OpenShift Logs to AWS: Enterprise Log Management Transformation for MBH

A Case Study on Cost-Effective Hybrid Cloud Logging Architecture

MBH Bank successfully transformed its enterprise logging infrastructure by migrating from on-premises OpenShift Container Platform (OCP) to a hybrid AWS cloud solution, achieving significant cost reductions while maintaining operational excellence. Working closely with AWS Advanced Consulting Partner TC2, MBH Bank implemented a two-phase approach: first, establishing a proof-of-concept with AWS CloudWatch Logs, then optimising costs by migrating to AWS Managed Streaming for Kafka (MSK). 

The project demonstrates the power of AWS’s comprehensive logging and analytics services, delivering a 70% cost reduction in log processing while improving scalability, reliability, and analytics capabilities. This transformation showcases how traditional financial institutions can leverage AWS’s cloud-native services to modernize their infrastructure while maintaining strict security and compliance requirements. 

Key achievements are the following: 70% reduction in log processing costs, seamless integration between on-premises and AWS environments, enhanced log analytics capabilities with Amazon OpenSearch, improved operational visibility and monitoring and scalable architecture supporting future growth.

 

Business Challenge 

MBH Bank faced significant challenges with its existing on-premises logging infrastructure. As a leading financial institution, they generated massive volumes of log data from their OpenShift Container Platform, requiring centralized management, analysis, and long-term archival capabilities. 

Technical, operational and compliance requirements have been collected. For example, an increase in log size, that is, exponentially growing log volumes from containerized applications. Additionally, there was the challenge of managing and analysing distributed logs across multiple environments, as well as a requirement for near real-time log analysis and alerting. From the cost side, there was a need for cost-effective long-term log storage and processing. In addition to all this, there were regulatory requirements for log retention and auditability. 

The bank required a solution that could handle its current 1 Gb/s Direct Connect bandwidth while providing room for future growth, all while maintaining the highest security standards expected in the financial services industry. 

 

Initial Solution 

Working with TC2, MBH Bank implemented a comprehensive proof-of-concept leveraging AWS’s native logging services. The initial architecture demonstrated the feasibility of hybrid cloud logging while establishing the foundation for future optimizations. 

The initial solution utilized AWS CloudWatch Logs as the central log aggregation service, with Amazon OpenSearch providing advanced analytics capabilities. The architecture included the network infrastructure (Direct Connect, VPC Endpoints, Network Firewall), as well as the data processing pipeline (CloudWatch Logs, AWS Lambda, Amazon SQS, Amazon OpenSearch, Amazon S3). 

The initial architecture successfully demonstrated the seamless integration between on-premises OpenShift and AWS services, the reliable log delivery and processing at scale, the advanced analytics capabilities through OpenSearch, and the operational improvements in log visibility and management, taking into account compliance with financial services regulatory requirements. 

Evolved Solution Architecture 

Following the successful initail phase, MBH Bank and TC2 identified a critical optimization opportunity. While the CloudWatch Logs solution proved technically sound, the massive volume of log data resulted in unexpectedly high operational costs because of the CloudWatch Logs ingestion costs scaled linearly with data volume, high-frequency log generation from containerised applications, and substantial costs for log storage and processing. 

The high costs threatened the long-term viability of the cloud logging solution, requiring immediate architectural optimisation while maintaining all existing functionality and performance characteristics. 

TC2’s cloud architects designed an innovative cost-optimised solution utilising AWS Managed Streaming for Kafka (MSK) as the primary data ingestion layer, dramatically reducing costs while enhancing scalability and reliability. 

The evolved solution replaced expensive CloudWatch Logs ingestion with a sophisticated streaming architecture based on Amazon Managed Streaming for Apache Kafka, which led to a high-throughput, low-cost log ingestion solution. 

The process involves a new, advanced data flow: the on-premise OpenShift logs stream directly to AWS MSK topics, then a Lambda consumer processes MSK messages, and Kinesis Data Firehose delivers the processed logs to S3 with automated compression and partitioning and lifecycle policies for cost-optimized storage.  

 

 

 Conclusion 

The successful transformation of MBH Bank’s logging infrastructure demonstrates the tremendous value of AWS’s comprehensive cloud services when implemented by experienced partners like TC2. This project demonstrates how traditional financial institutions can utilise cloud-native technologies to achieve substantial cost savings while enhancing operational capabilities. 

This case study serves as a blueprint for other financial institutions seeking to modernize their infrastructure while maintaining the highest standards of security, compliance, and operational excellence. The partnership between MBH Bank and TC2, powered by AWS’s industry-leading cloud services, has created a foundation for continued innovation and growth in the digital banking era. 

Other case studies

Financial Services

ReCasher

Our client needed a flexibly expandable containerized platform. The product, being a financial solution, had to meet strict card handling standards.

Read more
Media & Entertainment

Bauer Media

Bauer Media wanted to use AWS to create analyzes from the customer data of the price and product comparison portals it owned to improve its marketing activities.

Read more
Information Technology

ChemAxon

ChemAxon wanted to gain up-to-date knowledge about cloud-based services for AWS projects.

Read more
Energy & Utility

ELMŰ

ELMŰ has been looking for a cloud-based technology that allows applications to run cost-effectively and supports migration from the data center to an agile service.

Read more
Energy & Utility

E.ON

Within the framework of the large-scale cloud transformation project, E.ON wanted to modernize its systems and applications with the help of cloud technology.

Read more
Information Technology

EPAM

Through its expertise, EPAM also provides state-of-the-art cloud-based technology in the field of data warehousing. He applied for a grant for his project.

Read more
Information Technology

Formula/400 Kft.

For its next-generation Formula / 400 application for fintech insurance companies, it was looking for an automated backend infrastructure focused on security and scalability.

Read more
Financial Services

Fundamenta

A Fundamenta Lakáskassza Zrt. Planned to implement its new application platform and frontend applications with a microservice architecture, on a Kubernetes platform, operated in the cloud.

Read more
Information Technology

Instant CMR

InstantCMR sought high-availability, secure, cloud-based managed service and operations support for its mobile-related mobile applications.

Read more
Food

Intersnack

Intersnack uses state-of-the-art cloud-based Big Data technologies that it wanted to gain deeper knowledge from TC2 experts.

Read more
Retail

Web & App

The number of visitors to the e-commerce portal and the initiation of transactions on the site has already been a significant burden due to the higher access data of foreign sites. Running this in traditional VPS (server hosting) centers with a traditional, “brute force” approach, Web & App was mostly unable to handle it at a very high cost.

Read more
Telecommunications

Magyar Telekom

Magyar Telekom planned to implement public cloud informatics and hybrid architecture to solve its VMware-based private cloud.

Read more
Pharma

Richter

Extending business and professional activities, Richter Gedeon acquired a gynecological application. The product was developed onto AWS, and they sought expert support for its hosting.

Read more
Telecommunications

Telenor

Telenor's goal was to examine and evaluate cloud IT architectures and services that support the development of its existing applications and infrastructure platform.

Read more
Information Technology

Doqsys

DOQSYS required a higher availability and easier to operate environment that flexibly follows needs in terms of both resources and costs.

Read more
Information Technology

Inovivo Group (formerly Ness Hungary)

The goal of Ness Hungary was to provide its customers with a competitive offer for the implementation of their SAP systems.

Read more
Telecommunications

Vodafone

Based on the strategic guidelines of Vodafone group, the Hungarian subsidiary of Vodafone decided to run at least 40% of its IT workloads in the cloud by 2020.

Read more
Food

ERBA – TE Food

Erba was looking for an agile platform that provided standard operation, easy integration, low-cost operation, and fast and global scalability.

Read more
Information Technology

Transcend

Transcend has requested TC2 to develop, optimize and operate its AWS-based platform. In addition to the flexible management of everyday needs, robustness and responsiveness were also decisive aspects in the operation.

Read more
Retail

Perfect Play

Perfect Play wanted to run WordPress / PHP-based pages more efficiently and reliably.

Read more
Information Technology

Loxon Solutions

Loxon Solutions was looking for a so-called low-code platform that best supports the launch of their products.

Read more
Media & Entertainment

Endless Flux Labs

Endless Flux Labs planned to migrate high-traffic news sites to a well-scalable cloud platform.

Read more
Healthcare

Borsod Mentő Betegszállító Szolgálat

Borsod-Mentő was looking for a low-cost, high-reliability, HIPAA-compliant archiving system.

Read more
Financial Services

SEON

SEON faced architectural challenges for which it sought external support from TC2 experts.

Read more
Media & Entertainment

Jaystack / Bourne Assetbox

Jaystack has sought TC2’s expert help to set up and operate Bourne’s assetbox content provider’s new website.

Read more
Information Technology

XS Matrix

The XS Matrix solutions run on AWS, and TC2 was asked to design and implement a modern, containerized, native cloud architecture for smooth operation.

Read more
Media & Entertainment

ATV

The portal is built on AWS platform. Therefore, ATV asked TC2 to run the portal assessment according to best practices.

Read more

Scalable, high availability cloud infrastructure for Számlázz.hu

Számlázz.hu chose AWS cloud services and TC2, one of the largest and most competent AWS partners in the country.

Read more
aws
Retail
sap
sap on aws

Euronics Hungary Transitions SAP Workloads to AWS

The full migration of Euronics Hungary’s SAP systems was completed in just nine months.

Read more
sap
sap on aws
Telecommunications

SAP System Separation and Rebuilding for One Hungary

The implementation of this highly complex SAP on AWS platform was completed with remarkable speed and efficiency.

Read more