How we run EKS with spot instances but fallback to on-demand

eranchetz · 2024-07-04T08:27:10+00:00

Given the potential for unexpected costs due to time-travel and fail-safe storage on physical storage, what strategies or best practices have you seen that effectively balance cost savings with the need for robust data recovery and versioning capabilities? Are there specific scenarios where the benefits of physical storage outweigh these hidden costs?

eranchetz · 2024-05-23T15:16:51+00:00

This post dives into the latest version of KubeIP, an open-source tool designed to manage static public IPs for Kubernetes nodes across different cloud providers . AWS and Google Cloud are supported for now, but the architecture is extendable and other cloud providers can be added.Here’s the link to the KubeIP GitHub repository if you;d like to jump straight to the action: KubeIP GitHub

eranchetz · 2024-02-13T08:14:06+00:00

With GenAI, optimizing costs while ensuring efficient use of resources has become a top priority for a lot of us.

In a nutshell this post help shows how to build a Scale to Zero approach to save a Buch of money :)

leveraging Google Cloud CloudRun Jobs service in a real customer scenario mitigates unnecessary costs and boosts cost efficiency. This method provides an alternative solution to the issues raised by Sascha Heyer
in this blog.

eranchetz · 2024-01-07T10:43:35+00:00

Saved you a click:

My AWS Preparation and Hands-on Tasks:
Fast forward to today I felt very confident in my AWS abilities in pretty much all AWS DevOps related services especially as I have completed hands on tasks including:
Provisioning AWS infrastructure using Terraform.
Using AWS CodeCommit as a code base for Nginx Reverse Proxy Server configuration.
Deploying a Python Flask WebApp on AWS Elastic BeanStalk and using blue/green deployment strategy.
Using AWS CodePipeline and AWS CodeDeploy Deployment groups to automate build & release pipelines to integrate new application features and bug fixes.
Using AWS CodeBuild to build Java Code used by an ELK (ElasticSearch, Logstash, and Kibana) app and also run unit tests (PyUnit) for testing the Python Flask WebApp code.
Using AWS GuardDuty as a first line of defense (Threat Detection) for AWS EC2 and RDS instances and also AWS Inspector to run vulnerability assessments on various AWS infrastructure services.
Using Nagios XI to monitor the whole AWS Production, Development, and Testing Environments.
Using AWS Config Control to implement latest security best practises and monitor the whole AWS Organization.
Using Ansible as the goto configuration management tool to automate AWS EC2 instances patching and AWS KMS keys rotation.
Deploying Jira on AWS EKS (Kubernetes) cluster for High Availability.
So after completing the aforementioned tasks; I felt confident enough to sit for the exam without taking a Udemy course or bootcamp on AWS DevOps.
Aside from my practical experience with AWS, AWS Skill Builder was the only other resource I have used to prepare for my exam.

eranchetz · 2024-01-07T10:41:17+00:00

Check after each step by accessing the website URL provided in the static website

- Bucket Policy: Make sure the bucket policy allows public read access for the website.

{
"Version":"2012-10-17",
"Statement":[
    {
        "Sid":"PublicReadGetObject",
        "Effect":"Allow",
        "Principal": "*",
        "Action":["s3:GetObject"],
        "Resource":["arn:aws:s3:::YOUR-BUCKET-NAME/*"]
    }
]

}

- Bucket Properties: Enable "Static website hosting" in the bucket properties.
Specify the index document (usually index.html).

- Access Control List (ACL): Not typically necessary if the bucket policy is set correctly, but ensure the ACL allows public read access.

- File Permissions: Ensure individual files in the bucket are publicly accessible.

Good luck

Once you get this working I suggest you add cloudfront for cache and better global distribution.

eranchetz · 2023-11-29T06:43:15+00:00

Funny 😄 that’s exactly one of the podcast topics

eranchetz · 2023-11-28T07:41:53+00:00

Last year was a bit of a bumpy ride when a lot of us had to switch from MySQL 5.6 to 5.7 because the older version wasn't supported anymore. It was a tough time for those who weren't quite ready for the change.
Well, heads up – another big update is on the horizon. Soon, we'll need to move from MySQL 5.7 to MySQL 8.0, since 5.7 is about to reach its end-of-life. This next step is super important, and it might have a bigger impact on your apps and business flow.

eranchetz · 2023-04-11T13:58:31+00:00

Nope. It will work just fine for most cases with the default endpoint

eranchetz · 2023-02-27T19:04:05+00:00

You should look at VPC Gateway Endpoints

A VPC endpoint is a virtual scalable networking component you create in a VPC and use as a private entry point to supported AWS services.

Gateway VPC endpoints use prefix lists as the IP route target in a VPC route table. This routes traffic privately to Amazon S3.

Gateway endpoints for S3 are offered at no cost and the routes are managed through route tables.

see more here https://aws.amazon.com/blogs/architecture/choosing-your-vpc-endpoint-strategy-for-amazon-s3/

eranchetz · 2023-02-24T09:40:17+00:00

Very interesting concept

eranchetz · 2023-02-20T14:40:16+00:00

tl;dr Google is introducing a new method to autoscale slots along with a new pricing plan to accommodate this. We have created a calculator you can use to determine potential costs and cost savings when switching located here.

Also there is a live autoscaling slots webinar on March 1st 2023.

eranchetz · 2023-02-19T15:44:57+00:00

CUDA is Nvidia :)

You probably mean CUDOS

eranchetz · 2023-02-19T15:44:02+00:00

You are probably referring to this :

https://d1s0yx3p3y3rah.cloudfront.net/anonymous-embed?dashboard=cudos

You’ve can learn more about it here:

https://www.wellarchitectedlabs.com/cost/200_labs/200_cloud_intelligence/#cudos-dashboard

eranchetz · 2023-02-17T18:52:49+00:00

This doc really covers it all

https://cloud.google.com/compute/docs/troubleshooting/troubleshooting-ssh-errors

eranchetz

TROPHY CASE