随笔分类 - AWS
摘要:Ampt lets developers rapidly build, deploy, and scale JavaScript/TypeScript apps in the cloud without complicated configs or managing infrastructure.
阅读全文
摘要:Company plans to deploy Docker containers on AWS at lowest cost? Use ECS with a clsuter of SPot instances and enable Spot instance draining. Company p
阅读全文
摘要:High availability and elastic scalbility for web servers? Use EC2 Auto Scaling and An application load balancer across multi AZs. Low-Latency connecti
阅读全文
摘要:Global compnay needs to centrally manage creation of infrastructure services to accounts in AWS organizations? Define infrastructure in CloudFormation
阅读全文
摘要:Snowball Edge used to transfer millions of small fiels using a shell script. Transfer times are very slow? Perform multiple copy operations at one tim
阅读全文
摘要:Secuirty logs generated by AWS WAF musts be sent to a third-party auditing application? Send logs to Kinesis Data Firehose and configure the auditing
阅读全文
摘要:API activity must be captured from multiple accounts and stored in a centra security account? Use CloudTrail in each account to record API activity an
阅读全文
摘要:Lock away your AWS account root user access keys Create individual IAM users Use groups to assign permissions to IAM users Grant least privilege Get s
阅读全文
摘要:High availability and elastic scalaility for web servers? Use EC2 Auto Scaling and an ALB across Multi AZs Low-latency connections over UDP to a pool
阅读全文
摘要:CloudFront Path Patterns You can define Behaviors to server different Origin for differnet request. For example: Set Behavior if match *.jpg redirect
阅读全文
摘要:Need to enable custom domain name and encryption in transit for an application running behind an Application Load Balancer? Use AWS Route 53 to create
阅读全文
摘要:If we want ALB only accpet traffic from CloudFront, NOT from public www. Then we can add a customer head in CloudFront. In ALB, we set conditional rul
阅读全文
摘要:Relational database running on MySQL must be migrated to AWS and must be highly avaiable? Use RDS MySQL and conigure a multi-AZ standby node for HA. A
阅读全文
摘要:CloudTrail You can use CloudTrail to stream log into CloudWatch Logs Then in the CloudWatch, you can setup Metric Filters based on certain condition,
阅读全文
摘要:AWS Control Tower allow you to create, configure and manage multiple AWS accounts securly through automating ongooing policy management and guardrails
阅读全文
摘要:ASW Inspector Security, mainly use for EC2 An AWS Service which provides automataed security assessments on your EC2 application. Common Vnlnerabiliti
阅读全文
摘要:Error might happen: Reason:
阅读全文
摘要:We are going to create a A private host zone and test this private host zone with VPC1 and VPC2... for VPC3, you can follow the VPC2 as example. Creat
阅读全文
摘要:Instance Profile contains Temporary credentials Role IP will help to rotate the temporary credentials on your behalf. in short, IP works as "Who am I"
阅读全文
摘要:You can auto assign a public IP address when you launch a new EC2 instance. But if you didn't and you want to assign one after launched, you can use E
阅读全文
浙公网安备 33010602011771号