Получаем тэги на виртуалке через метадата:
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html#work-with-tags-in-IMDS
Сначала включаем:
Теперь получаем:
test.instance
#metadata
  
  https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Using_Tags.html#work-with-tags-in-IMDS
Сначала включаем:
aws ec2 modify-instance-metadata-options --instance-id $(curl -s http://169.254.169.254/latest/meta-data/instance-id) --instance-metadata-tags enabledТеперь получаем:
curl -s http://169.254.169.254/latest/meta-data/tags/instance/Nametest.instance
#metadata
Amazon
  
  Tag your Amazon EC2 resources - Amazon Elastic Compute Cloud
  Manage your Amazon EC2 instances, images, and other resources by assigning your own metadata tags.
👍16
  Weekly Summary on AWS (
🔹 EMR on EKS
• Custom Image Validation Tool
• Error message details
• Customized container images including Graviton-based
• EMR Studio JupyterLab v3.1.4
🔹 OpenSearch + version 1.1
• Cross-cluster replication
• Anomaly detection for historical data
• Bucket Level Alerting
• Fine grained access control on existing domains
🔹 Glue
• Interactive Sessions and Job Notebooks
• Personal Identifiable Information (PII) detection and remediation
• Autoscaling
🔹 IoT Device Management + Automated Retry
🔹 IoT Core for LoRaWAN + Downlink Queue Management and Network Analyzer
🔹 Lambda + ES Modules and Top-Level Await for Node.js 14
🔹 EKS + IPv6
🔹 ACM Private CA + Kubernetes cert-manager v1.0
🔹 Redshift + AWS Data Exchange
🔹 CloudTrail Lake
🔹 CloudWatch Logs + Organizations
🔹 ECR + repository pull statistics
🔹 EC2 Instance Tags through Metadata
🔹 QLDB + JSON
🔹 Managed Blockchain + Hyperledger Fabric v2.2 LTS
🔹 EC2 On-Demand Capacity Reservations + Cluster Placement Groups
🔹 AppStream 2.0 + SAML 2.0 federated user identities
🔹 RDS for SQL Server + SSAS Multidimensional
🔹 Firewall Manager + Shield Advanced automatic application layer DDoS mitigation
#AWS_week
  
  
  
  
  
January 2-8)🔹 EMR on EKS
• Custom Image Validation Tool
• Error message details
• Customized container images including Graviton-based
• EMR Studio JupyterLab v3.1.4
🔹 OpenSearch + version 1.1
• Cross-cluster replication
• Anomaly detection for historical data
• Bucket Level Alerting
• Fine grained access control on existing domains
🔹 Glue
• Interactive Sessions and Job Notebooks
• Personal Identifiable Information (PII) detection and remediation
• Autoscaling
🔹 IoT Device Management + Automated Retry
🔹 IoT Core for LoRaWAN + Downlink Queue Management and Network Analyzer
🔹 Lambda + ES Modules and Top-Level Await for Node.js 14
🔹 EKS + IPv6
🔹 ACM Private CA + Kubernetes cert-manager v1.0
🔹 Redshift + AWS Data Exchange
🔹 CloudTrail Lake
🔹 CloudWatch Logs + Organizations
🔹 ECR + repository pull statistics
🔹 EC2 Instance Tags through Metadata
🔹 QLDB + JSON
🔹 Managed Blockchain + Hyperledger Fabric v2.2 LTS
🔹 EC2 On-Demand Capacity Reservations + Cluster Placement Groups
🔹 AppStream 2.0 + SAML 2.0 federated user identities
🔹 RDS for SQL Server + SSAS Multidimensional
🔹 Firewall Manager + Shield Advanced automatic application layer DDoS mitigation
#AWS_week
👍1
  Forwarded from Yura Rochniak
Вот тут дядя Витя норм поясняет за Карпентер и основные отличия от кластер-аутоскейлер
https://youtu.be/C-2v7HT-uSA
  
  https://youtu.be/C-2v7HT-uSA
YouTube
  
  How To Auto-Scale Kubernetes Clusters With Karpenter
  Karpenter is an open-source Kubernetes cluster auto-scaler built by AWS.
#Karpenter #Cluster #AutoScaler #Kubernetes
Consider joining the channel: https://www.youtube.com/c/devopstoolkit/join
▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬
➡ Gist with the commands:…
#Karpenter #Cluster #AutoScaler #Kubernetes
Consider joining the channel: https://www.youtube.com/c/devopstoolkit/join
▬▬▬▬▬▬ 🔗 Additional Info 🔗 ▬▬▬▬▬▬
➡ Gist with the commands:…
👍2
  Forwarded from Vasiliy Angapov
  
  Хабр
  
  Amazon S3 — детективное расследование внутренней архитектуры
  Мне понравился опыт прошлого расследования по фейсбуку , и я решил организовать очередную серию, теперь про Amazon. Для нетерпеливых — в самом конце статьи описан итоговый вариант архитектуры Amazon...
👍11
  Forwarded from Nikolay
AWS Community Builders
Всем привет. Набор на весну 2022 официально открыт. Ссылка на форму - https://amazonmr.au1.qualtrics.com/jfe/form/SV_b89ma6QvizVPjWC?=CB2022-CBs
О программе я рассказывал, но вкратце расскажу о бенефитах:
SWAG от амазона(присылают посылкой)
500 долларов кредитов на все сервисы AWS(ну может быть кроме Ground Station) в год(раньше присылали физически, сейчас по e-mail)
Годовая бесплатная подписка на cloud academy
Ваучер на любой экзамен(1 раз в год)
Доступ к закрытым ивентам
Возможность постить в отдельной конфе на dev.to
Ну и конечно, самое главное - нетворкинг.
В общем много чего интересного и полезного.
Если у вас есть какие-либо блог-посты, публичные выступления, в общем абсолютно любой вклад в развитие коммунити - скорее всего вашу заявку одобрят. Не стесняйтесь и подавайтесь уже сегодня. Срок подачи заявок с сегодняшнего дня до 24 января.
  
  Всем привет. Набор на весну 2022 официально открыт. Ссылка на форму - https://amazonmr.au1.qualtrics.com/jfe/form/SV_b89ma6QvizVPjWC?=CB2022-CBs
О программе я рассказывал, но вкратце расскажу о бенефитах:
SWAG от амазона(присылают посылкой)
500 долларов кредитов на все сервисы AWS(ну может быть кроме Ground Station) в год(раньше присылали физически, сейчас по e-mail)
Годовая бесплатная подписка на cloud academy
Ваучер на любой экзамен(1 раз в год)
Доступ к закрытым ивентам
Возможность постить в отдельной конфе на dev.to
Ну и конечно, самое главное - нетворкинг.
В общем много чего интересного и полезного.
Если у вас есть какие-либо блог-посты, публичные выступления, в общем абсолютно любой вклад в развитие коммунити - скорее всего вашу заявку одобрят. Не стесняйтесь и подавайтесь уже сегодня. Срок подачи заявок с сегодняшнего дня до 24 января.
Qualtrics
  
  AWS Community Builders Application Form
  If you're interested in joining the AWS Community Builders program, this
  Подробности поддержки IPv6 в EKS:
https://aws.amazon.com/blogs/containers/amazon-eks-launches-ipv6-support/
🔸
🔸
🔸
🔸
#EKS #IPv6
  
  https://aws.amazon.com/blogs/containers/amazon-eks-launches-ipv6-support/
🔸
IPv6 support works for new and existing VPCs; you can opt in on a VPC-by-VPC basis.🔸
Each VPC is given an IPv4 address prefix (CIDR block size can be from /16 to /28) a unique /56 IPv6 address prefix (fixed) from within Amazon’s GUA (Global Unicast Address); you can assign a /64 address prefix to each subnet in your VPC.🔸
All the VPC features such as Security Groups, Route Tables, Network ACLs, Peering, and DNS resolution within a VPC all operate in the same way as IPv4.🔸
Every instance gets both IPv4 and IPv6 addresses, along with corresponding DNS entries. For a given instance, only a single IPv4 address from the VPC address range is consumed.#EKS #IPv6
Amazon
  
  Amazon EKS launches IPv6 support | Amazon Web Services
  The ongoing growth of the internet, particularly in the fields of mobile applications, IoT, and application modernization, has led to an industry-wide move to IPv6. With 128 bits of address space, IPv6 can provide 340 undecillion IP addresses, compared to…
  Новая AWS Console — главная страница с полезной информацией.
Удобно, что сразу видны расходы (если включён доступ к биллингу для юзера в аккаунте), ссылки на последние сервисы и возможность расположить нужные элементы в удобных местах на дашборде.
Можно убрать или добавить виджеты (меню снизу), на текущий момент дополнительный виджет - это лишь Favorites. Можно изменить размер виджета, нажав Change Size.
В общем, реально полезное изменение для консоли, с удобным подходом, как это реализовано для AWS Activate.
Пользуемся!
#AWS_Console
  
  
  
  
  
Удобно, что сразу видны расходы (если включён доступ к биллингу для юзера в аккаунте), ссылки на последние сервисы и возможность расположить нужные элементы в удобных местах на дашборде.
Можно убрать или добавить виджеты (меню снизу), на текущий момент дополнительный виджет - это лишь Favorites. Можно изменить размер виджета, нажав Change Size.
В общем, реально полезное изменение для консоли, с удобным подходом, как это реализовано для AWS Activate.
Пользуемся!
#AWS_Console
👍6
  Forwarded from Rinat Uzbekov
Бесплатные курсы AWS по ML - https://www.amazon.science/latest-news/machine-learning-course-free-online-from-amazon-machine-learning-university
  
  Amazon Science
  
  Amazon's Machine Learning University is making its online courses available to the public
  Classes previously only available to Amazon employees will now be available to the community.
👍4
  Полезный пост с описанием моментов по созданию мультирегиональных приложений:
https://aws.amazon.com/blogs/architecture/creating-a-multi-region-application-with-aws-services-part-2-data-and-replication/
#design
  
  https://aws.amazon.com/blogs/architecture/creating-a-multi-region-application-with-aws-services-part-2-data-and-replication/
When building a distributed system, consider the consistency, availability, partition tolerance (CAP) theorem. This theorem states that an application can only pick 2 out of the 3, and tradeoffs should be considered.▫️ Consistency – all clients always have the same view of data▫️ Availability – all clients can always read and write data▫️ Partition Tolerance – the system will continue to work despite physical partitions#design
Amazon
  
  Creating a Multi-Region Application with AWS Services – Part 2, Data and Replication | Amazon Web Services
  Data is at the center of stateful applications. Data consistency models will vary when choosing in-Region vs. multi-Region. In this post, part 2 of 3, we continue to filter through AWS services to focus on data-centric services with native features to help…
👍8
  Weekly Summary on AWS (
🔸 AppSync + cache entry eviction
🔸 AWS Toolkit for JetBrains IDEs + ECS-Exec
🔸 EC2 + Hpc6a instance type
🔸 EC2 Windows Server + Launch Speed Optimizations
🔸 ElastiCache + publish logs (6.2+)
🔸 EMR Studio
• Real-time collaborative notebooks
• SQL Explorer
🔸 IoT SiteWise Edge + Data Upload Prioritization
🔸 Kendra + query language
🔸 Lex + PrivateLink
🔹 Local Zones + Atlanta / Phoenix / Seattle
🔸 Redshift Spectrum + custom data validation rules
🔸 RDS for MySQL + 5.7.36 & 8.0.27
🔸 RDS Performance Insights + GetResourceMetadata, ListAvailableResourceDimensions, ListAvailableResourceMetrics
🔸 SageMaker Feature Store + connector for Spark
🔸 SNS + ABAC (Attribute-based access controls)
🔸 SSM + Command Document
🔹 Well-Architected Framework + Streaming Media Lens
#AWS_week
  
  
  
  
  
  January 9-15)🔸 AppSync + cache entry eviction
🔸 AWS Toolkit for JetBrains IDEs + ECS-Exec
🔸 EC2 + Hpc6a instance type
🔸 EC2 Windows Server + Launch Speed Optimizations
🔸 ElastiCache + publish logs (6.2+)
🔸 EMR Studio
• Real-time collaborative notebooks
• SQL Explorer
🔸 IoT SiteWise Edge + Data Upload Prioritization
🔸 Kendra + query language
🔸 Lex + PrivateLink
🔹 Local Zones + Atlanta / Phoenix / Seattle
🔸 Redshift Spectrum + custom data validation rules
🔸 RDS for MySQL + 5.7.36 & 8.0.27
🔸 RDS Performance Insights + GetResourceMetadata, ListAvailableResourceDimensions, ListAvailableResourceMetrics
🔸 SageMaker Feature Store + connector for Spark
🔸 SNS + ABAC (Attribute-based access controls)
🔸 SSM + Command Document
🔹 Well-Architected Framework + Streaming Media Lens
#AWS_week
📚 FREE resources to prepare for AWS Certified Solution Architect Associate (SAA-CO2) exam.
1️⃣ AWS Ramp-Up Guide: Architect ✅
https://d1.awsstatic.com/training-and-certification/ramp-up_guides/Ramp-Up_Guide_Architect.pdf
2️⃣ Exam Readiness: AWS Certified Solutions Architect – Associate (Digital) ✅
https://explore.skillbuilder.aws/learn/course/external/view/elearning/125/exam-readiness-aws-certified-solutions-architect-associate-digital
3️⃣ AWS Certification Official Practice Question Sets (English) ✅
https://explore.skillbuilder.aws/learn/course/external/view/elearning/9153/aws-certification-official-practice-question-sets-english
4️⃣ AWS Whitepapers + Well architected Framework + FAQs ✅
https://aws.amazon.com/certification/certified-solutions-architect-associate/
5️⃣ Practice Exams ✅
http://www.koenig-solutions.com/aws
#AWS_certification
  
  
  
  
  
1️⃣ AWS Ramp-Up Guide: Architect ✅
https://d1.awsstatic.com/training-and-certification/ramp-up_guides/Ramp-Up_Guide_Architect.pdf
2️⃣ Exam Readiness: AWS Certified Solutions Architect – Associate (Digital) ✅
https://explore.skillbuilder.aws/learn/course/external/view/elearning/125/exam-readiness-aws-certified-solutions-architect-associate-digital
3️⃣ AWS Certification Official Practice Question Sets (English) ✅
https://explore.skillbuilder.aws/learn/course/external/view/elearning/9153/aws-certification-official-practice-question-sets-english
4️⃣ AWS Whitepapers + Well architected Framework + FAQs ✅
https://aws.amazon.com/certification/certified-solutions-architect-associate/
5️⃣ Practice Exams ✅
http://www.koenig-solutions.com/aws
p.s. Original source.#AWS_certification
❤12👍1
  Хорошая статья-сравнение параллельного запуска Lambda, App Runner и Fargate:
https://nathanpeck.com/concurrency-compared-lambda-fargate-app-runner/
🔸 Concurrency
🔹 Scaling
Lambda
🔸
🔹
App Runner
🔸
🔹
Fargate
🔸
🔹
#design
  
  https://nathanpeck.com/concurrency-compared-lambda-fargate-app-runner/
🔸 Concurrency
🔹 Scaling
Lambda
🔸
Single concurrent request per Lambda function instance, but many separate Lambda function instances🔹
Fully managed by AWS Lambda, default limit of 1000 concurrent executions. Scale out more function instances in under a second.App Runner
🔸
Multiple concurrent requests per container, enforces a configurable hard limit such as 100 concurrent reqs/container🔹
Fully managed by App Runner. Configure a concurrency limit per containerized process. Scale out more container instances in less than 1 min.Fargate
🔸
Multiple concurrent requests per container, no built-in limits on concurrency per container🔹
Managed by you. Scale out more container instances based on your desired metric: CPU, concurrency, or a custom metric. Scale out in less than 1 min.#design
Nathan Peck
  
  Concurrency Compared: AWS Lambda, AWS App Runner, and AWS Fargate
  Concurrency is one of the core principles of modern computing. When concurrency is combined with the cloud, it becomes even more powerful. In this article you’ll learn about how concurrency works across three of the compute options available on Amazon Web…
👍12
  Forwarded from CloudSec Wine (Артем Марков)
🔶  Recover your AWS account via Customer Support 
  
A Twitter thread on how to get AWS Customer Support to remove MFA from your root account.
 
https://twitter.com/jrhunt/status/1478935811336798211?s=12
  
#aws
  
  A Twitter thread on how to get AWS Customer Support to remove MFA from your root account.
https://twitter.com/jrhunt/status/1478935811336798211?s=12
#aws
Twitter
  
  Randall Hunt
  This is a funny story/thread about getting the MFA removed from my root AWS account from 2008. I no longer had access to the phone number on the account but I still had a working IAM user and still had access to the email. You can recover by getting some…
  Билд платформа Playrix (в том числе на спотах) https://youtu.be/RCVZoF8eWXk?list=RDCMUCgoMppmHUHU_3vxMD7oDG7g
  
  YouTube
  
  CI/CD в Playrix: Как собирать тысячи билдов в день для разных платформ / Юрий Труфанов (Playrix)
  Playrix разрабатывает множество игр, над каждой из них работает большое количество команд разработчиков и тестировщиков. Команда IT Platform предоставляет сборочную ферму для всех проектов, и ее цель – дать разработчику билд как можно быстрее. В это докладе…
👍1
  AWS CDK Crash Course:
https://www.youtube.com/watch?v=T-H4nJQyMig
00:15 CDK Crash Course Intro
01:13 What we'll cover
02:34 Resources
03:07 CDK Basics
07:34 What are CDK Constructs?
10:15 Level 3 Construct Examples
12:08 Synthesis, Assets, Bootstrapping and Deploy
14:53 CDK Workshop Speedrun - Cloud9 Prep
21:01 CDK Workshop Speedrun - New Project
28:02 CDK Workshop Speedrun - Hello, CDK
35:42 CDK Workshop Speedrun - Writing Constructs
42:26 CDK Workshop Speedrun - Using Construct Libraries
44:14 CDK Workshop Speedrun - Testing Constructs
48:51 Advanced CDK
59:32 More Resources and Thanks!
#CDK #video
  
  https://www.youtube.com/watch?v=T-H4nJQyMig
00:15 CDK Crash Course Intro
01:13 What we'll cover
02:34 Resources
03:07 CDK Basics
07:34 What are CDK Constructs?
10:15 Level 3 Construct Examples
12:08 Synthesis, Assets, Bootstrapping and Deploy
14:53 CDK Workshop Speedrun - Cloud9 Prep
21:01 CDK Workshop Speedrun - New Project
28:02 CDK Workshop Speedrun - Hello, CDK
35:42 CDK Workshop Speedrun - Writing Constructs
42:26 CDK Workshop Speedrun - Using Construct Libraries
44:14 CDK Workshop Speedrun - Testing Constructs
48:51 Advanced CDK
59:32 More Resources and Thanks!
#CDK #video
YouTube
  
  AWS Cloud Development Kit (CDK) Crash Course
  Learn how to use the AWS Cloud Development Kit (CDK) in this tutorial.  The AWS Cloud Development Kit (AWS CDK) is an open-source software development framework to define your cloud application resources using familiar programming languages. We'll go over…
👍1
  FREE 🔥 AWS Exam Readiness courses from Tutorials Dojo:
https://portal.tutorialsdojo.com/product-category/aws/aws-digital-courses-2/aws-exam-readiness-courses/
▪️ AWS Certified Solutions Architect Professional (
▪️ AWS Certified DevOps Engineer Professional (
▪️ AWS Certified Security Specialty (
▪️ AWS Certified Database Specialty (
▪️ AWS Certified Data Analytics Specialty (
▪️ AWS Certified Machine Learning Specialty (
#AWS_certification
  
  
  
  
  
  https://portal.tutorialsdojo.com/product-category/aws/aws-digital-courses-2/aws-exam-readiness-courses/
▪️ AWS Certified Solutions Architect Professional (
SAP-C01)▪️ AWS Certified DevOps Engineer Professional (
DOP-C01)▪️ AWS Certified Security Specialty (
SCS-C01)▪️ AWS Certified Database Specialty (
DBS-C01)▪️ AWS Certified Data Analytics Specialty (
DAS-C01)▪️ AWS Certified Machine Learning Specialty (
MLS-C01)#AWS_certification
Weekly Summary on AWS (
🔸 CloudWatch Application Insights + Microsoft AD & SharePoint
🔸 DRS (AWS Elastic Disaster Recovery) + failback
🔸 DynamoDB + ReturnConsumedCapacity
🔸 FinSpace + Spark 3.1.2
🔸 FSx for NetApp ONTAP + CloudWatch
🔸 EMR
• Spark SQL to insert data into and update Glue Data Catalog
• Iceberg
🔸 GuardDuty + detection of EC2 credentials used from another AWS account
🔸 Location Service
• Matrix routing
• Request-based pricing for all customer use cases
🔸 Migration Hub Strategy Recommendations + Babelfish for Aurora PostgreSQL
🔸 MQ + RabbitMQ 3.8.26
🔸 Security Hub
• Trusted Advisor adds 111 checks
• Integration with AWS Health
🔸 SSM Automation
• Execute runbooks from Slack
• Outbound webhooks for 3-d party tools
🔸 SageMaker Pipelines
• EMR integration for large scale data processing
• Parallelism Configuration
🔸 AWS Client VPN + banner text and maximum session duration
🔹 Wavelength Zones + Charlotte, Detroit, Los Angeles and Minneapolis
#AWS_week
  
  
  
  
  
January 16-22)🔸 CloudWatch Application Insights + Microsoft AD & SharePoint
🔸 DRS (AWS Elastic Disaster Recovery) + failback
🔸 DynamoDB + ReturnConsumedCapacity
🔸 FinSpace + Spark 3.1.2
🔸 FSx for NetApp ONTAP + CloudWatch
🔸 EMR
• Spark SQL to insert data into and update Glue Data Catalog
• Iceberg
🔸 GuardDuty + detection of EC2 credentials used from another AWS account
🔸 Location Service
• Matrix routing
• Request-based pricing for all customer use cases
🔸 Migration Hub Strategy Recommendations + Babelfish for Aurora PostgreSQL
🔸 MQ + RabbitMQ 3.8.26
🔸 Security Hub
• Trusted Advisor adds 111 checks
• Integration with AWS Health
🔸 SSM Automation
• Execute runbooks from Slack
• Outbound webhooks for 3-d party tools
🔸 SageMaker Pipelines
• EMR integration for large scale data processing
• Parallelism Configuration
🔸 AWS Client VPN + banner text and maximum session duration
🔹 Wavelength Zones + Charlotte, Detroit, Los Angeles and Minneapolis
#AWS_week
👍10
  Forwarded from CatOps
  
  
  
  
  
  Using Amazon Cognito to Authenticate Players for a Game Backend Service:
https://aws.amazon.com/blogs/gametech/using-amazon-cognito-to-authenticate-players-for-a-game-backend-service/
#Cognito
  
  
  
  
  
  https://aws.amazon.com/blogs/gametech/using-amazon-cognito-to-authenticate-players-for-a-game-backend-service/
A: Game client make REST API call to unauthenticated endpoint to invoke Login Lambda function with username and password in JSON body.B: Login Lambda function uses username and password to authenticate with Amazon Cognito user pool and obtains IdToken.C: Login Lambda function sends IdToken back to game client through the API Gateway.D: Game client makes a REST API call to Amazon API Gateway which will validate the IdToken with the Cognito authorizer. API Gateway will then invoke the backend service Lambda function.#Cognito
