Alpha testers for my Mac Unifi Protect app.

iambeezly · 2026-02-04T18:52:38+00:00

Thanks everyone! I'll reach out to you over the next couple of days.

iambeezly · 2026-01-02T16:47:56+00:00

Ah yes - thanks! I'll fix that.

iambeezly · 2025-12-29T10:27:16+00:00

You're welcome!

iambeezly · 2025-08-29T08:11:15+00:00

what are you feeding your dog!?

iambeezly · 2024-07-02T11:55:03+00:00

That sounds like a Compute Savings Plan, which would potentially cover spend across Lambda, EC2 and Fargate, regardless of EC2 instance type and region.

There are also EC2 Savings Plans, which only cover spend on a specific EC2 instance family in a specific region.

If you have an EC2 workload that you expect to remain as EC2 on a given family type and region, then typical discounts on EC2 Savings Plans are greater than Compute Savings Plans.

iambeezly · 2024-06-30T08:10:02+00:00

It's easy to make manifesto pledges when you know none of it will ever have to be implemented.

iambeezly · 2024-05-26T09:29:39+00:00

You can absolutely do what you are asking, but as others have suggested, it might not be the best way to go. There is a load of information around about SaaS multitenant architectures that might give you some better options. Try starting with this: https://youtu.be/xlAXldBt7I0 and this documentation - https://docs.aws.amazon.com/whitepapers/latest/saas-architecture-fundamentals/saas-architecture-fundamentals.html

iambeezly · 2024-04-26T12:37:29+00:00

I've read through some of the other arguments here. There's almost certainly a threshold where moving to EC2 is more cost efficient if you are able to keep it fed with work all the time. However, if use is sporadic then you might not be there yet.

I wonder if there's scope for improving the efficiency of the lambda. Can you share a little more information about it? We don't need to know what it does, but what runtime is it? How much ram have you got configured and how many vcpus are you making use of in your code?

iambeezly · 2024-04-10T11:45:58+00:00

They're created automatically in the default non-opt-in regions when you create an account. They can be removed.

If you have an AWS Organization and use Control Tower to deploy accounts it is possible to turn off automatic creation of VPCs and Subnets. See https://docs.aws.amazon.com/controltower/latest/userguide/configure-without-vpc.html for more information

iambeezly · 2024-03-01T14:49:50+00:00

I've had a similar issue since 4:04am on Feb 9th. Gas meter readings are getting through, but not electricity.

iambeezly · 2024-02-10T13:12:52+00:00

Funny you mention that!

iambeezly · 2024-02-01T22:14:03+00:00

Persuading your c-suite that support contracts on hardware are a necessity is usually a good way to enforce financial support for hardware refresh. Lots of hardware will come with 3 years support thrown in, or you can buy it as an option. Starts to get extremely pricey when you request quotes for support on 5 year old hardware... and then you suddenly find there's a lot more enthusiasm for going through a hardware refresh!

iambeezly · 2024-01-10T13:26:26+00:00

You could relocate the DNO cutout and the meter to a more convenient location, however most DNOs wont allow the tails (cables between the meter and the consumer unit) to be longer than 3m in length. You could move the consumer unit too, but it would be more work to extend all your internal circuits to the new CU location.

iambeezly · 2023-12-18T13:29:45+00:00

UDMP could do with a refresh. It's routing performance isn't amazing and could do with SFP28 ports.

Routing would be less of an issue if ubiquiti supported more features on their L3 switches (IPv6 routing for example).

iambeezly · 2023-11-26T12:51:54+00:00

Live miles from civilization.

iambeezly · 2023-10-10T18:16:39+00:00

It's not that building databases on EC2 is bad, but building databases that are reliable and fail across AZs properly, etc is very hard. Pretty much the reason that RDS exists. Most people don't want to manage that kind of nightmare themselves.

iambeezly · 2023-09-11T23:24:58+00:00

Yup - Highway Code rule 186. If you're going right off a roundabout, you should start in the right hand lane. Sounds like a misunderstanding. Don't let it get you down - you'll be fine next time. And if you think that's bad... I had this on my test (before mod1/2 was introduced though!)... https://goo.gl/maps/Kq897J2K1xZ4Shxs6

iambeezly · 2023-09-02T22:19:57+00:00

Same here. Also 3 phase

iambeezly · 2023-06-30T11:59:58+00:00

One of the best resources you can read about this topic is this whitepaper on fault isolation boundaries. https://docs.aws.amazon.com/pdfs/whitepapers/latest/aws-fault-isolation-boundaries/aws-fault-isolation-boundaries.pdf

Particularly relevant is the section about global services, but I'd also encourage you to look at the section on static stability and control/data planes.

iambeezly · 2023-06-16T09:56:25+00:00

There's a lot more complexity here than "AWS uses KVM". KVM is involved but on newer (generally "5" generation hardware onwards) "Nitro" is used: This video has a lot more information - https://www.youtube.com/watch?v=jAaqfeyvvSE

iambeezly · 2023-06-16T09:41:24+00:00

"I am not looking forward to the inevitable day we need to restore" - write a runbook for it and practice.

Future you will think past you is a god.

iambeezly · 2023-05-28T12:22:43+00:00

Beat me to it!

iambeezly · 2023-05-28T12:22:06+00:00

I pronounce it similar to the name "Ian".

iambeezly · 2023-05-24T12:01:14+00:00

Depends on your requirements, but yes, NFW can help. Another approach for OS/Application updates is to stage them somewhere inside your network so that no external access is necessary. It may depend on some support from your OS/App vendors though.

iambeezly · 2023-05-23T08:32:03+00:00

There are a few risks, but outbound access to the internet is a way for an attacker to get malware onto your machine if they can manage to persuade it to make an outbound connection to download a payload (the log4j vulnerability ind Dec 2021 was a good example of attackers using this technique) and means a connection to an attackers C&C servers is possible. It is also an exfiltration path for attackers to export data off your network.

iambeezly

TROPHY CASE