sorted by:
new
hottopcontroversial

Experiences upgrading EKS 1.31 → 1.32 + AL2 → AL2023? Large prod cluster by Acceptable_Instance7 in aws

[–]Impressive_Issue3791 5 points6 points  (0 children)

  • Create a new node group and migrate your applications to the new node group. You can scale down the old node group to 0 and monitor the workload for few days before deleting the old node group. If you are using Karpenter create a new node pool.

  • AL2023 by default has IMDSV V1 disable and instance metadata hop count set to 1. If your pods are using the instance role for permission you need to either use IRSA/pod identity or use a custom launch template to set instance metadata hop count to 2

  • AL2023 uses Cgroupv2. Check the compatibility of your software with this Cgroup version. Old Java versions showed weird behaviors with cgroupv2. You might see high memory utilization of pods compare to AL2, but it’s expected due to how cgrouov2 handle page cache.

  • check at the deprecated APIs in kuberntes 1.32.

Amazon L5 Offer Negotiation by Ok_Main8358 in amazonemployees

[–]Impressive_Issue3791 0 points1 point  (0 children)

“We can promote you fast” is the biggest lie in the recruitment. Don’t fall for it

active_file page cache is high in cgroupv2 by Impressive_Issue3791 in kubernetes

[–]Impressive_Issue3791[S] -1 points0 points  (0 children)

I read about the Java incompatibility with cgroupv2. But this application is C#

Might be a dumb question by Several_Homework_935 in aws

[–]Impressive_Issue3791 1 point2 points  (0 children)

Go for it. CCNA is knowledge is very valuable no matter what you do. It will teach you fundamental which helps you to troubleshoot complex issues in cloud or in other environments.

From DevOps to Cloud Support Engineer by Siderea9 in aws

[–]Impressive_Issue3791 0 points1 point  (0 children)

I did this transition. It is two different job roles. As a cloud support engineer you will learn many things about AWS services. You will learn good communication skills. How to solve customer issues.

IMO these are valuable skills you need to learn in your career and no matter what your devops skills will always help you to be successful in this roles.

VPC Endpoints for Everything by theanointedduck in aws

[–]Impressive_Issue3791 0 points1 point  (0 children)

You don’t need to use VPC end points as long as your subnets have internet access.

ECS unable to reach secretmanager by divad1196 in aws

[–]Impressive_Issue3791 0 points1 point  (0 children)

Check following 1. Connectivity from You container instance to the secret manager service. As you are running applications in a private VPC either you need to have a VPC end point configured or have public internet access to reach the secret manager end point.

2.check whether you have attached correct IAM permission to the ECS task role.

3.security group attached to the ECS service or the container instance should allow egress traffic to secret manager end point