If you are migrating to Amazon Web Services (AWS) and are looking to use newer instance types (specifically t3a) then you need to make sure that you have a number of modules loaded automatically. I’ve been migrating some Oracle Linux 7 hosts to AWS using CloudEndure and on the first trial run, I couldn’t work out why they were booting OK in the AWS EC2 console, but I couldn’t connect to them. Read more

We currently have a customer that has a legacy application that needs to be able to fail between two nodes (think old school clustering) their application, and can really only talk to it via an IP address. Since DNS is not possible, I needed a solution to move a single IP address from one node to the other. Also, this is Windows. This point is important because I’ve previously done something similar on Linux a long time ago. Read more

Recently the CloudFormation team released a transform for CloudFormation that enables Blue/Green deployments for ECS using CodeDeploy. I’ve been using ECS for a number of years now as I find that it is a lot simpler to understand that say Kubernetes. I belive Kubernetes is more suited to a team of teams that are developing microservices and you have the necessary staff in something akin to a platforms team to maintain the Kubernetes environment and associated services. Read more

A few people asked me about Mutual Authentication, and I also wanted to see if I could get Internet access working. I’m starting with a VPC that has 3 subnets in 3 AZs (for 9 subnets in total). 3 of the subnets are marked “public” and have the default route via the IGW. In these 3 public subnets lives 3 NAT Gateways. The other 6 subnets (named app and db) have default routes via the NAT Gateways. Read more

Back around re:Invent some very observent people picked up on a slide about an AWS Client VPN being available. Which was interesting because no one had seen a blog or any release information about it. Not long (about 2 weeks) after re:Invent the AWS Client VPN made an appearance. This was great news. But it seemed maybe it was a little bit less than MVP and was rushed out due to the false starts. Read more