|
JHVH-1 posted:Probably have to play around with the alarms and getting the right metrics so you have both scale up and scale down criteria based on something that covers the whole cluster. Definitely. I need to get my head around how I'm going to do that. I'll basically be starting with 3 instances, each having a call capacity of 500 calls. So the thought on scale up was just to spin up another instance if any of the 3 reach 450 concurrent calls. The scale down side becomes a bit more difficult. I'm thinking I can write the concurrent calls value from all active instances and if the average of that number falls below a certain value I terminate one of the instances. That will also require keeping track of how many of this type of instance are active. The good thing about this platform, at least right now, is that it will be very predicable. There won't be huge peak calling events or anything like that. It likely will just continue to slowly scale up over time. One of my fears is that I do this wrong and instances start launching willy nilly all crazy.
|
#
?
Feb 1, 2019 17:30
|
|
|
|
| # ? May 15, 2024 20:16 |
|
|
You can do some tweaking based on time at least. I've done that before reducing the capacity over the weekends when I knew it wouldn't be that important. At least you can make the metrics and create alarms and see what they do before making them the scaling criteria. Like if you know you have 0 calls during long periods on a regular basis you could set an alarm to scale down then or something.
|
|
#
?
Feb 1, 2019 17:42
|
|
|
JHVH-1 posted:You can do some tweaking based on time at least. I've done that before reducing the capacity over the weekends when I knew it wouldn't be that important. Yeah that makes sense. Overnight or on weekends potentially. At this point, I don't know exactly who the customer base is going to be so it's possible that it will be a lot of international and there won't be a truly "slow time." Being able to send anything you want back to Cloudwatch via the CLI is really awesome and I can use that for a whole host of other things from alarming problems to reports on various things.
|
|
#
?
Feb 1, 2019 17:50
|
|
|
Ya know I just remembered, I think you can also send your logs to cloudwatch and then create metric filters based on that. The newer cloudwatch agent also collects some other stats for you too. I haven't yet played with it, just the older cloudwatch logs one https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/Install-CloudWatch-Agent.html
|
|
#
?
Feb 1, 2019 17:58
|
|
|
i'm new to aws and ec2, so forgive me if this is trivial. but is it possible to create a ubuntu instance somewhere in aws that's essentially a remote desktop? i'd love to be able to log on to this gui-ed instance from any browser or computer, and just do some dev work on there, which would entail remoting in to other servers and what not.
|
|
#
?
Feb 2, 2019 19:50
|
|
|
https://aws.amazon.com/workspaces/ I think it now handles Linux desktops
|
|
#
?
Feb 2, 2019 21:00
|
|
|
PierreTheMime posted:I'm positive that this has been covered at some point, but what's considered the best S3 GUI for Windows? I'm perfectly fine working in CLI/API, but I have a few users asking and I honestly don't know. Someone mentioned wanting to have the S3 bucket as a mounted drive, which I'm sure is done. I figure I'd trust the working knowledge here more than just a quick Googling. My customers use S3 Browser by the NetSDK folks. Most use the free version, but that is essentially for up and down stuff. For actual bucket management you’ll need the pro version which starts at thirty bucks a seat. YMMV.
|
|
#
?
Feb 3, 2019 02:08
|
|
|
Agrikk posted:My customers use S3 Browser by the NetSDK folks. Most use the free version, but that is essentially for up and down stuff. For actual bucket management you’ll need the pro version which starts at thirty bucks a seat. Thanks. Ultimately the purchasing is out of my hands but I’m interested to know what’s being used. With as simple as the interface is I’m strongly considering just whipping up a Swing drag and drop explorer for fun and see how it compares.
|
|
#
?
Feb 3, 2019 02:14
|
|
|
I use cyberduck on the mac, but no idea if its any good on windows. Also versioned buckets confuse the hell out of it if you delete something so stuff still shows up because of the way s3 handles "directories" Cloudberry Explorer is supposed to be pretty good. Sometimes I wish there was an easy web based front end that I could hand out creds for and not have to manage keys or have people go on the dashboard. We sometimes have the problem that people were sharing keys. The last time I got a request related to that I ended up adding a role we mapped to an AD group and let them log in via an application in office.com. That way they just click an icon and their role only allows the s3 bucket they have permissions to access to in the aws dashboard.
|
|
#
?
Feb 3, 2019 02:41
|
|
|
PierreTheMime posted:Thanks. Ultimately the purchasing is out of my hands but I’m interested to know what’s being used. With as simple as the interface is I’m strongly considering just whipping up a Swing drag and drop explorer for fun and see how it compares. Here are some more alternative options for graphical S3 management I have researched: - AWS ElasticWolf Client Console (Fully Supported by AWS) Free software. - Cyberduck - (3rd party) Free software. Cyberduck is a Libre FTP, SFTP, WebDAV, Amazon S3, Backblaze B2, Microsoft Azure & OneDrive and OpenStack Swift browser for Mac and Windows. It just requires your AWS credentials and you can use the simple interface to download/upload/sync any of your buckets/folders/files. - CloudBerry Explorer - (3rd party) Has a free version. Full feature costs $40. CloudBerry Explorer for Amazon S3 provides a user interface to Amazon S3 accounts allowing to access, move and manage files across your local storage and S3 buckets. Amazon S3 file manager by CloudBerry is available in two versions – Freeware and PRO. Freeware version. Free S3 browser comes with full support for such AWS features and services as Server Side Encryption, Lifecycle rules, Amazon CloudFront, Bucket Policies and more.
|
|
#
?
Feb 3, 2019 20:30
|
|
|
Why is this the first time I've ever heard of elasticwolf?
|
|
#
?
Feb 3, 2019 21:53
|
|
|
fluppet posted:Why is this the first time I've ever heard of elasticwolf? Probably the same reason I hadn’t when I started asking. When you Google “aws s3 gui” or “aws s3 browser” it’s not in the first two pages.
|
|
#
?
Feb 3, 2019 22:53
|
|
|
Though elasticwolf sounded interesting but the last release was in 2017. It probably does basic stuff fine. The problem I had a few years ago when evaluating s3 clients is that so little of them at the time supported modern s3 features like server side encryption. Though now you can set buckets to force that by default, so it wouldn’t matter.
|
|
#
?
Feb 4, 2019 02:02
|
|
|
If I wanted to get into cloud networking and infrastructure stuff, would it be a good idea to pick up any AWS certs?
|
|
#
?
Feb 4, 2019 09:02
|
|
|
Hey, I am trying to run my first EBS instance with a flask/dash app that runs fine locally. I am on windows and everything is bitching when I try to use the AWS CLI, so I am setting it up through the web browser. This is a file I downloaded a zip from GitHub for and then uploaded to EBS through a browser upload. code:code:EDIT: Posting about it made AWS EB CLI work. Gonna try to ssh in now. CarForumPoster fucked around with this message at 21:19 on Feb 4, 2019 |
|
#
?
Feb 4, 2019 21:07
|
|
|
This isn't really anything related to AWS. The requirements.txt file doesn't just magically do anything on its own. You need to do something like "pip install -r requirements.txt" first to actually download and install the dependencies. Then your app should work.
|
|
#
?
Feb 4, 2019 21:25
|
|
|
Docjowles posted:This isn't really anything related to AWS. The requirements.txt file doesn't just magically do anything on its own. You need to do something like "pip install -r requirements.txt" first to actually download and install the dependencies. Then your app should work. I thought EBS did that automagically when I uploaded my app. Apparently not. I'm SSH'd in as ec2-user, but ls/dir reveals no files. I know my requirements.txt is in ???Somewhere???/opt/python/current/app/app-folder-name/ ....any idea where that is EDIT: Posting about it made me not a dumbass and I installed it.
|
|
#
?
Feb 4, 2019 22:14
|
|
|
Sorry I misunderstood. Didn’t realize you meant Elastic Beanstalk instead of Elastic Block Storage by EBS. Beanstalk should be installing your requirements when the app is deployed, yes.
|
|
#
?
Feb 4, 2019 22:23
|
|
|
Docjowles posted:This isn't really anything related to AWS. The requirements.txt file doesn't just magically do anything on its own. You need to do something like "pip install -r requirements.txt" first to actually download and install the dependencies. Then your app should work. I think it does install the packages if you format it correctly and put it in your application bundle: https://docs.aws.amazon.com/elasticbeanstalk/latest/dg/customize-containers-ec2.html Also says if it fails validation it won't work and you have to check the logs for that as it shows up as a warning.
|
|
#
?
Feb 4, 2019 22:27
|
|
|
Does storing a parameter as a “secure string” in system manager: parameter store cost me anything? I seems like it’s free cause I don’t see any pricing, but “secret manager” says it costs $1 per secret or whatever so I don’t understand the difference here.
|
|
#
?
Feb 5, 2019 05:18
|
|
|
Boris Galerkin posted:Does storing a parameter as a “secure string” in system manager: parameter store cost me anything? I seems like it’s free cause I don’t see any pricing, but “secret manager” says it costs $1 per secret or whatever so I don’t understand the difference here. Systems Manager is free including the Parameter Store feature. Secrets Manager has some built-in integrations with services like RDS but if you don't need those specific features just use Parameter Store.
|
|
#
?
Feb 5, 2019 05:32
|
|
|
Umbreon posted:If I wanted to get into cloud networking and infrastructure stuff, would it be a good idea to pick up any AWS certs? Yes. Get your AWS Solutions Architect - Pro cert. It’s all about the AWS core services and putting them together to do things.
|
|
#
?
Feb 5, 2019 07:21
|
|
|
Arzakon posted:Systems Manager is free including the Parameter Store feature. Secrets Manager has some built-in integrations with services like RDS but if you don't need those specific features just use Parameter Store. Thanks. And just make sure, it’s ok to store things like say slack api tokens in parameter store right?
|
|
#
?
Feb 5, 2019 08:38
|
|
|
Agrikk posted:Yes. Awesome, is there a cert path to that, or do I just go straight for it?
|
|
#
?
Feb 5, 2019 08:55
|
|
|
Boris Galerkin posted:Thanks. And just make sure, it’s ok to store things like say slack api tokens in parameter store right? Sure, take a look at granular permissions and general IAM strategy if a bunch of other people also use your AWS account who you don't want having access to that key but otherwise go hog wild.
|
|
#
?
Feb 5, 2019 15:34
|
|
|
Umbreon posted:Awesome, is there a cert path to that, or do I just go straight for it? You need to get the SA associate very first. Then sit for the SA Pro.
|
|
#
?
Feb 6, 2019 18:11
|
|
|
I'm sure there's a very reasonable explanation but why can't you set DHCP Options Sets at the subnet level? I have different types of machines in a single VPC and was hoping to be able to give them hostnames that would identify which type they are.
|
|
#
?
Feb 8, 2019 15:54
|
|
|
Scrapez posted:I'm sure there's a very reasonable explanation but why can't you set DHCP Options Sets at the subnet level? This is a perfectly reasonable request and one that I have heard countless times before. At a very high level, it’s a performance issue. Allowing dhcp option sets per vpc is one thing. Allowing option sets for subnets, that can exist at a ratio of several hundred to one, is something else. But yeah, option sets for subnets would be awesome.
|
|
#
?
Feb 8, 2019 16:37
|
|
|
Agrikk posted:This is a perfectly reasonable request and one that I have heard countless times before. Yeah, I guess I understand that. Perhaps they could make it so that only subnets of a certain size would be allowed to have dhcp options sets.
|
|
#
?
Feb 8, 2019 16:57
|
|
|
Scrapez posted:Yeah, I guess I understand that. Perhaps they could make it so that only subnets of a certain size would be allowed to have dhcp options sets. Speaking personally, I believe there should just be a fixed limit, say 5 or 10, of option sets per vpc. One could implement a default option set for the vpc and then allocate subnet option sets for special cases that could override the default. But I don’t know the exact details from the networking guys, so I don’t know the real roadblocks to implementation.
|
|
#
?
Feb 8, 2019 17:05
|
|
|
Agrikk posted:Speaking personally, I believe there should just be a fixed limit, say 5 or 10, of option sets per vpc. One could implement a default option set for the vpc and then allocate subnet option sets for special cases that could override the default. Yeah that would be great. Second on my list of wants behind ELBs that can do UDP.
|
|
#
?
Feb 9, 2019 03:26
|
|
|
What do I need to do to get a TAM assigned to my organization? My organization's monthly spend is growing pretty rapidly - and that's ok - but as the IT director I'd like to establish a POC for escalation / coordinating in the event we need it (haven't yet, thankfully) Can't seem to find a good line of communication and have submitted a request to support and haven't gotten any useful info yet - just want to be sure I'm not missing a correct route for asking.
|
|
#
?
Feb 10, 2019 15:27
|
|
|
Walked posted:What do I need to do to get a TAM assigned to my organization? My organization's monthly spend is growing pretty rapidly - and that's ok - but as the IT director I'd like to establish a POC for escalation / coordinating in the event we need it (haven't yet, thankfully) Are you using the Enterprise Support Plan?
|
|
#
?
Feb 10, 2019 19:12
|
|
|
Walked posted:What do I need to do to get a TAM assigned to my organization? My organization's monthly spend is growing pretty rapidly - and that's ok - but as the IT director I'd like to establish a POC for escalation / coordinating in the event we need it (haven't yet, thankfully) The only way to get a TAM assigned to your account is to sign an enterprise support agreement. Where is your company based and what is your average approximate monthly spend?
|
|
#
?
Feb 11, 2019 06:56
|
|
|
Agrikk posted:The only way to get a TAM assigned to your account is to sign an enterprise support agreement. Where is your company based and what is your average approximate monthly spend? Thanks guys. We've gone from about ~$5k/mo to ~$40k/mo over the last year. So we're inching towards the enterprise support contract being super worthwhile. I'll have to look at some numbers and see if I can make a compelling case. I really just want an escalation point for when support isn't quite getting it (and by "getting it" - I mean moving unreasonably slowly on something / passing the buck). Doesnt happen too often; but every so often I'll catch a case we have open that seems to move unreasonably slowly. (Almost all of them seem to revolve around GovCloud items, admittedly.)
|
|
#
?
Feb 11, 2019 12:37
|
|
|
Note that enterprise support starts at $15,000 per month and goes up from there. I’m not sure your monthly spend makes having a TAM and the other perks worth it yet. WRT your cases getting handled poorly, there is absolutely nothing wrong with copy/pasting the following text into your case: “Dear [Blank]- I am feel frustrated with how this case has been handled thus far. Please engage with me more closely so we can resolve this case quickly and to our satisfaction. When can we schedule a call to talk about this?”
|
|
#
?
Feb 11, 2019 17:52
|
|
|
Agrikk posted:Note that enterprise support starts at $15,000 per month and goes up from there. You or some other Amazon goon gave me the advice that you always want to do your support interactions over the phone, and that has held extremely true for me. You'll need to block out some time to talk to someone, but it's worth it. My phone cases are resolved in like an hour. The asynchronous "web" option or whatever they call it where you post a message will take days to weeks unless it's something dead simple like "increase my EC2 instance limit in this region by 100".
|
|
#
?
Feb 11, 2019 19:28
|
|
|
Yep. The "web" (email) option is for poo poo you just want to toss over the wall and forget about until you get a response. The chat or phone options are the only way to ensure results. Sure, there won't be any multitasking (or even leaving your desk) by you while the case is being actively handled but it's being actively handled so it's a win.
|
|
#
?
Feb 11, 2019 20:34
|
|
|
Stupid question do I need to signup my sub accounts for enterprise? It’s the first time I’ve set one up in awhile and as far as I know our dedicated spend contract should just have that roll down right? I guess I could bug our TAM, but 
|
|
#
?
Feb 11, 2019 22:12
|
|
|
|
| # ? May 15, 2024 20:16 |
|
|
I was checking a reporting tool a work today and unlimited S3 bucket size is no joke. We have one bucket that is more than a petabyte!
|
|
#
?
Feb 12, 2019 00:29
|
|