Writing about Cloud, architecture, AWS, GCP and software engineering.

CloudFormation Custom Resource: Transit Gateway Peering Accepter

A Transit Gateway Peering Attachment must be accepted by the owner of the attachment. Even if both Transit Gateways are in the same account. To automate this with CloudFormation I have created a custom resource. ...

July 11, 2022

Best practices for S3 web hosting and explaining why

There are a lot of very good resources explaining how to set up a S3 website. But not explaining why you should choose one option over the other. In this article I will not explain step by step how to set up a S3 website. If you are looking for that, I have added some links at the bottom of this article. Instead I will give you the best practices and support those with an explanation. ...

February 3, 2022

S3 website: Why your domain and bucket name must be identical

When setting up S3 website hosting you can use a Route53 alias for connecting the domain to the website bucket. This approach forces you to set identical names for the S3 bucket and domain name. In this article I will explain to you why the domain name and bucket names must be identical. ...

January 31, 2022

Improve RDS scalability and resilience with AWS RDS Proxy

AWS RDS Proxy improves database efficiency, application scalability, and security. With the use of RDS Proxy your applications are able to pool and share database connections. Removing the overhead of opening and closing connections. ...

January 21, 2022

Scheduled scaling for EC2 Auto Scaling

Scheduled scaling for EC2 Auto Scaling can help out with predicable load by specifying capacity changes on a schedule. For example when a busy period is expected or to save money for your development environment scaling them down outside office hours. ...

December 23, 2021

How to bootstrap an AWS account with Terraform state backend

If you want to create an infrastructure CI/CD pipeline for AWS using Terraform, you want to keep the state in a remote backend. When provisioning an environment with Terraform that includes the state backend resources, you will need two actions to set up the remote state backend. In this blog I will present you with a CloudFormation template with which you can bootstrap the AWS account. This will decouple the state backend resources from the Terraform template. This allows you to use the remote backend straight away from your CI/CD pipeline. ...

November 6, 2021

How to access your AWS Secret Manager secrets in an Elastic Kubernetes Service cluster

By using the Kubernetes Secrets Store CSI Driver you can provide pods with secrets from the AWS Secret Manager. This allows you to use the features the Secrets Manager has to offer within your EKS cluster. ...

November 3, 2021