Page 12

re:Invent 2020: Recap of Werner Vogels's Keynote

Werner Vogels’s keynote was a blast and definitely the highlight of re:Invent 2020. Michael and I are going through the announced features and services. As usual, we also take a look at the technical details. CloudShell VPC Reachability Analyzer Fault ...

Next Generation Load Balancing: ALB with gRPC and HTTP/2

AWS announced an important update for the Application Load Balancer (ALB) in November 2020: Support for gRPC and HTTP/2. HTTP/2 comes with request multiplexing over a single TCP connection, header compression (HPACK) which reduces network utilization, a...

3½ ways to workaround missing CloudFormation support

Are you following the Infrastructure as Code approach using CloudFormation? If so, I bet you encountered a situation where CloudFormation misses support for a service’s latest features. I run into those issues weekly! So what can we do about it? Do yo...

How to configure SAML for AWS SSO?

AWS SSO is a great way to grant engineers access to AWS accounts. By default, AWS SSO comes with a built in user database. However, it is also possible to configure identity federation via SAML. Doing so allows you to re-use existing users and groups. ...

A recap of the re:Invent 2020 Keynote with Andy Jassy

We are discussing Andy Jassy’s keynote from re:Invent 2020. The focus is on the newly announced services and features: ECS Anywhere, EBS volumes (gp3), Aurora Serverless v3, Lambda Container Support, and many more. Enjoy listening or watching! VideoJav...

Unusual AWS Architectures

AWS provides many building blocks. As architects, we have to choose the right building blocks to construct our systems. But sometimes, the proper building block is not available, and we have to make compromises. In this blog post, I show four unusual AW...

CodeBuild Report Groups 101

AWS CodeBuild provides a fully managed, Docker-based build environment. You can use it in standalone mode or together with CodePipeline. Report Groups help you to make unit test results and code coverage visible because only the visible can be improved ...

Amazon EventBridge versus Amazon SNS: What's the difference?

Amazon EventBridge (formerly CloudWatch Events) and Amazon SNS provide a way to send events to multiple subscribers. From a high-level perspective, both services are similar. This leads to the question: But how are they different? What advantages do the...

Comparing API Gateways on AWS

Of the different API gateways offered by AWS, which option fits your needs? An API Gateway is “a server that acts as an API front-end, receives API requests, enforces throttling and security policies, passes requests to the back-end service, and then pa...

Transition to IMDSv2 on EC2 - Introduction, Preparation, Pitfalls

IMDSv2 can improve EC2 security. For a couple of weeks, AWS Foundational Security Best Practices recommends that EC2 instances use IMDSv2 (control EC2.8). This video explains why IMDSv2 is useful and what attacks it protects you against, including a li...