|
ickna posted:Just a friendly reminder to turn on MFA if you use AWS. My account was compromised yesterday morning and I wouldn't have caught it if Amazon didn't do checks on unusual activity (like maxing instances in every area). In 3 hours it racked up $2k in usage charges, which they are fortunately making a concession for. I'd be checking the iam keys rather than the password
|
# ¿ Feb 28, 2017 19:19 |
|
|
# ¿ Apr 30, 2024 12:02 |
|
Pollyanna posted:Yeah, I'm really confused on why things are being made from scratch every time. I'll have to confirm that's actually happening, but since the only thing changing is pulling a different commit of the master branch at any point in time, then there's no reason to bake entire AMIs. So it sounds as though you have a couple of options to speed things up If you setup a common base ami with as much of your standard tooling installed on it as possible then to prep a release all you now need to do in run a git pull Also depending on how many amis you bake it may be worth getting packer to attach an EBS volume to an already running instance and snapshot it rather than waiting for a new instance to launch (t2.nanos are perfect for this)
|
# ¿ Mar 11, 2017 10:16 |
|
2nd Rate Poster posted:For new infrastructure a checkout of terraform will be done locally and after changes are made updates to state files will be pushed to github. Is there a particular reason you opted to have remote states pushed to git rather than a versioned s3 bucket that seems to be the common practice?
|
# ¿ Apr 3, 2017 07:50 |
|
Cancelbot posted:Does anyone know how bad the Developer - Associate cert is? I know the DevOps Professional will kick my arse but I need to get onto associate first. I'm going through the recommended "quest" first and will probably do the practice exam in a couple weeks. As long as your familiar with the basics of ec2 vpc rds you should be fine with the sysops associate,not really looked at the Dev associate but have the devops pro booked for next month
|
# ¿ Sep 12, 2017 19:00 |
|
Just found out I need to deploy a couple of environments on alibaba cloud. Given that we're only using rds, ec2 and s3 and they look to have equivalents on alibaba are there any major gotchas that I'm likely to run into?
|
# ¿ Oct 31, 2017 20:09 |
|
FamDav posted:just out of curiosity but why doesn't the mainland china region for aws work here? It's not China we need to be in otherwise we would still be on aws
|
# ¿ Nov 1, 2017 07:01 |
|
Does the vm import service not cover this for you? How exotic an os are we talking about?
|
# ¿ Nov 1, 2017 19:40 |
|
Simple db still exists even if it is a little unloved
|
# ¿ Nov 7, 2017 22:02 |
|
SnatchRabbit posted:Thanks for the replies. Another question: can anyone recommend a good S3 viewer for Mac OS? Cyber duck is one of the least bad options if you need a gui If not stick to s3cmd
|
# ¿ Mar 3, 2018 10:40 |
|
Where has decent study material/practice papers for the professional level exams?
|
# ¿ Mar 14, 2018 20:02 |
|
very stable genius posted:Hey CF, can you tell me what's going to change if I run this template? lol nope And don't forget the classic Hey CF, you've failed to update a stack, failed to rollback, and I can't delete that stack as it's running production workloads. How long will it take for support to reset that state?
|
# ¿ Jun 15, 2018 21:00 |
|
You can have a bucket called my.domain and then set a cname for my.domain to point at the s3 url which will work but you need cloudfront to provide ssl but your bucket name will have to match your url
|
# ¿ Dec 30, 2018 19:01 |
|
https://aws.amazon.com/workspaces/ I think it now handles Linux desktops
|
# ¿ Feb 2, 2019 21:00 |
|
Why is this the first time I've ever heard of elasticwolf?
|
# ¿ Feb 3, 2019 21:53 |
|
Am i misremembering or was there a way to trigger an ssm runcommand action on a failing elb healthcheck? We have have instances running multiple services and arnt allowed to set the asg to use the elb health to trigger a termination
|
# ¿ Jul 3, 2019 16:54 |
|
Vanadium posted:Why are you using the Cloudwatch Logs interface when you could be using Cloudwatch Logs Insights!! Both are awful
|
# ¿ Aug 25, 2019 15:08 |
|
You'll want to look at filtering possibly network-interface-id https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-addresses.html Why are you using elastic ips over just using the ip that the instance comes up with?
|
# ¿ Sep 5, 2019 21:07 |
|
Either proxy a ssh session through the bastion and use scp or i believe you can tunnel it through a ssm-session
|
# ¿ Nov 22, 2019 21:36 |
|
Got my devops pro booked for later this week, how representational are the acg practice exams?
|
# ¿ Dec 3, 2019 21:05 |
|
How long does it take for an application to aws be rejected via the job portal? Its been 3 weeks so I'm assuming they dont want to interview me
|
# ¿ Jan 28, 2020 23:09 |
|
Always reach out to your TAM your never know what fun toys are tucked away behind a NDA
|
# ¿ Feb 26, 2020 18:15 |
|
Agrikk posted:What’s the position? Persistence does seem to be the key as im now got an interview for a devops consultant role lined up
|
# ¿ Mar 10, 2020 19:57 |
|
I think you need to go down the sso route for that
|
# ¿ Apr 8, 2020 17:59 |
|
Install ssm agent on windows server use lambda to call ssm run command
|
# ¿ Apr 28, 2020 19:28 |
|
22 Eargesplitten posted:Hate to double post, but does anyone have any recommendations for practice exams for the Certified Solutions Architect - Associate? I think I'm ready to see where I stand and what I need to study more. Im working my way through the a cloud guru course, it did the job for the devops professional exam
|
# ¿ Jun 8, 2020 21:15 |
|
im trying to get a list of EBS Snapshots that aren't from a list of policy-idscode:
any suggestions?
|
# ¿ Jun 11, 2020 11:57 |
|
Is there a reason that the aws android app doesn't support u2f
|
# ¿ Sep 3, 2020 13:38 |
|
SnatchRabbit posted:Has anyone had any luck copying objects in bulk from a FTP server (or any server really) into s3, ideally using sync command but not required, and keeping the source file's attributes, such as file created/updated, tags etc, and populating that data into the s3 object's custom metadata? Really, my only requirement is I just want to know the source files creation date/time on the FTP and just have that value stuck into a custom metadata tag on S3. This sounds like an easy thing I'm just not seeing any obvious solution. I thought maybe something like S3Browser might have that built in but I'm just not seeing it. Would https://aws.amazon.com/aws-transfer-family/ do the job?
|
# ¿ Oct 7, 2020 06:54 |
|
Best one I saw was <developer name>.<company name> hosting production assets. Every couple of months there someone would come along and ask about deleting that bucket. Keith had long since departed the company
|
# ¿ Aug 23, 2022 16:56 |
|
Anyone else having issues with ssm sessions over ipv6?
|
# ¿ Oct 3, 2022 16:48 |
|
|
# ¿ Apr 30, 2024 12:02 |
|
Anyone using zesty to manage reserved instances or is there a better alternative?
|
# ¿ Apr 19, 2023 12:21 |