Alibaba Cloud DNS PrivateZone is integrated with ActionTrail. With ActionTrail, you can view and retrieve user behavior logs and deliver these logs to a Simple Log Service (SLS) Logstore or an Object Storage Service (OSS) bucket. ActionTrail allows you to audit events in real time and troubleshoot issues.
Event logs of PrivateZone recorded by ActionTrail
ActionTrail records PrivateZone API calls. In the event logs, the value of the eventType parameter is ApiCall. For more information, see List of operations by function.
Sample event log
The following content displays the event log recorded when a DNS record is added by calling AddZoneRecord:
{
"eventId": "99680534-****-****-****-DCFD92E18FAB",
"eventVersion": 1,
"responseElements": {
"RequestId": "99680534-****-****-****-DCFD92E18FAB",
"RecordId": 175***657,
"Success": true
},
"eventSource": "pvtz.aliyuncs.com",
"requestParameters": {
"Rr": "abc",
"userClientIp": "100.**.***.69",
"AcsHost": "pvtz.aliyuncs.com",
"ZoneId": "d696741102e*******0ca13e934bd07",
"RequestId": "99680534-****-****-****-DCFD92E18FAB",
"Lang": "zh",
"HostId": "pvtz.aliyuncs.com",
"Ttl": 60,
"Type": "A",
"ServiceCode": "pvtz",
"AcsProduct": "pvtz",
"UserClientIp": "100.**.***.69",
"Value": "5.*.*.5",
"RegionId": "cn-hangzhou"
},
"sourceIpAddress": "Internal",
"userAgent": "AlibabaCloud (Linux; amd64) Java/1.**_172-b9 Core/***.6 HTTPClient/ApacheHttpClient",
"eventType": "ApiCall",
"referencedResources": {
"ACS::PrivateZone::ZoneRecord": [
"175***657"
]
},
"userIdentity": {
updateZOne "sessionContext": {
"attributes": {
"mfaAuthenticated": "false"
}
},
"accountId": "12046******1685",
"principalId": "12046******1685",
"type": "root-account",
"userName": "root"
},
"serviceName": "PrivateZone",
"additionalEventData": {
"Scheme": "http"
},
"apiVersion": "2018-01-01",
"requestId": "99680534-****-****-****-DCFD92E18FAB",
"eventTime": "2021-01-08T04:56:37Z",
"isGlobal": false,
"acsRegion": "cn-hangzhou",
"eventName": "AddZoneRecord"
}