This hands-on lab allows you to practice analyzing data stored in S3 using SQL queries in AWS Athena. Additionally, we use AWS Glue to reduce storage costs and increase the efficiency of query scans.
We’ll walk through an interactive query service which helps to analyze data for various AWS services, including CloudFront access logs. You create a table, load the data partitions, and query the data in the table using SQL.
Note: Until a new version of this lab is created, please use the legacy Athena interface for the query editor.
Learning Objectives
Successfully complete this lab by achieving the following learning objectives:
- Create a Table from S3 Bucket Metadata
- Navigate to the Amazon Athena service:
- Click Get Started if this is our first trip into Athena, otherwise continue to #2
- First, add an S3 location for your queries by clicking on the ‘Before you run your first query, you need to set up a query result location in Amazon S3.‘ link
- Paste in the S3 Bucket ARN we copied earlier, being sure to remove "arn:aws:s3:::" from the beginning of the data we paste in and including a trailling slash
- Once the S3 location is properly configured you will notice the Run query button has been made active.
- In the query editor paste the following query, then press Ctrl+Enter to run the query:
CREATE database aws_service_logs - Under Tables, select Create Table > from S3 bucket data.
- Step 1: Name and Location:
- Database:
aws_service_logs - Table:
cf_access_optimized - Location:
s3://Name of the generated S3 bucket/(including trailing slash)
- Database:
- Step 2: Data Format
- Select Parquet
- Step 3: Columns
- Bulk add columns using this data:
time timestamp, location string, bytes bigint, requestip string, method string, host string, uri string, status int, referrer string, useragent string, querystring string, cookie string, resulttype string, requestid string, hostheader string, requestprotocol string, requestbytes bigint, timetaken double, xforwardedfor string, sslprotocol string, sslcipher string, responseresulttype string, httpversion string
- Bulk add columns using this data:
- Step 4: Partitions
- Column Name:
year, Column Type:string - Column Name:
month, Column Type:string - Column Name:
day, Column Type:string - Click Create table
- Column Name:
- Click Run query on the generated SQL statement. Ensure the S3 bucket location in the query matches the one generated in your lab environment.
- Navigate to the Amazon Athena service:
- Add Partition Metadata
- Open a new query tab
- Run the following query:
MSCK REPAIR TABLE aws_service_logs.cf_access_optimized - Verify the partitions were created with the following query:
SELECT count(*) AS rowcount FROM aws_service_logs.cf_access_optimized. You should see207535rows present in the table. - Run the following query:
SELECT * FROM aws_service_logs.cf_access_optimized LIMIT 10
- Query the Total Bytes Served in a Date Range
- Perform the following query:
SELECT SUM(bytes) AS total_bytes FROM aws_service_logs.cf_access_optimized WHERE time BETWEEN TIMESTAMP '2018-11-02' AND TIMESTAMP '2018-11-03' - Observe the value for
total_bytesequals87310409.
- Perform the following query:
