Forwarded from Rinat Uzbekov
50% скидка на экзамен!
https://pages.awscloud.com/GLOBAL_TRAINCERT_takethechallenge.html
https://pages.awscloud.com/GLOBAL_TRAINCERT_takethechallenge.html
Amazon Web Services, Inc.
Amazon Web Services (AWS) - Cloud Computing Services
Amazon Web Services offers reliable, scalable, and inexpensive cloud computing services. Free to join, pay only for what you use.
Forwarded from DK
Hint. Если в Alarm в Action вы видете
то посмотреть ошибку можно с помощью
Например:
Failed to execute action <arn>. Received error: ""то посмотреть ошибку можно с помощью
aws cloudwatch describe-alarm-history --alarm-name <alarm-name> --history-item-type ActionНапример:
{
"AlarmName": "Name",
"AlarmType": "MetricAlarm",
"Timestamp": "2021-06-07T04:50:25.910000+00:00",
"HistoryItemType": "Action",
"HistorySummary": "Failed to execute AutoScaling action: No step adjustment found for metric value [0.0, 0.0] and breach delta -1.0",
"HistoryData": "{\"actionState\":\"Failed\",\"stateUpdateTimestamp\":1623041425825,\"notificationResource\":\"<arn>\",\"publishedMessage\":null,\"error\":null}"
},Forwarded from Rinat Uzbekov
Amazon
AWS Summits Overview
Foster continuous innovation, gain new skills, and network with peers at AWS Summits.
Уважаемые, устал искать, потому прошу помощи зала —сколько стоит Egress-only internet gateway?
Anonymous Poll
26%
Как Internet GW (нисколько)
10%
Как NAT GW (30$/мес)
4%
Другой вариант
59%
А что это? (или посмотреть результаты)
Старт-стоп RDS по расписанию с помощью SSM:
https://aws.amazon.com/blogs/database/schedule-amazon-rds-stop-and-start-using-aws-systems-manager/
Старт-стоп RDS по расписанию с помощью Лямбды:
https://aws.amazon.com/blogs/database/schedule-amazon-rds-stop-and-start-using-aws-lambda/
#RDS #SSM #Lambda
https://aws.amazon.com/blogs/database/schedule-amazon-rds-stop-and-start-using-aws-systems-manager/
Старт-стоп RDS по расписанию с помощью Лямбды:
https://aws.amazon.com/blogs/database/schedule-amazon-rds-stop-and-start-using-aws-lambda/
#RDS #SSM #Lambda
Amazon
Schedule Amazon RDS stop and start using AWS Systems Manager | Amazon Web Services
Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. Traditional relational databases require time spent on capacity planning, maintenance, backup, and recovery; a substantial amount…
Новый AWS регион в 2023-м году — Тель-Авив, Израиль:
https://aws.amazon.com/blogs/aws/in-the-works-aws-region-in-tel-aviv-israel/
Регион планируется к сдаче в первой половине 2023-го года.
#AWS_Regions
https://aws.amazon.com/blogs/aws/in-the-works-aws-region-in-tel-aviv-israel/
Регион планируется к сдаче в первой половине 2023-го года.
#AWS_Regions
Forwarded from Kazarin.online (Kirill Kazarin)
Для тех кто пропустил, ночью был сбой в AWS Frankfurtl (eu-central-1) который продлился с 8 до 11 вечера по UTC ( по нашим данным). В итоге отлетела одна AZ.
Официально это звучит как "connectivity issues to some EC2 instances, increased API errors rates, and degraded performance for some EBS volumes within a single Availability Zone"
Официальная причина:
"The root cause of this issue was a failure of a control system which disabled multiple air handlers in the affected Availability Zone. These air handlers move cool air to the servers and equipment, and when they were disabled, ambient temperatures began to rise. Servers and networking equipment in the affected Availability Zone began to power-off when unsafe temperatures were reached. Unfortunately, because this issue impacted several redundant network switches, a larger number of EC2 instances in this single Availability Zone lost network connectivity. While our operators would normally had been able to restore cooling before impact, a fire suppression system activated inside a section of the affected Availability Zone. When this system activates, the data center is evacuated and sealed, and a chemical is dispersed to remove oxygen from the air to extinguish any fire. In order to recover the impacted instances and network equipment, we needed to wait until the fire department was able to inspect the facility. After the fire department determined that there was no fire in the data center and it was safe to return, the building needed to be re-oxygenated before it was safe for engineers to enter the facility and restore the affected networking gear and servers. The fire suppression system that activated remains disabled. This system is designed to require smoke to activate and should not have discharged. This system will remain inactive until we are able to determine what triggered it improperly. In the meantime, alternate fire suppression measures are being used to
protect the data center. Once cooling was restored and the servers and network equipment was re-powered, affected instances recovered quickly. "
Если кратко - у ребят сбойнула система охлаждения, перегрелись коммутаторы и все накрылось пушным зверем. А потом еще сработала пожарка что помешало быстро восстановиться. Короче было весело. В итоге все рассосалось, сеть восстановили и все стало хорошо.
Официально это звучит как "connectivity issues to some EC2 instances, increased API errors rates, and degraded performance for some EBS volumes within a single Availability Zone"
Официальная причина:
"The root cause of this issue was a failure of a control system which disabled multiple air handlers in the affected Availability Zone. These air handlers move cool air to the servers and equipment, and when they were disabled, ambient temperatures began to rise. Servers and networking equipment in the affected Availability Zone began to power-off when unsafe temperatures were reached. Unfortunately, because this issue impacted several redundant network switches, a larger number of EC2 instances in this single Availability Zone lost network connectivity. While our operators would normally had been able to restore cooling before impact, a fire suppression system activated inside a section of the affected Availability Zone. When this system activates, the data center is evacuated and sealed, and a chemical is dispersed to remove oxygen from the air to extinguish any fire. In order to recover the impacted instances and network equipment, we needed to wait until the fire department was able to inspect the facility. After the fire department determined that there was no fire in the data center and it was safe to return, the building needed to be re-oxygenated before it was safe for engineers to enter the facility and restore the affected networking gear and servers. The fire suppression system that activated remains disabled. This system is designed to require smoke to activate and should not have discharged. This system will remain inactive until we are able to determine what triggered it improperly. In the meantime, alternate fire suppression measures are being used to
protect the data center. Once cooling was restored and the servers and network equipment was re-powered, affected instances recovered quickly. "
Если кратко - у ребят сбойнула система охлаждения, перегрелись коммутаторы и все накрылось пушным зверем. А потом еще сработала пожарка что помешало быстро восстановиться. Короче было весело. В итоге все рассосалось, сеть восстановили и все стало хорошо.
Forwarded from ДевОпс Інженер 🇺🇦 (Oleg Mykolaichenko)
Fastly: Summary of June 8 outage
8 июня половина интернета внезапно выключилась. Упали deb репы, куча статики и куча знаменитых сайтов. По ссылке - публичный summary их постмортема, выводы - Time-to-Recover 1 час 13 минут - вполне нормально для современного интернета:
- 09:47 Initial onset of global disruption
- 11:00 Majority of services recovered
Второй вывод - акции Fastly подросли на 16% после инцидента. Оказывается, неработающий сервис может быть полезным для бизнеса.
Третий вывод - если ваш Time-to-Recover меньше чем 1 час 13 минут, вы всегда можете аргументировать ‘Мы восстановились быстрее, чем Fastly’ 😁
https://www.fastly.com/blog/summary-of-june-8-outage
8 июня половина интернета внезапно выключилась. Упали deb репы, куча статики и куча знаменитых сайтов. По ссылке - публичный summary их постмортема, выводы - Time-to-Recover 1 час 13 минут - вполне нормально для современного интернета:
- 09:47 Initial onset of global disruption
- 11:00 Majority of services recovered
Второй вывод - акции Fastly подросли на 16% после инцидента. Оказывается, неработающий сервис может быть полезным для бизнеса.
Третий вывод - если ваш Time-to-Recover меньше чем 1 час 13 минут, вы всегда можете аргументировать ‘Мы восстановились быстрее, чем Fastly’ 😁
https://www.fastly.com/blog/summary-of-june-8-outage
Fastly
Summary of June 8 outage | Fastly
We experienced a global outage due to an undiscovered software bug that surfaced on June 8 when it was triggered by a valid customer configuration change. Here's a rundown of what happened, why, and what we're doing about it.
Тёмная AWS Console!
Жмём Developer Tools → Inspect → вкладка Application → Storage → Cookies → awsc-color-theme → меняем
То бишь тёмная тема уже есть, но не анонсирована. Так что пользуемся!
#AWS_console
Жмём Developer Tools → Inspect → вкладка Application → Storage → Cookies → awsc-color-theme → меняем
light на dark и вот оно, счастье!То бишь тёмная тема уже есть, но не анонсирована. Так что пользуемся!
#AWS_console
Используете ли вы AWS Resource Groups?
Anonymous Poll
6%
Да — часто/постоянно
13%
Иногда
30%
Нет
51%
А что это такое? (или посмотреть результаты)
This media is not supported in your browser
VIEW IN TELEGRAM
Девопсы в день релиза.
Forwarded from CloudSec Wine
🔸Retrieving AWS security credentials from the AWS console
How to retrieve AWS security credentials (AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY and AWS_SESSION_TOKEN) when authenticated in the AWS Console.
https://blog.christophetd.fr/retrieving-aws-security-credentials-from-the-aws-console/
#aws
How to retrieve AWS security credentials (AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY and AWS_SESSION_TOKEN) when authenticated in the AWS Console.
https://blog.christophetd.fr/retrieving-aws-security-credentials-from-the-aws-console/
#aws
Christophe Tafani-Dereeper
Retrieving AWS security credentials from the AWS console
Retrieve AWS security credentials from the AWS console using CloudShell.
Forwarded from AWS Security
Hi everybody!
I've published an article about things I did to secure cloudtrail logs to meet compliance requirements.
It's a detailed guide for anyone who is working with cloudtrail.
I hope you like it, I promise my next article will be shorter than this!
The article have been published in HackerNoon: https://hackernoon.com/10-things-i-did-to-increase-cloudtrail-logs-security-it2c3510
I've published an article about things I did to secure cloudtrail logs to meet compliance requirements.
It's a detailed guide for anyone who is working with cloudtrail.
I hope you like it, I promise my next article will be shorter than this!
The article have been published in HackerNoon: https://hackernoon.com/10-things-i-did-to-increase-cloudtrail-logs-security-it2c3510
Hackernoon
10 Things I Did To Increase CloudTrail Logs Security | HackerNoon
It's crucial to safeguard CloudTrail logs and enhance the security of them, to meet compliance regulatory requirements and internal business needs.
Forwarded from Leandro Mantovani
Hi people!
I've published another article, this time related to Classify Databases, using Macie.
I hope you'd enjoy it, and if yes, please spread the voice by sharing the post on Twitter, LinkedIn, etc.
https://hackernoon.com/using-aws-macie-to-classify-databases-x31g37d6
I've published another article, this time related to Classify Databases, using Macie.
I hope you'd enjoy it, and if yes, please spread the voice by sharing the post on Twitter, LinkedIn, etc.
https://hackernoon.com/using-aws-macie-to-classify-databases-x31g37d6
Hackernoon
Using AWS Macie To Classify Databases | HackerNoon
I'll show how to use Macie to scan any database, inclusive on-premises, to discover sensitive data on tables.
AWS KMS с поддержкой мультирегиональности:
https://aws.amazon.com/blogs/security/encrypt-global-data-client-side-with-aws-kms-multi-region-keys/
Теперь можно использовать один ключ для разных регионов, что очень круто как для Disaster Recovery сценариев, так и просто для упрощения всей системы шифрования.
Весьма важное изменение, что было реализовано в рамках реализации активно начавшейся в прошлом году "мультирегиональности всего".
Документация:
https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html
#KMS
https://aws.amazon.com/blogs/security/encrypt-global-data-client-side-with-aws-kms-multi-region-keys/
Теперь можно использовать один ключ для разных регионов, что очень круто как для Disaster Recovery сценариев, так и просто для упрощения всей системы шифрования.
Весьма важное изменение, что было реализовано в рамках реализации активно начавшейся в прошлом году "мультирегиональности всего".
Документация:
https://docs.aws.amazon.com/kms/latest/developerguide/multi-region-keys-overview.html
#KMS
Amazon
Encrypt global data client-side with AWS KMS multi-Region keys | Amazon Web Services
Today, AWS Key Management Service (AWS KMS) is introducing multi-Region keys, a new capability that lets you replicate keys from one Amazon Web Services (AWS) Region into another. Multi-Region keys are designed to simplify management of client-side encryption…
Django CDK Construct Library:
https://github.com/briancaffey/django-cdk
Поддерживается деплой Django приложений в:
• ECS (near complete)
• EKS (in progress)
• Lambda (planned)
#CDK #Django
https://github.com/briancaffey/django-cdk
Поддерживается деплой Django приложений в:
• ECS (near complete)
• EKS (in progress)
• Lambda (planned)
#CDK #Django
