When working on AWS cross accounts S3 access, I found out that - Only s3:CreateBucket, s3:ListAllMyBuckets and s3:GetBucketLocation 3 actions are allowed to set relative-id of Resource to "*". For all other bucket actions, you must specify a bucket name. E.g If I want to allow a user from account B to put objects into … Continue reading AWS cross accounts access S3 buckets
Category: Cloud
Understanding Kubernetes
Continue with my previous post 'Docker Infrastructure V1.1', I want to share some my understanding of how Kubernetes works. Logically, there are 3 basic components in Kubernetes. Pod, Relication-controller and Service: Pod: it is the smallest unit in Kubernetes. It contains one or more containers. Replication-controller: It controls and also guarantees the instance numbers of … Continue reading Understanding Kubernetes
Docker infrastructure V1.1
I spent a couple days looking into Kubernetes which is a docker orchestration tool. It was initially developed by Google and used for managing the containers in Google cloud. I have set it up in my POC environment, and found out it is really cool. So I updated my docker infrastructure design to add kubernetes … Continue reading Docker infrastructure V1.1
Understanding docker directory structure
I have docker installed on my Fedora box. Here I try to understand the structure of its directories. [root@mylab docker]# docker version Client version: 1.5.0 Client API version: 1.17 Go version (client): go1.3.3 Git commit (client): a8a31ef/1.5.0 OS/Arch (client): linux/amd64 Server version: 1.5.0 Server API version: 1.17 Go version (server): go1.3.3 Git commit (server): a8a31ef/1.5.0 … Continue reading Understanding docker directory structure
My first look at AWS container service
First of all, unfortunately AWS ECS (EC2 Container Service) currently is not available in Australia. I guess it is not a surprise. As it happened to some other AWS products in the past as well. Simply speaking, ECS provides container (docker) service on top of EC2 without extra cost. So most EC2 supported features are … Continue reading My first look at AWS container service
Jackie Chen's IT Workshop 