Use Image Scanning for AWS ECR


Amazon just announced that ECR now has the image scanning capability. It is a good News if you use ECR as your Docker image registry, as you just can consume it for free! A good use case is to add it into your CI pipeline for image scanning. A quick example of scanning the Docker … Continue reading Use Image Scanning for AWS ECR

Port Forwarding over AWS Session Manager


Continue with the Session Manager over PrivateLink, another good use case for session manager is port forwarding. Here is a quick demo: First, login into the EC2 instance with session manager to install a Apache server # Install Apachesudo yum -y install httpd # Start Apache web serversudo systemctl start httpd # Ensure port 80 … Continue reading Port Forwarding over AWS Session Manager

Use AWS SSM Session Manager Over PrivateLink


AWS SSM Session Manager is a great addition to the existing AWS services, simply speaking it provides a secured, manageable and easier way to access the instance inside the VPC, and more (e.g. port forwarding). There are two ways to use session manager: over Internet vs over PrivateLink. Over Internet: The instance communicates to the … Continue reading Use AWS SSM Session Manager Over PrivateLink

Improved VPC networking for AWS Lambda functions


AWS just recently announced the improved VPC networking for AWS Lambda functions. Simply speaking the improvement is made by that Lambda functions now uses AWS HyperPlane to connect to customers' VPC instead of the individual ENI. AWS HyperPlane is a distributed Network Function Virtualization platform that works at the VPC flow level, it tracks the … Continue reading Improved VPC networking for AWS Lambda functions

Updated AWS Well-Architected Framework


AWS recently released the new version of AWS Well-Architected Framework, I just had a quick look. The biggest change to me is that the Architecture design principles (they call it pillars of the framework) have increased from 4 to 5. Now the 5 pillars of the framework are: Operational Excellence Security Reliability Performance Efficiency Cost … Continue reading Updated AWS Well-Architected Framework