AWS CloudFormation, an Infrastructure as Code service, includes a template made up of nine sections. Although made up of nine sections, the Resources section is the only one required. For this project we will be using Mappings, Resources, and Outputs. I’ve broken my template down to explain what is going on in each section, but if you want to jump straight to the full CloudFormation Template feel free to skip to the end.

Mappings

The Mappings section is basically a lookup table using key: value relationships. In this template the Amazon Machine Image is being mapped to it’s respective Region. …


Use Case:
Your company has a web server that has a volatile level of traffic. Your company has to ensure that the webservers are always available and currently have a fixed amount of instances to guarantee that even at a max CPU Utilization, the web server will be able to perform. The problem is that when the traffic is low, the unused web servers are unnecessarily costing the company money. …


Use Case:
You are the admin over a large amount of EC2 instances. You need to ensure that you have EBS Snapshots available for disaster recovery. To save time you want to automate this practice along with deleting EBS Snapshots that are more than 1 day old. The automation of this task will help save your company valuable labor hours that can be better spent elsewhere, saving the company money.

In a previous post, EBS Snapshot Management Using Lambda and Cloudwatch, I set up a Lambda function to create snapshots of all EBS volumes using a CloudWatch Event trigger to…


What Is Infrastructure as Code?

The cloud gives us the ability to create our environments quickly, but the problem arises of how to configure and manage the environments. Manually updating from the console may be acceptable for a small organization in a single region, but what if you have to create and maintain environments in multiple regions? Not only is it an inefficient use of time to create and maintain everything, but it’s also error prone.

Imagine that you are asked to create an environment in a single Region. Not really a big deal and you are able to complete the task relatively easily. Now…


Use Case:
Your company has a web server that has a volatile level of traffic. Your company has to ensure that the webservers are always available and currently have a fixed amount of instances to guarantee that even at a max CPU Utilization, the web server will be able to perform. The problem is that when the traffic is low, the unused web servers are unnecessarily costing the company money. …


Use Case

You are a cloud engineer tasked with setting up the security and network architecture for your organization’s environment. For extra security you have a server that needs to be in a private subnet and should only be accessible through a Bastion Host. Your private server will also need to have the ability to update software packages without being publicly accessible to the internet.

Create VPC

A Virtual Private Cloud (VPC) is a virtual network in the cloud that you define, where you can launch AWS resources. …


Use Case: You are the admin over a large amount of EC2 instances that need to be patched regularly. Rather than wasting labor hours patching each instance manually, you want to automate the process using AWS Systems Manager.

Systems Manager

Systems Manager (SSM) gives you visibility and control over your AWS infrastructure. SSM allows you to organize your inventory by grouping resources together by application or environment as well as integrating with CloudWatch to allow viewing dashboards and operational data. …


Imagine that you are using Amazon Simple Notification Service to decouple elements of your application. Your application has sensitive user data that is subject to regulations. The traffic between your application and SNS is not currently being sent privately. To add higher levels of security you want to deploy your application into a private network.

Amazon Simple Notification Service

Amazon SNS is a web service that makes it easy to send push notifications from the cloud. It provides developers with a highly scalable, flexible, and cost-effective capability to publish messages from an application and immediately deliver them to subscribers or other applications. A publisher…


What is Chaos Engineering?

We have to assume and except that everything breaks eventually, so why no be prepared for it. Chaos engineering intentionally injects fault and stress into an environment for testing. Netflix popularized this with Chaos Monkey in 2011 to test resiliency by intentionally disabling instances in Netflix’s production network at random. This eventually led to the Netflix Simian Army consisting of Latency Monkey, Chaos Gorilla, and others. By having these Game Days, it allowed the engineers to test their systems and better plan for issues rather than waiting for them to occur.

What is AWS Fault Injection Simulator?

AWS Fault Injection Simulator was announced at re:Invent 2020…


Use Case:

Your company has large media files that need to be available to a global audience. Your company is currently storing all their media files in a S3 bucket and users are reporting delays in viewing the media. The complaints are coming from several different AWS Regions.

AWS CloudFront is a content deliver network and will help us with this issue by delivering our content globally using Edge locations to cache our files. Our customers can use CloudFront via their closest Edge location rather than using the S3 bucket directly.

Create S3 Bucket

  1. Navigate to S3. Services > S3
  2. Click Create bucket.
  3. For Bucket…

Troy Ingram

Aspiring DevOps Engineer documenting my journey.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store