I came cross a nice Diagram as Code tool, it allows me to draw Cloud system architecture in Python code. To use it, you need to install Graphviz and diagrams python module. brew install graphviz pip install diagrams Here is a sample code of using the tool to create the diagram of AWS transit gateway … Continue reading Diagram as Code Example
AWS Network Firewall is a high-available and scalable firewall service that provides network protections for VPC, which is a supplement to the existing security services. Security group protects computing resources (EC2, Lambda, RDS...)NACL (Network Access Control List) protects subnetsWAF (Web Application Firewall) and Shield protects frontend resources (ELB, CloudFound, API Gateway) There are quite a … Continue reading Two Examples of using AWS Network Firewall
When there are multiple EC2 instances running behind the application load balancer, there is no way (at least as the time of writing) to tell the load balancer which instance you want to use. It is all controlled by the pre-defined load_balancing.algorithm.type. load_balancing.algorithm.type - The load balancing algorithm determines how the load balancer selects targets when routing … Continue reading Access Specific EC2 behind ALB
Nginx is a great tool for load balance, reverse proxy and more if you know Lua scripts (check out OpenResty if you are interested). Besides HTTP, Nginx can do TCP and UDP proxy as well. Here is a sample config for https > http, ldaps > ldap proxy. https://gist.github.com/jc1518/35cb055bf779f1a70a5fc6e72637407a
I installed minikube in my Mac, and I noticed that kubectl is unable to connect to it while my Mac in on VPN (Cisco Anyconnect). $ kubectl cluster-infoKubernetes master is running at https://192.168.99.100:8443To further debug and diagnose cluster problems, use 'kubectl cluster-info dump'.Unable to connect to the server: dial tcp 192.168.99.100:8443: i/o timeout Here are … Continue reading kubectl unable to connect minikube on VPN
Jackie Chen's IT Workshop 