• Breaking out from VPC to internet

    Did you notice you can front an internal ALB with Global Accelerator? And this allows you to gain internet access even if you have been denied modifying internet gateway and peering configurations!
  • EC2 Instance Connect vs. SSM Session Manager

    Access to EC2 instances isn't the most sexy topic in days of serverless-first -architectures but reality is there are still valid use-cases for terminal access to VMs. The Question is how to do it in a modern way and keep your dev, ops and sec -teams happy.
  • Pleased to meet you, hope you guess my name...

    Thanks to ALB integration with Cognito it is easier than ever to add solid user authentication for new and existing web applications. This is a demo how to do that with no servers using Lambda backend.
  • Thinking outside of the VPC

    IP failover may not sound too difficult at first, attach an elastic network interface (ENI) to your instance and if the server stops responding, detach and re-attach it to next instance with some Lambda -magic. But what if instances are in different AZs?
  • Building a blog with AWS Amplify Console

    In the old days the recipe for hosting your static web content on AWS required you to configure a combination of S3, Cloudfront, IAM, Route53, ACM, WAF ... and even then you wouldn't have CI/CD pipeline until you added bunch of Code* -tools on top of it.