SSM Session Manager_EN– tag –
-
Create network ACLs using CloudFormation
【Create network ACLs using CloudFormation】 This page covers network ACLs. A network access control list (ACL) allows or denies specific inbound or outbound traffic at the subnet level. Control traffic to subnets using network ACLs This... -
Encrypting an RDS DB instance – Step Functions version
【Encrypting an RDS DB instance - Step Functions version】 Consider how to encrypt an unencrypted RDS DB instance. The AWS official explanation is as follows You can only encrypt an Amazon RDS DB instance when you create it, not after th... -
Aurora Serverless v2 creation using CloudFormation
【Aurora Serverless v2 creation using CloudFormation】 In the following pages, we have shown you how to create Aurora Serverless v1 using CloudFormation. https://awstut.com/en/2022/07/02/aurora-serverless-with-cfn-en It was announced tha... -
Use S3 bucket policy to allow or deny access on an address basis – aws:SourceIp
【Use S3 bucket policy to allow or deny access on an address basis - aws:SourceIp】 In the S3 bucket policy, consider setting access restrictions based on global addresses. In this case, the IP address condition operators (IpAddress, Not... -
Connect to RDS from EC2 (Linux)/Lambda using IAM authentication
【Connect to RDS from EC2 (Linux)/Lambda using IAM authentication】 One of the features provided by RDS is IAM authentication. You can authenticate to your DB instance using AWS Identity and Access Management (IAM) database authenticatio... -
Using Amazon ECS Exec to access ECS (Fargate) containers in private subnet
【Using Amazon ECS Exec to access ECS (Fargate) containers in private subnet】 Amazon ECS Exec allows access to running ECS containers. With Amazon ECS Exec, you can directly interact with containers without needing to first interact wit... -
Two ways to access DynamoDB from private subnets
【Two ways to access DynamoDB from private subnets】 There are two ways to access DynamoDB from an EC2 instance in private subnets. NAT Gateway VPC Endpoint (Gateway type) This page will review how to access DynamoDB tables via the above... -
Introduction to FSx for Lustre using CloudFormation
【Introduction to FSx for Lustre using CloudFormation】 FSx for Lustre is one of the managed storage services offered by AWS. FSx for Lustre makes it easy and cost-effective to launch and run the popular, high-performance Lustre file sys... -
Two ways to simulate IAM policies – IAM Policy Simulator / –dryrun
【Step FunctionsのMapステートを使用した反復処理】 Mapステートを使用すると、反復処理を行うことができます。 Mapステートを使用して、データセット内の各項目に対して一連のワークフローステップを実行します。Mapステートの反復処理はparallel 実行さ... -
Create RDS Cross-Region Read Replica using CloudFormation
【Create RDS Cross-Region Read Replica using CloudFormation】 One of the AWS SAA questions is about designing resilient architectures. In the following pages, we introduced RDS read replicas. https://awstut.com/en/2023/01/09/rds-read-rep...
