Tag: AWS

Share encrypted AMI across AWS accounts


AWS has made sharing encrypted AMI cross accounts a bit easier now, check this out - https://aws.amazon.com/about-aws/whats-new/2019/05/share-encrypted-amis-across-accounts-to-launch-instances-in-a-single-step/ Here is a sample of how to share encrypted AMI across accounts and launch an instance from it: https://aws.amazon.com/blogs/security/how-to-share-encrypted-amis-across-accounts-to-launch-encrypted-ec2-instances/ If you need to run autoscaling group from the encrypted AMI, it requires a few extra steps. Mostly it … Continue reading Share encrypted AMI across AWS accounts

New EFS access control is available now


I have been using EFS for a while to store my shared application data. Generally speaking it is good in terms of scalability and performance. My concern is mostly around the security, as it only uses security group to control the access. It is a risk if it is used in a multi-tenants environments, as … Continue reading New EFS access control is available now

How Confluence Data Center Manage the Index File?


When building Confluence Data Center on AWS, I was wondering how Confluence Data Centre manages the index file. As we run Confluence cluster in auto-scaling group, the Confluence nodes come and go (not that frequent though, as Confluence is not good at dynamic scaling. It is more schedule based scaling). The newly launched instance gets … Continue reading How Confluence Data Center Manage the Index File?

Customised Quick Start of Confluence Data Center on AWS


Based on the Atlassian quick start of Confluence Data Center on AWS, I have made my own version of it. Here are a few customisations that I have introduced. Customisation One: Remove public subnets. To meet the security compliances, we can not use public subnets. All ingress/ egress traffics should go through central managed reverse/ … Continue reading Customised Quick Start of Confluence Data Center on AWS