DocumentationLLM Optimizer

Log Forwarding: CloudFront log-forwarding-cloudfront

Last update: Tue Mar 17 2026 00:00:00 GMT+0000 (Coordinated Universal Time)

This page explains how to forward CDN logs from CloudFront to Adobe’s S3 bucket for agentic traffic data collection. You will use the LLM Optimizer CDN configuration page to onboard to LLM Optimizer. After the onboarding process is complete, follow the steps provided on this page to configure log forwarding in the CloudFront dashboard console.

Step 1: Onboard in LLM Optimizer step-1

On the LLM Optimizer page https://llmo.now/:

  1. Go to the Customer Configuration Dashboard.

    Configuration button

  2. Click the CDN Configuration tab.

    CDN Configuration tab

  3. Click Get Started.

  4. Next to Activate AI Traffic Insights, click Configure.

    Configure

  5. Enter your AWS Account ID.

    AWS Account ID

  6. Select CloudFront (BYOCDN).

    Select CloudFront

  7. Click Onboard.

    Onboard button

Step 2: Enable standard logging (CloudFront console) step-2

To enable standard logging, from the AWS Management console:

  1. Access the CloudFront console and update an existing distribution.

  2. Open the Logging tab.

  3. Choose Add, then select the service to receive logs, in this case Amazon S3.

  4. For Destination, select or create the resource. Enter the bucket name, you can copy the value from the LLM Optimizer CDN configuration page.

    CloudFront bucket name

  5. Configure Additional settings:

    • Field selection — choose the log file fields. See the required fields on the LLM Optimizer CDN configuration page.

      CloudFront field selection

    • Partitioning — copy the path suffix from the LLM Optimizer configuration page.

      CloudFront partitioning

    • Output format — the format should be JSON.

      CloudFront output format

  6. Complete the steps to update or create the distribution.

  7. On the Logs page, confirm that Enabled appears next to the distribution.

Enable standard logging for cross-account delivery cross-account

The source account (with the CloudFront distribution) sends access logs to the destination account (the S3 bucket shown in the LLM Optimizer CDN configuration page). Both accounts must have the right permissions.

For example: the source account 111111111111 sends logs to an S3 bucket in destination account 222222222222. You can use the AWS Commad Line Interface.

NOTE
In the commands below, replace the delivery destination ARN value (arn:aws:logs:us-east-1:222222222222:delivery-destination:cloudfront-delivery-destination) with the value of the Delivery destination ARN from the LLM Optimizer configuration page.

Delivery destination ARN

Configure the source account source-account

Next, you need to configure the source account:

  1. Create a delivery source - replace the name and distribution ARN:

    code language-bash 
    aws logs put-delivery-source --name s3-cf-delivery \
  --resource-arn arn:aws:cloudfront::111111111111:distribution/E1TR1RHV123ABC \
  --log-type ACCESS_LOGS

  2. Create the delivery - link source to destination; use the destination ARN from the “Configure the destination account” step:

    code language-bash 
    aws logs create-delivery --delivery-source-name s3-cf-delivery \
  --delivery-destination-arn arn:aws:logs:us-east-1:222222222222:delivery-destination:cloudfront-delivery-destination

  3. Verify:

    • In the source account: CloudFront console > your distribution > Logging tab. Under Type you should see the S3 cross-account log delivery.
    • In the destination account: S3 console > bucket. You should see the prefix (for example, MyLogPrefix) and the logs in that folder.
recommendation-more-help
e65680c9-2bec-439b-acb0-8209e7c74d0d