REST API, HTTP API, WebSocket API, AppSync, and ALB Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss the blog post Comparing API Gateways on AWS , the written version of this podcast episode. Special thanks to Cloudcraft our go-to tool for creating AWS architecture diagrams. This year we are writing for the Cloudcraft blog as well. Comparing API Gateways on AWS API Gateway REST API API Gateway HTTP API API Gateway WebSocket API AppSync Application Load Balancer (ALB) Additional Links Review: API Gateway HTTP APIs - Cheaper and Faster REST APIs? Serverless WebSocket API: API Gateway, Kinesis, Lambda Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

Learn how to enable IPv6 for your cloud infrastructure Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss the blog post Getting started with IPv6 on AWS, the written version of this podcast episode. Before you think about designing your IPv6 network, you should enable IPv6 alongside IPv4 on endpoints accessed by end-users. Around 30% of Internet traffic is already IPv6 traffic. The IPv6 deployment progress is mainly driven by mobile devices and varies heavily between countries. The following AWS services support IPv6: Route 53, CloudFront, internet-facing ALB, S3, and IoT Core. There is no IPv6-only VPC on AWS. A VPC is always IPv4 enabled, but you can optionally enable IPv6 (dual-stack). When you do so, AWS assigns a /56 block of IPv6 Global Unicast Addresses (GUA) to your VPC - you can bring your own block as well. A GUA is like a public IPv4 address. You can assign each subnet in your VPC a /64 sub-block. There is no VPC/subnet size planing anymore! Summary IPv6 is coming. At some point in time, you have to start your journey towards IPv6. For now, I recommend enabling IPv6 for the endpoints that are used by your end-users. There is not much benefit in enabling IPv6 in your VPC yet. The only exception is if you want IPv6 support for your ALB. As a workaround, you can front the IPv4 ALB with CloudFront to offer IPv6 to your end-users. Learn more I recommend a re:Invent talk from 2017: IPv6 in the Cloud: Protocol and AWS Service Overview (NET202). Besides that, I read IPv6 Essentials from Silvia Hagen (O'Reilly), which goes into the details (far beyond what you need to get IPv6 working on AWS). Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

Get used to new services on AWS Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss the our blog post Unboxing Amazon Timestream, the written version of this podcast episode. Amazon Timestream is a fully managed time-series database with zero operational overhead. Timestream auto-scales both the ingestion and the query processing layer. You pay for ingesting data, storing data, and analyzing data independently. If you want to write queries from scratch, check out the SQL based Timestream Query Language Reference. If you are interested in the details, I created a video for our ambitious cloudonaut plus subscribers, where I demonstrate how I ingest and analyze stock prices with Timestream. Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

Amazon ECR vs. Docker Hub vs. GitHub Container Registry Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss the our blog post Amazon ECR vs. Docker Hub vs. GitHub Container Registry, the written version of this podcast episode. Special thanks to Michael Hausenblas, Product Developer Advocate at AWS, for joining us for this podcast episode. Have you worked with a Linux package manager like apt or yum before? A container registry is similar, but instead of packages, it distributes container images. A container registry is a crucial aspect of a containerized workflow and infrastructure. This episode compares three different container registries: Amazon ECR Docker Hub GitHub Container Registry Links that we mentioned in the podcast episode. AWS Container Roadmap filtered by ECR Introducing multi-architecture container images for Amazon ECR OCI Artifact Support In Amazon ECR Quay.io - RedHat's container registry JFrog Artifactory - Another container registry Please help Michael Hausenblas to better understand the current state of container security! Take the AWS container security survey 2020. Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss the our blog post Record AWS API calls to improve IAM Policies, the written version of this podcast episode. Have you ever looked at an IAM policy and wondered: Is it really necessary to grant access to this specific action? Or do you need to know which API calls a legacy or 3rd party application is actually sending to come up with a secure IAM policy? CloudTrail can help here, but there is something better: Record API calls with the AWS SDKs and CLI (including the stuff that is not visible in CloudTrail). In this episode, you learn to capture the data without touching source code. You also analyze the data and use the results to improve your IAM policies. Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

A service mesh for EC2, ECS, and EKS Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss the our blog post Review: AWS App Mesh – A service mesh for EC2, ECS, and EKS, the written version of this podcast episode. Building a service mesh is trending those days. App Mesh provides service mesh capabilities for EC2, ECS, and EKS. For free! On top of that, App Mesh integrates with a bunch of AWS services like Cloud Map, Certificate Manager, CloudWatch, and X-Ray. App Mesh is a new service still at the very beginning. Our service maturity score of 4.7 indicates that it is too early to use App Mesh right now. Let’s wait for AWS to improve the service step by step based on other AWS customers’ feedback. The fundamental problem is that App Mesh is not a fully managed service. As an App Mesh customer, you need to deploy and operate 1-3 sidecar containers per task (aka. pod). This contradicts the goal of having the cloud provider take over as many tasks as possible. It is frustrating that activating CloudWatch metrics incurs costs of more than $150 per month for a mesh consisting of two services. Also, $400 per month for a private CA provided by ACM will probably be a show stopper for most scenarios. Overall, App Mesh is only for service mesh enthusiasts. Rapid Docker on AWS We have just released chapter 3 of the Rapid Docker on AWS video course. You will learn how to master the building blocks of a modern cloud architecture: running containers without servers, configuring HTTPS/TLS encryption, managing the cloud with Infrastructure as Code, … Start the video course now! Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

6 unknown CloudFormation features you should know about Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss our blog post 6 unknown CloudFormation features you should know about, the written version of this podcast episode. Michael shares 6 tips and tricks to improve your Infrastructure as Code templates: cfn-lint Creation policy Update policy Deletion policy Update replace policy cfn-init Bonus: Stack Sets 📣 marbot for Microsoft Teams About two months ago, we launched the beta of marbot for Microsoft Teams. We received tremendous feedback. Today, we are happy to announce that marbot for Microsoft Teams is generally available on the AWS Marketplace. Monitor your AWS infrastructure with easy and receive alarms via Microsoft Teams. Check it out!. Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

How do you choose the best storage option on AWS? Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes How do you choose the best storage option on AWS? Choosing storage service is critical when designing a cloud architecture. Read on to learn about the characteristics, limitations, typical use cases, and a decision tree for the following options to store data on AWS: Instance Store provides low latency and high throughput block storage for EC2 instances. EBS (Elastic Block Storage) provides persistent block storage for EC2 instances. EFS (Elastic File System) provides a scalable and fault-tolerant network file system (NFSv4). FSx (File System for Windows File Server) provides a fully-managed Windows File Server. S3 (Simple Storage Service) provides highly scalable and fault-tolerant object storage. This podcast episode is based on the blog post Storage on AWS, which was published first on the Cloudcraft blog. Looking for a comparison of all database services available on AWS instead? Check out Databases on AWS. Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

From rolling updates to blue green and canary Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss our blog post ECS Deployment Options, the written version of this podcast episode. You can find Philipp on Twitter and his blog. Also check out Philipp's deep dive on load balanced ECS Service deployments with CloudFormation Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.

Comparing the available options Newsletter Every week, we write about all things AWS. For example, we unbox or review new AWS services. We also share pitfalls that we learned about the hard way ourselves. On top of that, we provide code examples for Infrastructure as Code and Serverless applications. Subscribe to our newsletter for free! Notes Don't miss our blog post Messaging on AWS, the written version of this podcast episode. Support us We launched cloudonaut.io in 2015. Since then, we have published hundreds of articles, podcast episodes, and videos. It's all free and means a lot of work in our spare time. We enjoy sharing our AWS knowledge with you. Have you learned something new by reading, listening, or watching our content? If so, we kindly ask you to support us in producing high-quality & independent AWS content. We look forward to sharing our AWS knowledge with you. Support us! Feedback We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.