aws

Customized rate limiting for API Gateway by path parameter, query parameter, and more

Customized rate limiting for API Gateway by path parameter, query parameter, and more

API Gateway provides a feature to limit the number of requests a client can make per second (rate) and per day/week/month (quota). Rate limiting is very useful to protect your system from resource starvation caused by a client flooding your system with ...

EC2 Network Performance of t3

EC2 Network Performance of t3

AWS introduced the t3 instance type in August. Time to update the EC2 Network Performance Cheat Sheet. The following table shows the network capabilities of t3 instances. Compared to the last generation t2 there is no difference in the baseline through...

Hot off the press: Amazon Web Services in Action Second Edition

Hot off the press: Amazon Web Services in Action Second Edition

We wrote and published the first edition of Amazon Web Services in Action in 2015. Our book quickly became a bestseller. We are still amazed by the positive feedback we receive from our readers every day. Thanks for that! Nevertheless, AWS is changing f...

Comparing Serverless offerings from Alibaba Cloud and AWS

Comparing Serverless offerings from Alibaba Cloud and AWS

Last weekend, I had the chance to play around with Alibaba Cloud at the DevOps Meetup in my city. An Alibaba Cloud Solution Architect introduced the platform and was well trained on AWS as well, so he could compare both platforms for us. I also spent so...

A neglected serverless data store: Cloud Directory

A neglected serverless data store: Cloud Directory

Lately, I’ve been having much fun with Amazon Cloud Directory. Three months before, Cloud Directory was all new to me. Today, I am convinced that Cloud Directory is a neglected Serverless data store that deserves much more attention. Let me explain what...

DevOps on AWS Radio

DevOps on AWS Radio

Paul Duvall (CTO at stelligent) interviewed Andreas and me for the DevOps on AWS Radio. We talked about: Our book Amazon Web Services in Action and what changed in the second edition Our top 3 recommendations for enterprises on what to do to be most s...

GitHub process automation: A bot to build pull requests authorized by core maintainers

GitHub process automation: A bot to build pull requests authorized by core maintainers

We are maintaining multiple Open Source projects where we focus on CloudFormation templates. To ensure that the templates are of high quality, we leverage automated testing and pull requests. We could use the CodeBuild GitHub integration to execute yaml...

Encrypting sensitive data stored on S3

Encrypting sensitive data stored on S3

S3 comes with a bunch of features to encrypt your data at rest. Data at rest means inactive data stored physically on disk. Before we dive into encrypting data at rest, I want to highlight that there is also data in use and data in transit. If the data...

Restricting Access to EC2 Instances Based on Tags

Restricting Access to EC2 Instances Based on Tags

The principle of least privilege is key when it comes to securing your infrastructure on AWS. For example, an engineer should only be able to control EC2 instances that are in scope for her day-to-day work. But how do you make sure an engineer is only a...

Analyzing CloudTrail with Athena

Analyzing CloudTrail with Athena

Which IAM users have been active within your AWS account within the last 30 days? Are all of the 999 IAM roles still in use, or can you remove some of them to clean up your infrastructure? Is it safe to remove the action s3:GetObject from the IAM policy...


marbot

Are you part of a highly motivated DevOps team? Use marbot, a friendly chatbot, to forward all kind of alerts from your AWS infrastructure to Slack. Alerts are escalated across your team automatically allowing you to focus on your daily work.

Amazon Web Services in Action (Second Edition)

Amazon Web Services in Action (Second Edition) introduces you to computing, storing, and networking in the AWS cloud.