ section towards the end of the Blog post you have listed has answers to your questions about S3 lifecycle vs Retention period: The configuration history and snapshot files delivered to an S3 bucket are for your auditing and analysis only & the retention period does not apply to the files in the S3 bucket. The files in the AWS Config data store depend on the retention period setting in the Config. So basically AWS Config has it's own datastore which is regulated by retention policy. Deleting something in S3 (via lifecycle policy) would not affect the view in AWS config but any auditing / analytics you do using S3 would be limited to 300 days data
-
Your question about where ConfigItems is stored - Based on my understanding, the configuration history is periodically saved to S3. I presume configItems would be saved in internal the data store for use by AWS Config service
-
Is ConfigurationItems a subset of Configuration history? - I would say logically yes. Each configurationitem is a record of the change to the AWS resources and Configuration history is a collection of Configuration Items which would tie these together to provide a view of the changes to a resource over a period of time https://docs.aws.amazon.com/config/latest/developerguide/config-concepts.html#config-history
-
And if things stored in S3, is ConfigurationItems deleted or become damaged? - S3 is backed by high availability and durability and hence data deletion / damage would be rare unless due to accidental human intervention. And in the very rare event that it happens, AWS config won't be affected.
