I struggled to find a working (and simple) example on using ACK so I put this together to create an S3 bucket. AWS Controllers for Kubernetes (also known as ACK) are built around the Kubernetes extension concepts of Custom Resource and Custom Resource Definitions. You can use ACK to define and use AWS services directly …

Using Systems Manager (SSM) to control access to a Bastion host has several advantages making using a Traditional Bastion host using SSH Keys pretty much obsolete. No need for an external IP No SSH Keys needed all access is via IAM Access logged including what command are run A working example can be found on GitHub …

For a long time I've been wanting to look at some way of testing terraform. As part of this I've recently looked using terratest and localstack. While localstack looks promising lots of the things I wanted to test are either in the pro version or not supported so I went back to using live AWS accounts. It would be nice …

Transit Gateway allows VPC's to be connected together into a single network as well as connecting to on-prem networks. This example will deploy a simple setup with 2 VPC's being connected together. The Terraform code can be found on GitHub. The code also includes a RAM (Resource Access Manager) share for linking VPC's …

NATS is a connective technology that powers modern distributed systems. A connective technology is responsible for addressing, discovery and exchanging of messages that drive the common patterns in distributed systems; asking and answering questions, aka services/microservices, and making and processing statements, or …

This example will deploy a VPN into an AWS VPC and show how to connect to it using OpenVPN from either a Mac or Linux host. It will use Certificates for authentication, many other authentication options are available. Terraform source code can be found at Github If will deploy a simple VPC in one AZ and then create a …

I will be Speaking at the Open Source Summit Europe 2022 in Dublin The slides can be found on SpeakerDeck.

Velero is an open source tool to safely backup and restore, perform disaster recovery, and migrate Kubernetes cluster resources and persistent volumes. It can be setup quickly with Terraform on a EKS cluster and is simple to operate. An example deployment including EKS can be cloned from here Installation via Terraform …

Karpenter automatically launches just the right compute resources to handle your cluster's applications. It is designed to let you take full advantage of the cloud with fast and simple compute provisioning for Kubernetes clusters. It is a replacement for the Cluster Autoscaler which has some issues in AWS Updated - …

EKSCTL can be used to quickly deploy a AWS EKS Cluster. This is based on using a sandbox AWS account The supporting files can be found on Github Create an EKS deployment file, I tend to create individual nodegroups dedicated to a single AZ 1 2[cloudshell-user@ip-10-1-181-252 cluster-autoscaler]$ cat ca-cluster.yaml 3 …