Sold by: Lynxroute
Deployed on AWS
Free Trial
This product has charges associated with it for hardening, security configuration, and support.
Grafana Loki is a single-binary, horizontally-scalable log aggregation system queried with LogQL, run here monolithic on a single node with filesystem storage. Unlike bare Loki AMIs that ship the HTTP API wide open on 0.0.0.0:3100 with no authentication, no TLS, and usage analytics phoning home, this Lynxroute build is ready out of the box: a unique Basic Auth password generated at first launch, an Nginx TLS reverse proxy on 443, the Loki API and gRPC bound to localhost only, usage analytics disabled, UFW firewall pre-configured, and a CIS Level 1 hardened Ubuntu 24.04 LTS base.
AGPL-3.0 license - fully auditable, no vendor lock-in.
Overview
This is a repackaged software product wherein additional charges apply for hardening, security configuration, and support.
WHAT IS GRAFANA LOKI
Grafana Loki is a horizontally-scalable, multi-tenant log aggregation system, shipped as a single statically linked Go binary and run here in monolithic mode on one node. Instead of indexing the full text of every log line, Loki indexes only a small set of labels and stores compressed log chunks, which keeps storage and cost low. It exposes an HTTP API: push logs in (Promtail, Grafana Alloy, the Docker logging driver, Fluentd or Fluent Bit) and query them back with LogQL, Loki's label-and-filter query language. This image stores chunks and the TSDB index on the local filesystem under /var/lib/loki, with retention and compaction enabled. Loki has no web UI of its own; you query it through Grafana (it pairs with the Lynxroute Grafana image as a data source), logcli, or curl. AGPL-3.0 license, no vendor lock-in. Running your own Loki keeps all log data inside your AWS account.
WHAT THIS AMI ADDS
Security hardening:
- A unique Basic Auth password generated at first launch for the Nginx perimeter (Loki has no native auth)
- Nginx reverse proxy with TLS - the Loki API proxied on port 443
- Loki HTTP API (3100) and gRPC (9096) bound to localhost only - Nginx is the only exposed door
- Usage analytics disabled (no phone-home to the upstream telemetry endpoint)
- Loki runs as a non-root service with a restricted systemd unit
- UFW firewall - ports 22, 80, 443 only
- fail2ban, AppArmor
- CVE scan - every image is scanned for vulnerabilities before release
OS hardening (CIS Level 1):
- CIS Ubuntu 24.04 LTS Level 1 benchmark applied via ansible-lockdown
- auditd, SSH hardening, Kernel hardening, IMDSv2 enforced
Compliance artifacts:
- SBOM - CycloneDX 1.6 at /etc/lynxroute/sbom.json
- CIS Conformance Report at /etc/lynxroute/cis-report.html
- CIS Tailored Profile at /usr/share/doc/lynxroute/CIS_TAILORED_PROFILE.md
Highlights
- Loki security baked in: a unique Basic Auth password generated at first launch, an Nginx TLS reverse proxy on 443, the Loki API and gRPC bound to localhost only, and usage analytics disabled - unlike bare Loki AMIs that ship the HTTP API open on 0.0.0.0 with no authentication, no TLS, and analytics reporting left on.
- CIS Level 1 hardened Ubuntu 24.04 LTS: auditd, fail2ban, AppArmor, SSH key-only, IMDSv2 enforced. CVE-scanned before every release. SBOM (CycloneDX) and CIS Conformance Report included.
- Cost-efficient log aggregation: indexes labels not full text, queried with LogQL, pairs with Grafana as a data source. Grafana Loki AGPL-3.0 license - fully auditable, no vendor lock-in.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 24.04
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free for 5 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/hour |
|---|---|
t3.medium Recommended | $0.02 |
t3.large | $0.03 |
t3.small | $0.02 |
m6i.xlarge | $0.05 |
m6i.large | $0.03 |
Vendor refund policy
We do not offer refunds for this product. AWS infrastructure charges (EC2, EBS, data transfer) are billed separately by AWS and are not refundable by us.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Grafana Loki 3.7.2 - Initial release (June 2026)
- Grafana Loki 3.7.2 on Ubuntu 24.04 LTS
- Loki OSS (AGPL-3.0) single binary, run monolithic (-target=all) with filesystem chunk storage
- Loki HTTP API (3100) and gRPC (9096) bound to localhost only - Nginx is the only exposed door
- Unique Basic Auth password generated at first launch for the Nginx TLS perimeter on 443
- Usage analytics disabled (no phone-home)
- Loki runs as a non-root service with a restricted systemd unit
- CIS Level 1 hardening applied (ansible-lockdown/UBUNTU24-CIS)
- CVE-scanned before every release
- UFW firewall pre-configured (ports 22, 80, 443 only)
- fail2ban, auditd, AppArmor pre-configured
- SBOM (CycloneDX 1.6) at /etc/lynxroute/sbom.json
- CIS Conformance Report (OpenSCAP) at /etc/lynxroute/cis-report.html
- IMDSv2 enforced
Additional details
Usage instructions
- Launch instance (t3.medium recommended)
- Open Security Group - allow TCP 443 and TCP 80 from your IP
- SSH: ssh -i key.pem ubuntu@<PUBLIC_IP>
- Read credentials: sudo cat /root/loki-credentials.txt
- Open https://<PUBLIC_IP> in your browser - accept the self-signed certificate warning, sign in with the Basic Auth user and the generated password; you will see the Loki API info page
- Add Loki to Grafana: data source type Loki, URL https://<PUBLIC_IP>/, Basic Auth on (user admin + the generated password), TLS skip-verify until you install a CA certificate
- Ship logs to https://<PUBLIC_IP>/loki/api/v1/push (Promtail, Grafana Alloy, the Docker loki driver) and query with LogQL
Loki has no web UI of its own - it is a LogQL API backend queried through Grafana, logcli, or curl. The Basic Auth password is generated uniquely at first launch. Credentials are saved to /root/loki-credentials.txt at first boot. Logs are stored on the local filesystem under /var/lib/loki with retention and compaction enabled. Replace the self-signed TLS certificate with a CA-signed certificate (sudo certbot --nginx) for production use.
Resources
Vendor resources
Support
Vendor support
Visit us online: https://lynxroute.com
For Loki documentation: https://grafana.com/docs/loki/latest/ For Loki upstream issues:
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Upgrade open-source Grafana with premium data sources, access control, reporting and other functionality, as well as support and professional services from Grafana Labs, the creators of Grafana. This Grafana Enterprise offering is for customers who want to self-manage Grafana on AWS.
Grafana Kubernetes Monitoring provides a simplified approach that enables you to monitor your Kubernetes fleet. You can use its rich interface to drill into your data, as well as take advantage of preconfigured dashboards, recording rules, and alert rules. Grafana Kubernetes Monitoring is only available with an active Grafana Cloud License.
Grafana Cloud is a fully managed, composable observability platform that brings together Prometheus metrics, logs, and traces with Grafana visualizations and integrates with 100+ data sources. Prebuilt dashboards help you get started in minutes monitoring your cloud native infrastructure, services, and applications.
This product has charges associated with it for seller support. Grafana on Ubuntu 22.04 LTS is a powerful, open-source analytics and monitoring platform that enables users to visualize and analyze their data seamlessly. With its intuitive dashboard, users can create, explore, and share interactive graphs while integrating with various data sources, including Prometheus, Elasticsearch, and more. Ideal for DevOps teams and data engineers, this AMI allows for quick deployments in the AWS EC2 cloud, ensuring scalability and flexibility for monitoring applications. Additionally, leveraging Ubuntu 22.04 LTS provides a stable and secure environment, with long-term support, making it perfect for production workloads. Enhance your data observability and operational efficiency with this robust Grafana solution designed for the cloud.
Grafana Cloud - BYOC: Grafana Cloud Stack deployed in your infrastructure is a fully managed, composable observability platform that brings together Prometheus metrics, logs, and traces with Grafana visualizations and integrates with 100+ data sources. Prebuilt dashboards help you get started in minutes monitoring your cloud native infrastructure, services, and applications. All that deployed in your own AWS infrastructure
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.