This topic describes the basic information that the aws-scanner tool of Cloud Migration Hub (CMH) collects from your assets in Amazon Web Services (AWS).
Description
The aws-scanner tool uses AWS SDK to collect resource information. The version of the SDK is AWS SDK for Java API Reference - 2.17.180
Availability Zones
The following key fields about Availability Zones (AZs) are collected:
regionName
zoneName
zoneId
state
tags
Amazon VPC
The following key fields about the Amazon Virtual Private Cloud (Amazon VPC) service are collected:
vpcId
ownerId
dhcpOptionsId
cidrBlock
state
region
tags
Security groups
The following key fields about security groups are collected:
groupId
groupName
vpcId
ownerId
securityGroupRulesNum
region
tags
NAT gateways
The following key fields about NAT gateways are collected:
natGatewayId
vpcId
subnetId
state
publicIp
privateIp
region
tags
ELB
The following key fields about the Elastic Load Balancing (ELB) service are collected:
loadBalancerName
vpcId
type
ipAddressType
dnsName
state
region
tags
Amazon EC2
The following key fields about the Amazon Elastic Compute Cloud (Amazon EC2) service are collected:
instanceId
instanceType
instanceName
state
region
memory
cpuCore
imageId
operatingSystem
diskDevice
diskSpace
privateIpAddress
publicIpAddress
ipv6Address
publicDnsName
vpcId
subnetId
securityGroups
availabilityZone
tags
Amazon RDS
The following key fields about the Amazon Relational Database Service (Amazon RDS) service are collected:
dbInstanceIdentifier
dbName
masterUsername
engine
engineVersion
dbInstanceClass
cpu
memory
storage
maximumStorage
domainName
port
availabilityZone
subnet
vpcSecurityGroups
status
region
vpcId
tags
Amazon ElastiCache
The following key fields about the Amazon ElastiCache service are collected:
cacheClusterId
numCacheNode
engine
engineVersion
securityGroups
clusterStatus
nodeType
az
subnetGroupName
replicationGroupId
cacheParameterGroupName
arn
region
tags
vpcId
subnet
Amazon S3
The following key fields about the Amazon Simple Storage Service (Amazon S3) service are collected:
bucketName
creationDate
bucketSize
objectTotal
accessControl
tags
lifecycleConfigurationCount
replicationCount
inventoryConfigurationCount
region
standardCount
standardSize
reducedRedundancyCount
reducedRedundancySize
glacierCount
glacierSize
standardIaCount
standardIaSize
oneZoneIaCount
oneZoneIaSize
intelligentTieringCount
intelligentTieringSize
deepArchiveCount
deepArchiveSize
outPostsCount
outPostsSize
Amazon Athena
The following key fields about the Amazon Athena service are collected:
catalogName
databaseName
name
createTime
lastAccessTime
tableType
columnSize
region
Amazon DocumentDB
The following key fields about the Amazon DocumentDB service are collected:
dbClusterIdendifier
engine
engineVersion
status
endpoint
multiAZ
availabilityZones
hostedZoneId
dbSubnetGroup
preferredBackupWindow
preferredMaintenanceWindow
dbClusterMembers
dbClusterParameterGroup
replicationSourceIdentifier
readerEndpoint
readReplicaIdentifiers
vpcSecurityGroupId
vpcId
region
tags
Amazon EFS
The following key fields about the Amazon Elastic File System (EFS) service are collected:
fileSystemId
name
availabilityZoneId
availabilityZoneName
creationTime
performanceModeAsString
throughputMode
numberOfMountTargets
capacity
provisionedThroughputInMibps
region
tags
Amazon EKS
The following key fields about the Amazon Elastic Kubernetes Service (EKS) service are collected:
clusterName
version
status
platformVersion
createdAt
identity
vpcId
clusterSecurityGroupId
subnetIds
securityGroupIds
endpointPrivateAccess
endpointPublicAccess
ipFamily
serviceIpv4Cidr
serviceIpv6Cidr
tags
region
Elasticsearch
The following key fields about the Elasticsearch service are collected:
domainName
engineType
version
instanceType
instanceCount
dedicatedMasterType
dedicatedMasterCount
volumeType
volumeSize
iops
vpcId
subnetIds
availabilityZones
securityGroupIds
region
tags
AWS Global Accelerator
The following key fields about the AWS Global Accelerator service are collected:
name
dnsName
createdTime
status
enabled
ipAddressType
ipSet
region
Amazon MSK
The following key fields about the Amazon Managed Streaming for Apache Kafka (Amazon MSK) service are collected:
clusterName
state
creationTime
currentVersion
clusterType
vpcId
securityGroups
clientSubnets
instanceType
volumeSize
configurationArn
configurationRevision
kafkaVersion
numberOfBrokerNodes
region
tags
Amazon Redshift
The following key fields about the Amazon Redshift service are collected:
id
dbName
clusterCreateTime
version
status
nodeType
numberOfNodes
totalStorageCapacityInMegaBytes
preferredMaintenanceWindow
node
availabilityZone
vpcId
elasticIpStatus
clusterSecurityGroupName
clusterSubnetGroupName
region
Security group rules
The following key fields about security group rules are collected:
groupId
securityGroupRuleId
isEgress
ipProtocol
portRange
source
description
region
Reference to API Used in AWS Survey
Supported Resources | Used API | Used Client |
EC2 | DescribeInstancesRequest/Response,DescribeInstanceTypesRequest/Response,DescribeImagesRequest/Response | Ec2Client |
NAT | DescribeNatGatewaysResponse | Ec2Client |
Security Group | DescribeSecurityGroupsResponse,DescribeSecurityGroupRulesIterable | Ec2Client |
VPC | DescribeVpcsResponse | Ec2Client |
Availability zone | DescribeAvailabilityZonesResponse | Ec2Client |
ELB | DescribeTargetGroupsResponse,DescribeInstancesResponse,DescribeLoadBalancersResponse,DescribeTagsRequest/Response | ElasticLoadBalancingV2Client,Ec2Client |
RDS | DescribeDbInstancesRequest/Response, | RdsClient |
ElastiCache | DescribeCacheClustersResponse,DescribeCacheSubnetGroupsResponse,ListTagsForResourceRequest/Response | ElastiCacheClient |
S3 | ListBucketsResponse,ListObjectsV2Request/Response,GetBucketTaggingRequest/Response,GetPublicAccessBlockRequest/Response,GetBucketLifecycleConfigurationRequest/Response,GetBucketReplicationRequest/Response,ListBucketInventoryConfigurationsRequest/Response | S3Client |
ElastiCache | DescribeCacheClustersResponse,DescribeCacheSubnetGroupsResponse,ListTagsForResourceRequest/Response | ElastiCacheClient |
DocumentDB | DescribeSecurityGroupsResponse,DescribeDbClustersResponse,ListTagsForResourceRequest/Response, | DocDbClient,Ec2Client |
ES | DescribeCacheClustersResponse,DescribeCacheSubnetGroupsResponse,ListTagsForResourceRequest/Response | ElastiCacheClient |
KAFAKA | DescribeSecurityGroupsResponse,ListClustersV2Request/Response | KafkaClient,Ec2Client |
SECURITY_GROUP_RULE | DescribeSecurityGroupRulesRequest/Response,DescribeSecurityGroupRulesIterable | Ec2Client |
OLAPDB | DescribeClustersResponse, | RedshiftClient |
EKS | ListClustersRequest/Response,DescribeClusterRequest/Response | EksClient |
GlobalAccelerator | ListAcceleratorsRequest/Response | GlobalAcceleratorClient |
Athena | ListDataCatalogsRequest/Response,ListDatabasesRequest/Response,ListTableMetadataRequest/Response | AthenaClient |
Lambda | ListFunctionsRequest/Response,GetFunctionRequest/Response, | LambdaClient |
CloudFront | ListDistributionsResponse,ListTagsForResourceRequest/Response, | CloudFrontClient |
MQ | ListBrokersResponse,DescribeBrokerRequest/Response, | MqClient |
SQS | ListQueuesRequest/Response,GetQueueAttributesRequest/Response,ListQueueTagsRequest/Response | SqsClient |
AutoScaling | DescribeAutoScalingGroupsRequest/Response | AutoScalingClient |
EIP | DescribeAddressesResponse | Ec2Client |