Amazon CloudWatch

Matrics

log data is stored indefinitely
log group is a container for logs
log stream is a sequence of log events
log event is a record of some activity
SDK, Elastic Beanstalk, ECS, Lambda, CloudTrail, VPC Flow Logs, Route 53, API Gateway, CloudWatch Unified Agent can send logs to CloudWatch Logs
log subscription: send logs to Lambda, Kinesis, ElasticSearch, S3

alarm is a notification that is sent when a metric is in breach of the threshold
state: OK, ALARM, INSUFFICIENT_DATA
target: stop, terminate, reboot, recover, start, or snapshot an instance / trigger an Auto Scaling action / send a notification to an SNS topic
single metric alarm, composite alarm, anomaly detection alarm

CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of your AWS account in all region or single region
trail is a configuration that enables delivery of events as log files to an Amazon S3 bucket
90 days retention period ## Management Events
management events provide information about management operations that are performed on resources in your AWS account ## Data Events
data events provide information about the resource operations performed on or within a resource
by default, data events are not logged

insights events provide insights into the performance and availability of your AWS Account

config is a service that enables you to assess, audit, and evaluate the configurations of your AWS resources