cloudonaut

cloudonaut

cloudonaut.io
Your launchpad for Amazon Web Services (AWS Cloud)


#29 Unboxing Amazon Timestream
Oct 14 • 40 min
In this episode, Michael unboxes Amazon Timestream for us. A recently launched time-series database. Andreas asks questions like: What is Amazon Timestream? How does it work? What are typical use cases? And Michael tells us why his first job was all about…
#28 How to choose a container registry?
Sep 28 • 60 min
Are you using a container registry already? Andreas Wittig and Michael Hausenblas discuss different scenarios and options. The episode focuses on ECR including recent announcements and upcoming features. On top of that, the episode includes a comparison…
#27 Record AWS API calls to improve IAM Policies
Sep 11 • 29 min
Have you ever looked at an IAM policy and wondered: Is it really necessary to grant access to this specific action? Or do you need to know which API calls a legacy or 3rd party application is actually sending to come up with a secure IAM policy?…
#26 Review: AWS App Mesh
Aug 25 • 66 min
It seems to me like everyone is talking about service meshes these days - definetly a hot topic in the world of containers and microservices. A service mesh promises reducing latency, increasing observability, and simplifying security within microservice…
#25 CloudFormation’s unknown features
Aug 13 • 42 min
I was recently invited to a CloudFormation workshop with a group of early CloudFormation users. I soon realized that the group had a good understanding of the basics, so I started to introduce more advanced features. Today, I would like to share with you…
#24 Storage on AWS
Jul 29 • 43 min
Choosing storage service is critical when designing a cloud architecture. Read on to learn about the characteristics, limitations, typical use cases, and a decision tree for the following options to store data on AWS: Instance Store, EBS, EFS, FSx, and S3.
#23 ECS Deployment Options
Jul 14 • 41 min
In this episode, Michael invited a guest: [Philipp Garbe](https://twitter.com/pgarbe). Philipp is an AWS Container Hero, Working in the Cloud, and we hope you enjoy his Bavarian accent as much as the knowledge he shares with us.
#22 Messaging on AWS
Jul 1 • 57 min
In this episode, Michael compares the available messaging options on AWS. The goal of messaging is to decouple the producers of messages from consumers. The messaging pattern allows us to process the messages asynchronously. This has several advantages.…
#21 Review: API Gateway HTTP APIs
Jun 19 • 56 min
AWS offers different types of API gateways as a managed service. This review takes a closer look at the new service API Gateway HTTP APIs announced in December 2019 and generally since available in March 2020. The cloud provider promises that HTTP APIs…
#20 End-user monitoring of your website with CloudWatch Synthetics
Jun 4 • 34 min
There are countless reasons why your website is not working as your users expect. From a technical point of view, you can monitor your load balancers, your web servers, and your database. But what if that external script that you embed is breaking your…
#19 Scaling Container Clusters on AWS: ECS and EKS
May 8 • 58 min
Containers are a powerful tool to streamline your development and deployment process. However, a container cluster - no matter if you are using ECS (Elastic Container Service), EKS (Elastic Kubernetes Service), or self-managed Kubernetes - increases…
#18 CloudFormation vs. Terraform
Apr 21 • 47 min
The most reliable way to automate creating, updating, and deleting your cloud resources is to describe the target state of your infrastructure and use a tool to apply it to the current state of your infrastructure. AWS CloudFormation and Terraform are the…
#17 AWS Account Structure
Apr 8 • 48 min
Using multiple AWS accounts to isolate workloads has been a best practice, not only since AWS introduced consolidated billing in 2010. AWS made a huge step by introducing AWS Organizations in 2017 and has added more and more features on top of the…
#16 CloudWatch Metrics & Alarms reloaded
Mar 26 • 43 min
Amazon CloudWatch improved significantly over the years. It’s time to look at its monitoring capabilities again. CloudWatch is an excellent starting point to implement enhanced monitoring on AWS. In this episode, Michael demonstrates what you can do with…
#15 Advanced AWS Networking
Mar 16 • 53 min
AWS offers shiny and powerful networking services. However, you should know about the pitfalls when designing advanced networking architectures for AWS. I will share some pitfalls that came to my attention when consulting clients to get the most out of…
#14 What’s the best AWS Compute option for your project?
Feb 25 • 36 min
You can run your application on virtual machines using EC2. If you prefer containers, ECS Fargate is your choice. But you can also use the latest Serverless capabilities to run your application on Lambda. But what’s the best option for your project?
#13 Review: Amazon Connect
Feb 14 • 56 min
Do you provide services to consumer or business clients? Which channels do you provide for clients to get support, leave feedback, or let off frustration? Amazon Connect provides a contact center solution in the cloud. Your clients contact you via phone…
#12 EC2 Instances 2.0 - Time to Update Your Toolbox
Jan 28 • 34 min
Managing a mutable EC2 instance comes with many responsibilities. In this episode, Michael shows you how to solve everyday challenges by leveraging the latest and greatest capabilities of the AWS platform.
#11 10 Success Factors for Starting Your Cloud Journey
Jan 15 • 39 min
Are you planning to start the cloud journey for your organization soon? Learn from others to turn your initiative into a huge success. Michael and I have accompanied medium-sized businesses and enterprises in their transformation projects and would like…
#10 All you need to know about AWS re:Invent in 2019
Dec 10, 2019 • 55 min
re:Invent was a blast: five days packed with announcements of new services and features. We have created a top 10 list for our re:Invent recap. Here is all you need to know about re:Invent 2019.
#9 Reduce your AWS bill with Savings Plans
Nov 26, 2019 • 43 min
AWS made a prominent announcement on November 6th, 2019: AWS Savings Plans. It was never easier to get a discount on compute capacity by committing to a monthly consumption and paying upfront. This blog post introduced AWS Savings Plans and compares them…
#8 Review: AWS Global Accelerator
Nov 12, 2019 • 45 min
Andreas is reviewing the AWS Global Accelerator. AWS introduced Global Accelerator at re:Invent in 2018. A year after that, it is about time to review the service. AWS Global Accelerator makes use of Amazon’s worldwide infrastructure and is designed to…
#7 How we run our blog cloudonaut.io
Oct 29, 2019 • 35 min
We love simplicity! Our blog runs on CloudFront and S3 which is maintenance free and does handle traffic spikes easily. We use the static website generator hexo to publish our content. Lambda@Edge handles redirects and generates optimized images on the…
#6 How to avoid S3 data leaks?
Oct 15, 2019 • 31 min
Not a week goes by without a frightening announcement that an organization has leaked confidential data from Amazon S3 accidentally. Most often, the root cause of a security breach is a misconfiguration of S3 access control. Andreas presents four rules to…
#5 Rapid CI/CD with CodeBuild
Oct 1, 2019 • 34 min
There are many options available when you are looking for ways to implement a deployment pipeline. You might have heard about Jenkins, CircleCi, BitBucket Pipelines, GitLab Pipelines, and many others. AWS, on the other hand, offers services for CI/CD…
#4 Review: Amazon Aurora Serverless
Sep 17, 2019 • 32 min
It was never easier to scale your compute layer. EC2 Auto Scaling, Fargate, and Lambda enable horizontal scaling. But how do you scale your database? Use a NoSQL database like DynamoDB, one could say. But what if you don’t want to miss all the advantages…
#3 How to sell pay per use SaaS to AWS customers in the AWS Marketplace
Sep 3, 2019 • 28 min
AWS Marketplace allows you to sell software to AWS customers. The customer can either run the software on its own (using AMIs and optional CloudFormation), or you can offer the software as a service (SaaS). You can also offer containers and machine…
#2 EC2 Instance Connect is an insecure default!
Aug 20, 2019 • 11 min
AWS released a new feature called EC2 Instance Connect. Unfortunately, the defaults are insecure. You likely can open an SSH connection to every EC2 instance in your AWS account now.
#1 Review: AWS Backup
Aug 7, 2019 • 16 min
AWS releases a new service with a lot of marketing noise. You can’t resist, you want to use that new thing now. But soon you discover that the service is missing essential features. As a result, you stumble upon a show stopper and get frustrated. Why is…