| Порівняння попередніх версій
Попередня ревізія
Наступна ревізія
|
Попередня ревізія
|
software:aws [2021/08/05 12:04]
charon [Security] |
software:aws [2024/10/10 18:39] (поточний)
charon [Новейшее] |
| А на початку щось моє буде. | А на початку щось моє буде. |
| ===== Моє ===== | ===== Моє ===== |
| | * [[software:aws:amazonq|Amazon Q and CodeWhisperer]] |
| * [[software:aws:mylogging|How to use AWS CloudWatch agent for better monitoring]] - mine | * [[software:aws:mylogging|How to use AWS CloudWatch agent for better monitoring]] - mine |
| * [[software:aws:mysecrets|Secrets Manager]] | * [[software:aws:mysecrets|Secrets Manager]] |
| * [[software:aws:mypolicies|IAM policies]] | * [[software:aws:mypolicies|IAM policies]] |
| | * [[software:aws:cdk|CDK]] |
| | * [[programming:python:new_boto|Boto3 new project template]] |
| | * [[software:aws:myssmconnect|Як підключитися до EC2 інстанса у приватному сабнеті за допомогою SSM]] |
| | * [[software:aws:network_monitoring|Як моніторити мережеве навантаження]] |
| ===== Architect ===== | ===== Architect ===== |
| * [[https://aws.amazon.com/whitepapers/|AWS Whitepapers]] | * [[https://aws.amazon.com/whitepapers/|AWS Whitepapers]] |
| * [[https://aws.amazon.com/blogs/security/techniques-for-writing-least-privilege-iam-policies/|Techniques for writing least privilege IAM policies]] (02 DEC 2020) | * [[https://aws.amazon.com/blogs/security/techniques-for-writing-least-privilege-iam-policies/|Techniques for writing least privilege IAM policies]] (02 DEC 2020) |
| * [[https://aws.amazon.com/blogs/security/strengthen-the-security-of-sensitive-data-stored-in-amazon-s3-by-using-additional-aws-services/?nc1=b_rp|Strengthen the security of sensitive data stored in Amazon S3 by using additional AWS services]] (26 JUL 2021) | * [[https://aws.amazon.com/blogs/security/strengthen-the-security-of-sensitive-data-stored-in-amazon-s3-by-using-additional-aws-services/?nc1=b_rp|Strengthen the security of sensitive data stored in Amazon S3 by using additional AWS services]] (26 JUL 2021) |
| | |
| | ===== SSH Port Forwarding ===== |
| | * [[https://aws.amazon.com/ru/blogs/rus/amazon-ec2-instance-port-forwarding-with-aws-systems-manager/|Переадресация портов инстансов Amazon EC2 с помощью AWS Systems Manager]] |
| | * [[https://aws.amazon.com/ru/blogs/mt/use-port-forwarding-in-aws-systems-manager-session-manager-to-connect-to-remote-hosts/|Use port forwarding in AWS Systems Manager Session Manager to connect to remote hosts]] |
| ===== Streaming ===== | ===== Streaming ===== |
| * [[https://pages.awscloud.com/Get-Started-with-Real-Time-Streaming-Data-in-Under-5-Minutes_0603-ABD_OD.html|Get Started with Real-Time Streaming Data in Under 5 Minutes]] (June 18, 2018) | * [[https://pages.awscloud.com/Get-Started-with-Real-Time-Streaming-Data-in-Under-5-Minutes_0603-ABD_OD.html|Get Started with Real-Time Streaming Data in Under 5 Minutes]] (June 18, 2018) |
| * [[https://aws.amazon.com/blogs/devops/best-practices-for-developing-cloud-applications-with-aws-cdk/|Best practices for developing cloud applications with AWS CDK]] (01 APR 2021) | * [[https://aws.amazon.com/blogs/devops/best-practices-for-developing-cloud-applications-with-aws-cdk/|Best practices for developing cloud applications with AWS CDK]] (01 APR 2021) |
| * [[https://medium.com/swlh/deploying-your-app-with-ecs-gitlab-ci-cd-e211e6f103e1|Deploying Your App With ECS & Gitlab CI/CD]] (8 Sep 2020) | * [[https://medium.com/swlh/deploying-your-app-with-ecs-gitlab-ci-cd-e211e6f103e1|Deploying Your App With ECS & Gitlab CI/CD]] (8 Sep 2020) |
| | * [[https://aws.amazon.com/blogs/devops/secure-cdk-deployments-with-iam-permission-boundaries/|Secure CDK deployments with IAM permission boundaries]] (10 JAN 2023) |
| | * [[https://aws.amazon.com/blogs/devops/how-to-import-existing-resources-into-aws-cdk-stacks/|How to import existing resources into AWS CDK Stacks]] (21 SEP 2023) |
| | * [[https://aws.amazon.com/blogs/devops/terraform-ci-cd-and-testing-on-aws-with-the-new-terraform-test-framework/|Terraform CI/CD and testing on AWS with the new Terraform Test Framework]] (02 APR 2024) |
| ===== Containers ===== | ===== Containers ===== |
| * [[https://aws.amazon.com/ru/blogs/containers/how-amazon-ecs-manages-cpu-and-memory-resources/|How Amazon ECS manages CPU and memory resources]] (21 OCT 2019) | * [[https://aws.amazon.com/ru/blogs/containers/how-amazon-ecs-manages-cpu-and-memory-resources/|How Amazon ECS manages CPU and memory resources]] (21 OCT 2019) |
| * [[https://aws.amazon.com/amazon-linux-ami/|Amazon Linux]] (version 1, soon will be deprecated]] | * [[https://aws.amazon.com/amazon-linux-ami/|Amazon Linux]] (version 1, soon will be deprecated]] |
| * [[https://aws.amazon.com/amazon-linux-2/release-notes/|Amazon Linux 2]] - здесь устаревшие ami id. | * [[https://aws.amazon.com/amazon-linux-2/release-notes/|Amazon Linux 2]] - здесь устаревшие ami id. |
| | |
| | **Latest Amazon Linux 2023 AMI arm64** |
| | aws ec2 describe-images --owners amazon --filters 'Name=name,Values=al2023-ami-2023*' \ |
| | "Name=architecture,Values=arm64" 'Name=state,Values=available' "Name=virtualization-type,Values=hvm" \ |
| | --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' |
| | |
| **Latest Amazon Linux 2 AMI x86_64** | **Latest Amazon Linux 2 AMI x86_64** |
| aws ec2 describe-images --owners amazon --filters 'Name=name,Values=amzn2-ami-*-x86_64-gp2' \ | aws ec2 describe-images --owners amazon --filters 'Name=name,Values=amzn2-ami-*-x86_64-gp2' \ |
| --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' | --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' |
| |
| **Latest Debian 10 x86_64** | **Latest Debian 12 (bookworm) x86_64** |
| aws ec2 describe-images --owners 136693071363 --filters 'Name=name,Values=debian-10-*' \ | aws ec2 describe-images --owners 136693071363 --filters 'Name=name,Values=debian-12-amd64-*' \ |
| "Name=architecture,Values=x86_64" 'Name=state,Values=available' "Name=virtualization-type,Values=hvm" \ | "Name=architecture,Values=x86_64" 'Name=state,Values=available' "Name=virtualization-type,Values=hvm" \ |
| --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' | --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' |
| |
| **Latest Ubuntu 18.04 server x86_64** | **Latest Debian 11 (bullseye) x86_64** |
| aws ec2 describe-images --owners 099720109477 --filters "Name=virtualization-type,Values=hvm" \ | aws ec2 describe-images --owners 136693071363 --filters 'Name=name,Values=debian-11-*' \ |
| 'Name=name,Values=ubuntu/images/hvm-ssd/ubuntu-bionic-18.04-*-server-*' "Name=architecture,Values=x86_64" \ | "Name=architecture,Values=x86_64" 'Name=state,Values=available' "Name=virtualization-type,Values=hvm" \ |
| 'Name=state,Values=available' --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' | --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' |
| |
| **Latest Ubuntu 20.04 server x86_64** | **Latest Ubuntu 24.04 server x86_64** |
| <code> | <code> |
| aws ec2 describe-images --region us-east-1 --owners 099720109477 \ | aws ec2 describe-images --region us-east-1 --owners 099720109477 \ |
| --filters "Name=virtualization-type,Values=hvm" \ | --filters "Name=virtualization-type,Values=hvm" \ |
| 'Name=name,Values=ubuntu/images/hvm-ssd/ubuntu-focal-20.04-*-server-*' \ | 'Name=name,Values=ubuntu/images/hvm-ssd-gp3/ubuntu-noble-24.04-*-server-*' \ |
| | "Name=architecture,Values=x86_64" 'Name=state,Values=available' \ |
| | --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' |
| | </code> |
| | |
| | **Latest Ubuntu 22.04 server x86_64** |
| | <code> |
| | aws ec2 describe-images --region us-east-1 --owners 099720109477 \ |
| | --filters "Name=virtualization-type,Values=hvm" \ |
| | 'Name=name,Values=ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-*-server-*' \ |
| "Name=architecture,Values=x86_64" 'Name=state,Values=available' \ | "Name=architecture,Values=x86_64" 'Name=state,Values=available' \ |
| --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' | --output json | jq -r '.Images | sort_by(.CreationDate) | last(.[]).ImageId' |
| ssh-keygen -t rsa -b 4096 -f ~/.ssh/project -C "Project key" | ssh-keygen -t rsa -b 4096 -f ~/.ssh/project -C "Project key" |
| mv ~/.ssh/project ~/.ssh/project.pem | mv ~/.ssh/project ~/.ssh/project.pem |
| | ed25519 keys are also available now |
| ===== Kubernetes ===== | ===== Kubernetes ===== |
| * [[https://aws.amazon.com/blogs/compute/run-your-kubernetes-workloads-on-amazon-ec2-spot-instances-with-amazon-eks/|Run your Kubernetes Workloads on Amazon EC2 Spot Instances with Amazon EKS]] | * [[https://aws.amazon.com/blogs/compute/run-your-kubernetes-workloads-on-amazon-ec2-spot-instances-with-amazon-eks/|Run your Kubernetes Workloads on Amazon EC2 Spot Instances with Amazon EKS]] |
| ===== Полезное ===== | ===== Полезное ===== |
| * [[https://aws.amazon.com/blogs/aws/keeping-time-with-amazon-time-sync-service/|Keeping Time With Amazon Time Sync Service]] NTP for AWS | * [[https://aws.amazon.com/blogs/aws/keeping-time-with-amazon-time-sync-service/|Keeping Time With Amazon Time Sync Service]] NTP for AWS |
| * [[https://aws.amazon.com/ru/about-aws/whats-new/2018/11/introducing-amazon-ec2-a1-instances/|Introducing Amazon EC2 A1 Instances Powered By New Arm-based AWS Graviton Processors]] | |
| * [[https://pages.awscloud.com/Introducing-AWS-CodeArtifact_2020_0715-DEV_OD.html|Introducing AWS CodeArtifact]] (July 24, 2020) - fully managed artifact repository service | * [[https://pages.awscloud.com/Introducing-AWS-CodeArtifact_2020_0715-DEV_OD.html|Introducing AWS CodeArtifact]] (July 24, 2020) - fully managed artifact repository service |
| * [[https://arnaud-outtier.medium.com/my-cant-fail-training-method-for-passing-aws-certifications-3d139b227a8e|My “can’t fail” training method for passing AWS certifications]] | * [[https://arnaud-outtier.medium.com/my-cant-fail-training-method-for-passing-aws-certifications-3d139b227a8e|My “can’t fail” training method for passing AWS certifications]] |
| | * [[https://aws.amazon.com/blogs/devops/unit-testing-aws-lambda-with-python-and-mock-aws-services/|Unit Testing AWS Lambda with Python and Mock AWS Services]] (22 MAR 2023) |
| ===== Новейшее ===== | ===== Новейшее ===== |
| * [[https://pages.awscloud.com/AWS-Learning-Path-How-to-Use-Amazon-EventBridge-to-Build-Decoupled-Event-Driven-Architectures_2020_LP_0001-SRV.html|How to Use Amazon EventBridge to Build Decoupled, Event-Driven Architectures]] - learning path | * [[https://pages.awscloud.com/AWS-Learning-Path-How-to-Use-Amazon-EventBridge-to-Build-Decoupled-Event-Driven-Architectures_2020_LP_0001-SRV.html|How to Use Amazon EventBridge to Build Decoupled, Event-Driven Architectures]] - learning path |
| | * [[https://www.youtube.com/watch?v=SUqap3JZYmc|AWS re:Invent 2023 - Accelerate DevOps with generative AI and Amazon CodeCatalyst (DOP205)]] video |
