Aws vs Elasticsearch licensing

Recent elasticsearch licensing change ensures that the Beats modules are sending data to an officially supported versions of Elasticsearch and Kibana where Elastic can attest to the quality and scale of the products. Does AWS have any plans to fork a version filebeat? What are the alternatives? Host elasticsearch on EC2 instances, why not? CloudWatch, slow… Kubernetes options like ECK or helm chart deployments…tricky for production usage Loki?...

April 21, 2024 · 1 min · Oleksandr Kulbida

EKS with instance-store nitro-based node-group

Userdata is compatible with the standard AWS EKS Terraform module, with the sole recommendation being the utilization of a custom AMI. In order to use instance-store you also need to install local-static-provisioner - Terraform example: eks-dev-instance-store = { instance_types = ["r6id.large"] min_size = 1 max_size = 3 desired_size = 1 block_device_mappings = {# Root volume xvda = { device_name = "/dev/xvda" ebs = { volume_size = 24 volume_type = "gp3" iops = 3000 encrypted = false delete_on_termination = true } } } ami_id = data....

March 16, 2024 · 2 min · Oleksandr Kulbida

Simple rds access

There are numerous solutions for accessing private RDS instances, many of which require thoughtful design. The solution I use sometimes is straightforward: I deploy it as a Helm chart within a k8s cluster. In this setup, access to the RDS is contingent on having access to the k8s cluster with the appropriate RBAC configurations. While it may not be perfect, it’s secure, quick to implement, and requires minimal maintenance. The following command demonstrates the basic principle:...

December 23, 2023 · 1 min · Oleksandr Kulbida

EKS expose pods through cross-account Load balancer

Expose Amazon EKS pods through cross-account load balancer

December 23, 2023 · 1 min · Oleksandr Kulbida

EKS simplified access

Simplified EKS access

December 23, 2023 · 1 min · Oleksandr Kulbida

AWS removes NAT Gateway’s dependence on Internet Gateway for Private communications

You can now launch NAT Gateways in your VPC without associating an internet gateway to your VPC. Internet Gateway is required to provide internet access to the NAT Gateway. However, some customers use their NAT Gateways with Transit Gateway or virtual private gateway to communicate privately with other VPCs or on-premises environments and thus, do not need an internet gateway attached to their VPCs. More details:

June 17, 2021 · 1 min · Oleksandr Kulbida

AWS Load Balancer Controller version 2.2 now available with support for NLB instance targeting

May 24, 2021 · 1 min · Oleksandr Kulbida

Amazon EC2 Auto Scaling Introduces Predictive Scaling as a Native Scaling Policy

Amazon EC2 Auto Scaling now natively supports Predictive Scaling so you can proactively scale out your Auto Scaling group to be ready for upcoming demand. Predictive Scaling can help you avoid the need to over-provision capacity, resulting in lower EC2 cost, while ensuring your application’s responsiveness. (Previously, Predictive Scaling was only available via AWS Auto Scaling Plans.)

May 24, 2021 · 1 min · Oleksandr Kulbida

EKS Add-Ons Now Supports CoreDNS and kube-proxy

Amazon Elastic Kubernetes Service (Amazon EKS) now supports using the Amazon EKS console, CLI, and API to install and manage CoreDNS and kube-proxy in addition to existing support for the Amazon VPC CNI networking plugin.

May 24, 2021 · 1 min · Oleksandr Kulbida
AWS CloudFront functions

AWS CloudFront functions

AWS CloudFront functions is a nice alternative to Lambda@Edge

May 7, 2021 · 1 min · Oleksandr Kulbida