If you’ve ever had to jump between six different AWS accounts just to figure out why one Lambda function is behaving oddly – you already know the pain. Multi-account AWS environments are great for security and governance, but they can turn basic monitoring into a logistical nightmare. The good news? AWS gives you everything you […]
As a developer, I thought that once I pushed the code to the repository, I was done. I thought that things such as deployment, scalability, networking, and monitoring were all handled by the DevOps team. However, this is only true for a short period of time. At some point, when something go wrong in production […]
Patching Azure VMs from AWS Systems Manager using Hybrid Activation Each cloud platform provides its own native tools, which can lead to fragmented processes and increased administrative overhead. To address this challenge, AWS Systems Manager (SSM) offers a powerful solution through its Hybrid Activation feature. This capability allows non-AWS machines, such as Azure Virtual Machines […]
Introduction In a multi-account AWS environment, log management for services such as Cloud Trail, VPC Flow Logs, and WAF is a complex and fragmented process. This is due to the fact that each account has its own log data, which is not easy for security and operations teams to manage centrally. This issue, however, can […]
Introduction We know that many applications generate large amounts of event data such as alerts, application events, logs, and notifications. This data is usually unstructured and arrives in a continuous manner. The initial step in creating a data engineering pipeline is to store this event data into a reliable and long term storage system in […]
In AWS environments, visibility is critical. When applications run across multiple services, engineers need tools that help them monitor performance, track user activity, and maintain configuration compliance. Three AWS services commonly used for this purpose are Amazon CloudWatch, AWS CloudTrail, and AWS Config. Although these services are related to monitoring and auditing, they solve different […]
In AWS networking, it is common to configure all required components—subnets, gateways, and route tables—yet still encounter connectivity issues. In most cases, the problem is not with individual components, but with a lack of understanding of how these components interact with each other. This article explains how key VPC components—subnets, route tables, Internet Gateway, and […]
Introduction In the first part, we explored Palo Alto firewalls, their use cases, and different ways to achieve high availability in AWS. To learn more click here. In this second part, we’ll walk through a complete end-to-end setup of an Active/Passive Palo Alto HA deployment within the same Availability Zone. Architecture In this setup, traffic […]
Introduction I’ll be honest when I say running a high-traffic production environment on AWS is fun…. until you see the cloud bill. At first, you overprovision a bit of memory “just to be safe.” Containers stay up a little longer than needed. Logs? Oh, we log everything because, you know, one day you might need […]
