• Rerouting Legacy Server IP Address

    In lift-and-shift -migrations from on-premises data center to AWS, you often find workloads that have been running for fairly long time with minimal changes and not all "modern IT" practices can not be taken for granted. One such practice is using DNS to find server IP address.
  • Conditional Dependency in Cloudformation

    The 2nd instalment in the series of "old dog learning new cloudformation tricks" shows how to define a conditional dependency to a resource that may not necessary exists in the stack.
  • Devil in Details

    The devil is in the details is an idiom that refers to a catch or mysterious element hidden in the details, meaning that something might seem simple at a first look but will take more time and effort to complete than expected. I think this describes pretty well the announcement of ACM Cloudformation extension.

  • AWS Cost Controls

    I recently did 2 meetup presentations about FinOps and AWS cost optimization. Inspired by the talks, I thought it would be a good idea to write a shopping list of things to cover in order to keep AWS costs in control. While this is written especially for AWS, the same ideas apply to Azure and GCP as well.

  • Preventing S3 Data Leaks with Endpoints

    This post continues where S3 Data Loss Prevention with Encryption left. Using encryption will help to avoid acciendially exposing data from S3 to internet, but it would still be very easy to leak, the data you are processing, on purpose to internet/external parties.