Review: Amazon Connect – A Programmable Telephone System

Do you provide services to consumer or business clients? Which channels do you provide for clients to get support, leave feedback, or let off frustration? Amazon Connect provides a contact center solu | Continue reading | 14 days ago

EC2 Instances 2.0 to Update Your Toolbox

Managing a mutable EC2 instance comes with many responsibilities. In this post, I show you how to solve everyday challenges by leveraging the latest and greatest capabilities of the AWS platform. | Continue reading | 1 month ago

How to secure your DevOps tools with ALB authentication?

Secure your DevOps tools by adding an extra layer of security: authentication provided by the Application Load Balancer (ALB) | Continue reading | 1 month ago

Dockerizing Ruby on Rails

Did you dockerize your Ruby on Rails application already? You definitely should! It simplifies deploying your application a lot. Learn how to create a Dockerfile to build a Docker image for your appli | Continue reading | 2 months ago

All you need to know about AWS re:Invent in 2019

Our re:Invent recap discusses the 10 most important announcements that you should not miss. | Continue reading | 2 months ago

Checklist: Is your application ready for a container cluster?

Is your application ready to run on a container cluster? Use this checklist to find out whether you are good to deploy your application on Amazon Elastic Container Service (ECS) and AWS Fargate or any | Continue reading | 3 months ago

Dead Man's Switch with CloudWatch

While writing this article, I’m traveling from Frankfurt to Stuttgart by high-speed train (ICE) with a top speed of 280 km/h. It is reassuring to know that a dead man’s switch stops the train immediat | Continue reading | 4 months ago

Rapid Docker on AWS Out Now

As a developer or DevOps engineer, you want to focus on shipping great experiences to your customers. Therefore, we have designed a fast and easy way to bundle your application into Docker containers | Continue reading | 4 months ago

Review: Amazon Aurora Serverless – A production-ready relational database?

It was never easier to scale your compute layer. EC2 Auto Scaling, Fargate, and Lambda enable horizontal scaling. But how do you scale your database? Use a NoSQL database like DynamoDB, one could say. | Continue reading | 5 months ago

EC2 Instance Connect is an insecure default

You can also listen to this topic in our podcast! Two months before, Michael wrote about why AWS SSM is a trojan horse. Shortly after that, AWS released EC2 Instance Connect, which is even worse. I | Continue reading | 6 months ago

Review: AWS Backup – A centralized place for managing backups?

AWS releases a new service with a lot of marketing noise. 🎉 You can’t resist, you want to use that new thing now. But soon you discover that: the service is missing essential features the service is | Continue reading | 6 months ago

Dockerizing Legacy Applications with Confd

This blog post is an excerpt of our book Rapid Docker on AWS. A legacy application typically uses files to read configuration parameters. But working with configuration files is cumbersome when buil | Continue reading | 7 months ago

How to Dockerize Your PHP Application for AWS Fargate?

This blog post is an excerpt of our book Rapid Docker on AWS. The biggest game-changer for Docker on AWS was the announcement of AWS Fargate. Operating Docker containers could not be easier. With A | Continue reading | 7 months ago

AWS CloudTrail: your audit log is incomplete

Recently, I was investigating the size of a security breach caused by leaked AWS credentials. The first place to go in such a scenario is the audit log recorded by CloudTrail. When configured correctl | Continue reading | 8 months ago

AWS SSM is a trojan horse: fix it now

Recently, I held a security workshop together with a team of engineers. At some point, the team demonstrated how they use AWS Systems Manager (SSM) to run commands on a machine. What the team didn’t k | Continue reading | 8 months ago

More than 25 SSL certificates with ECS

Both the Application Load Balancer (ALB) and the Network Load Balancer (NLB) provide TLS/HTTPS listeners allowing you to encrypt the data in transit from the clients to your cloud infrastructure. Toge | Continue reading | 8 months ago

Download YouTube Videos with AWS Lambda and Store Them on S3

Recently, I was faced with the challenge to download videos from YouTube and store them on S3. Sounds easy? Remember than Lambda comes with a few limitations: 512 MB of disk space available at /tmp | Continue reading | 9 months ago

Six new ways to reduce your AWS bill with little effort

The last time we wrote about how to save AWS costs was at the end of 2015. AWS has changed a lot since then. It’s time for an update with six new tips to save AWS costs with little effort. EC2 AMD I | Continue reading | 9 months ago

Own Your Analytics Data: Replacing Google Analytics with Amazon QuickSight

Making decisions based on data is compelling. Especially, when you wrestle with the most straightforward decisions like me. Google Analytics is the de-facto standard for tracking your customers while | Continue reading | 10 months ago

Unknown CloudFormation features you should know about

I was recently invited to a CloudFormation workshop with a group of early CloudFormation users. I soon realized that the group had a good understanding of the basics, so I started to introduce more ad | Continue reading | 10 months ago

AWS SLA: Are you able to keep your availability promise?

Are you offering availability of 99.99% or more to your clients? Bad news, you might not be able to keep your promise!Recently AWS announced a bunch of new Service Level Agreements (SLA). Therefore, | Continue reading | 1 year ago

Fargate is ready for prime time, and we share our CloudFormation templates

The recent AWS Fargate Price Reduction (up to 50%) is the last piece in the puzzle to call Fargate a reasonable choice for running Docker workloads on AWS.The CIO perspective is as simple as this: yo | Continue reading | 1 year ago

5 tips to become an AWS expert

This post was original published on the AWS News Blog.If you are just starting to use AWS today, you might think it’s going to be hard to catch up. How can you become an AWS expert? How can you kno | Continue reading | 1 year ago

Eat your own dog food: how AWS leverages Serverless

Tim Bray from Amazon gave a great talk at re:Invent 2018 where he shows us how AWS uses Serverless technologies. Did you know that some of the newer services such as API Gateway and EKS are using API | Continue reading | 1 year ago

The somewhat different AWS re:Invent recap

I’m still recovering from our trip to AWS re:Invent in Las Vegas. The conference was a blast. It was a huge pleasure to meet old and new friends. This blog post contains a somewhat different recap of | Continue reading | 1 year ago

My mental model of AWS

AWS is a complex system that no one can understand end-to-end? As AWS professionals we still have to deal with the AWS system daily. We design for AWS, and we debug our applications running in AWS. Ho | Continue reading | 1 year ago

Three simple rules to avoid data leaking from S3

Reviewing AWS accounts with a focus on security is part of my day-to-day job. My most common finding: unwanted public read or write access to S3 buckets. Why is that? Because there are three different | Continue reading | 1 year ago

Updated: EC2 Network Performance Cheat Sheet

What is the maximum network throughput of your EC2 instance? The answer to this question is key to choosing the type of an instance or defining monitoring alerts on network throughput. Unfortunately, | Continue reading | 1 year ago

EC2 Network Performance of t3

AWS introduced the t3 instance type in August. Time to update the EC2 Network Performance Cheat Sheet. The following table shows the network capabilities of t3 instances. Compared to the last generat | Continue reading | 1 year ago

Hot Off the Press: Amazon Web Services in Action Second Edition

We wrote and published the first edition of Amazon Web Services in Action in 2015. Our book quickly became a bestseller. We are still amazed by the positive feedback we receive from our readers every | Continue reading | 1 year ago

Comparing Serverless Offerings from Alibaba Cloud and AWS

Last weekend, I had the chance to play around with Alibaba Cloud at the DevOps Meetup in my city. An Alibaba Cloud Solution Architect introduced the platform and was well trained on AWS as well, so he | Continue reading | 1 year ago

A neglected serverless data store: Cloud Directory

Lately, I’ve been having much fun with Amazon Cloud Directory. Three months before, Cloud Directory was all new to me. Today, I am convinced that Cloud Directory is a neglected Serverless data store t | Continue reading | 1 year ago

GitHub process automation: A bot to build pull requests by core maintainers

We are maintaining multiple Open Source projects where we focus on CloudFormation templates. To ensure that the templates are of high quality, we leverage automated testing and pull requests. We could | Continue reading | 1 year ago

Restricting Access to EC2 Instances Based on Tags

The principle of least privilege is key when it comes to securing your infrastructure on AWS. For example, an engineer should only be able to control EC2 instances that are in scope for her day-to-day | Continue reading | 1 year ago

Analyzing CloudTrail with Athena

Which IAM users have been active within your AWS account within the last 30 days? Are all of the 999 IAM roles still in use, or can you remove some of them to clean up your infrastructure? Is it safe | Continue reading | 1 year ago

Easy-going AWS CloudFormation: cfn-modules

Today, we release a new open source project to make your CloudFormation live easier. We promise easy-going CloudFormation with cfn-modules. Our modules provide common building blocks to automate your | Continue reading | 1 year ago

Rich Social Sharing with SPAs Hosted on S3 and Delivered via CloudFront

You undoubtedly heard about single page applications (SPA) written with frameworks like Angular or React. One of the benefits of this approach is the possibility to host the static files (HTML, js, CS | Continue reading | 1 year ago

EKS vs. ECS: orchestrating containers on AWS

AWS announced Kubernetes-as-a-Service at re:Invent in November 2017: Elastic Container Service for Kubernetes (EKS). Since yesterday, EKS is generally available. I discussed ECS vs. Kubernetes before | Continue reading | 1 year ago

Cleaning up an S3 bucket with the help of Athena

Imagine your basement or attic would provide unlimited capacity for storing stuff. Sounds great? Maybe at first. But imagine how many stuff would pile up over the years if you were not forced to clean | Continue reading | 1 year ago

Cloud adaption strategy: event-based data synchronization

Are you building an application for the cloud without the slightest dependency to an on-premises infrastructure? Lucky you, most of us are struggling with uniting an outdated on-premises infrastructur | Continue reading | 1 year ago