Published inAWS TipSecuring VPC endpoints with policies to protect against data exfiltrationVPC endpoints are virtual devices that enable you to access AWS services privately without going through the internet. Many organizations…May 25May 25
Upgrading EKS nodes provisioned by KarpenterThis is a continuation of the previous blog post where we explored how to get started with Karpenter and how to create a “nodelesss” EKS…Aug 19, 2023Aug 19, 2023
Accessing internal applications hosted on EKS with AWS Verified AccessAWS Verified Access is a managed service that is used for providing secure access to internal applications. It is like a reverse proxy with…Jul 6, 20231Jul 6, 20231
Exploring EKS with Karpenter on Fargate — Part 1Karpenter is a Kubernetes component built with AWS that helps to autoscale your compute resources based on the workload. It is similar to…Jun 17, 2023Jun 17, 2023
Capturing container packets from EKS worker nodes using tcpdumpThere are times where you will need to troubleshoot a network issue and have to go into the packet detail level to analyse it. To capture…May 13, 20231May 13, 20231
Moving EKS add-ons from self-managed to managedEKS add-ons are like plugins for your Kubernetes cluster. They provide operational capabilities support to Kubernetes applications. There…Mar 5, 2023Mar 5, 2023
Restricting access to AWS based on source IP and its considerationsSome organisations may require you to restrict AWS access for all or a subset of users to only the specified IP ranges as part of the…Feb 6, 2023Feb 6, 2023
Restricting CloudFront access to Client VPNYou are using CloudFront to deliver your static website content to the public and you have an identical setup in your non-production…Dec 26, 20221Dec 26, 20221
3 Ways to retrieve values from awscli json outputThe AWS CLI (AWS Command Line Interface) is a tool provided by AWS to manage your resources and it is commonly used as part of the DevOps…Nov 19, 2022Nov 19, 2022
AWS DNS Firewall Technical AnalysisAWS DNS Firewall is a managed firewall service that helps to protect you against DNS exfiltration. It was released on Mar 31, 2021. You can…Jul 1, 2022Jul 1, 2022