I have to say AWS Trusted Advisor is a great tool! AWS keeps improving it by adding more useful new checks. Here is one that I got this morning: I setup health checks for some new records, but forgot to decrease TTL to a low value (it is 300 seconds by default). Now trusted advisor reminds … Continue reading Great AWS Trusted Advisor
Category: Cloud
Fault Tolerant VPN Solution on AWS
I worked with a project team to help them to improve their current VPN infrastructure on AWS. They have 3 VPN EC2 instances, let's call them VPN01, VPN02 and VPN03. They are all OpenVPN Access Server, VPN01 and VPN02 both have 10 concurrent sessions license, and in availability a and b respectively. VPN03 only has … Continue reading Fault Tolerant VPN Solution on AWS
SSSG Ninja
SSSG Ninja is my new open source project - It is a all-in-one managemenet tool for SSSG (Site Shield Security Group), it not only makes recommendations but also can do the jobs for you. If you are interested to try, it can be found in my Github repo. Here are current supported features: Make recommendations based … Continue reading SSSG Ninja
AWS security group limits Q&A
Here are a few questions that I asked AWS regarding the security group limits and their answers. Just like to share it with more people here: 1) Q: By default, it is 50 limit for both inbound and outbound (giving 100 rules in total). Is it possible to set a different limit to inbound and … Continue reading AWS security group limits Q&A
Elasticache Redis Unreachable Issue
We have a Elasticache Redis replication group, it has two nodes: one primary and one replica. Last week, we noticed that the primary redis node suddenly stops working - any connections to the primary node timed out eventually. According to the log, there was a load burst and following that the redis reboot itself. Unfortunately, … Continue reading Elasticache Redis Unreachable Issue
Jackie Chen's IT Workshop 