API Gateway access logs cost: how to estimate ingestion and retention

API Gateway access logging is easy to enable, but at high request volume it can become a real bill line item. A good estimate needs three parts: ingestion (GB/day), retention (GB-month), and queries (if you run searches/analytics over the logs).

Where the cost shows up

  • Ingestion: GB ingested into your logging destination (often CloudWatch Logs).
  • Storage: retained GB-month (retention policy creates the steady-state storage baseline).
  • Queries/scans: log searches and dashboards (often the surprise during incidents).

If you already have a log pipeline, use measured ingestion and query scan volumes instead of estimating from first principles.

Step 1: estimate average bytes per log line

  • Pick a representative window (normal traffic + a small slice of peak).
  • Sample a few thousand log lines and compute average bytes/line (and p95 if sizes vary a lot).
  • Watch the big fields: long headers, JWT claims, user agents, and referrers.

Step 2: convert requests into GB/day

Approximation: GB/day ~= requests/day x bytes/log / 1e9.

If you only have requests/month, use: requests/day ~= requests/month / 30.4.

Access log cost calculator RPS to requests

Step 3: model retention (GB-month)

Retention creates a steady storage baseline. If you ingest 10 GB/day and retain 30 days, steady-state stored volume is roughly 300 GB.

Model retention separately from ingestion: they are different rate cards in many tools.

Step 4: add query/scan costs (often the surprise)

  • Incident response: repeated broad searches can scan huge volumes.
  • Dashboards: scheduled queries add predictable recurring scans.
  • Bad filters: scanning unpartitioned data is expensive.

Tool: Log search/scan cost calculator.

How to reduce access log cost (without losing signal)

  • Make the log format intentional: drop large headers; log stable identifiers; avoid duplicating payload fields.
  • Separate “always-on” vs “debug”: keep a slim always-on format and enable verbose logging only during investigations.
  • Retention by value: short retention for noisy success logs, longer retention for security signals where required.
  • Prevent retry storms: timeouts and retries multiply both requests and log volume.

Validation checklist

  • Validate requests/day from a representative window (include weekday/weekend patterns).
  • Validate bytes/log using a real sample after finalizing the log format.
  • Confirm retention policy (days) and whether logs are replicated/forwarded elsewhere.
  • Estimate query frequency and scan size for dashboards and incident workflows.

Related links

API Gateway cost Log ingestion CloudWatch Logs pricing Log costs (overview)

Sources

Related guides

CloudWatch Logs pricing: ingestion, retention, and queries
A practical CloudWatch Logs pricing guide: model ingestion (GB/day), retention (GB-month), and query/scan costs (Insights/Athena). Includes pitfalls and a validation checklist.
Estimate API requests per month (RPS, logs, and metrics)
How to estimate monthly API request volume for cost models: from CloudWatch metrics, from access logs, and from RPS charts (with common pitfalls like retries and health checks).
API Gateway cost optimization: reduce requests, bytes, and log spend
A practical playbook to reduce API Gateway spend: identify the dominant driver (requests, transfer, or logs), then apply high-leverage fixes with a validation checklist.
API Gateway vs ALB vs CloudFront cost: what to compare (requests, transfer, add-ons)
A practical cost comparison of API Gateway, Application Load Balancer (ALB), and CloudFront. Compare request pricing, data transfer, caching impact, WAF, logs, and the hidden line items that change the answer.
AWS CloudWatch Metrics Pricing & Cost Guide
CloudWatch metrics cost model: custom metrics, API requests, dashboards, and retention.
CloudFront logs cost: estimate storage, retention, and queries
How to estimate CloudFront log costs: log volume (GB/day), retention (GB-month), and downstream query/scan costs (Athena/SIEM). Includes practical cost-control levers.

Related calculators

Log Cost Calculator
Estimate total log costs: ingestion, storage, and scan/search.
Log Ingestion Cost Calculator
Estimate monthly log ingestion cost from GB/day or from event rate and $/GB pricing.
Log Retention Storage Cost Calculator
Estimate retained log storage cost from GB/day, retention days, and $/GB-month pricing.
Log Search Scan Cost Calculator
Estimate monthly scan charges from GB scanned per day and $/GB pricing.
RPS to Monthly Requests Calculator
Estimate monthly request volume from RPS, hours/day, and utilization.
API Request Cost Calculator
Estimate request-based charges from monthly requests and $ per million.

FAQ

What drives API Gateway access log cost?
Access log cost is driven by ingestion volume (GB/day) and retention (GB-month). The two biggest inputs are request volume and how verbose your log format is.
How do I estimate average log size?
Sample a few thousand log lines and compute average bytes per line. Include the exact fields you log because headers and user agents can change size materially.
What's the fastest way to estimate monthly cost?
Convert requests/day x bytes/log into GB/day, then model ingestion and retention separately. Add query/scan costs if you run frequent searches.
Last updated: 2026-01-27