Tag: EKS Clusters

Overview HAQM EKS Anywhere (EKS Anywhere) is an opinionated and automated deployment of the HAQM EKS Distro that enables users to create and operate Kubernetes clusters on user-managed infrastructure. EKS Anywhere does not include a Container Storage Interface (CSI) driver for persistence. In this post, we setup OpenEBS to provide persistence using the disks available in […]

Introduction With HAQM Elastic Kubernetes Service (HAQM EKS) users can modify the configuration of the cluster before and after cluster creation without having to create a new cluster. Before provisioning the cluster, users can define specific parameters like the Kubernetes version, VPC and subnets, and logging preferences. Post-creation, they can dynamically adjust various settings, such […]

Introduction Today, we’re excited to announce the native support for enforcing Kubernetes network policies with HAQM VPC Container Networking Interface (CNI) Plugin. You can now use HAQM VPC CNI to implement both pod networking and network policies to secure the traffic in your Kubernetes clusters. Native support for network policies has been one of the […]

Introduction When HAQM VPC Container Network Interface (CNI) plugin assigns IPv4 addresses to Pods, it allocates them from the VPC CIDR range assigned to the cluster. While it makes Pods first-class citizens within the VPC network, it often leads to exhaustion of the limited number of IPv4 addresses available in the VPCs. The long term […]

Introduction Kubecost provides real-time cost visibility and insights for teams using Kubernetes. It has an intuitive dashboard to help you understand and analyze the costs of running your workloads in a Kubernetes cluster. Kubecost is built on OpenCost, which was recently accepted as a Cloud Native Computing Foundation (CNCF) Sandbox project, and is actively supported […]

Introduction Chaos engineering is the discipline of verifying the resilience of your application architecture to identify unforeseen risks, address weaknesses, and ultimately improve confidence in the reliability of your application. In this blog, we demonstrate how to automate running chaos engineering experiments using the new features in AWS Fault Injection Simulator (AWS FIS) to target […]

This post was coauthored by Jesse Gonzalez, Sr. Staff Site Reliability and Naveen Puvvula, Sr. Eng Manager, Reliability Engineering at Life360 Introduction Life360 offers advanced driving, digital, and location safety features and location sharing for the entire family. Since its launch in 2008, it has become an essential solution for modern life around the world, […]

Introduction Today we are excited to announce the launch of AWS Signer Container Image Signing, a new capability that gives customers native AWS support for signing and verifying container images stored in container registries like HAQM Elastic Container Registry (HAQM ECR). AWS Signer is a fully managed code signing service to ensure trust and integrity […]

Introduction HardenEKS is an open source Python-based Command Line Interface (CLI). We created HardenEKS to make it easier to programmatically validate if an HAQM Elastic Kubernetes Service (HAQM EKS)  cluster follows best practices defined in AWS’ EKS Best Practices Guide (EBPG). The EBPG is an essential resource for HAQM EKS operators who seek easier Day […]

Introduction To help customers run their Windows applications in a more streamlined manner, we launched the support for HAQM EKS Managed Node Group (MNG) support for Windows containers on December 15, 2022. HAQM Elastic Kubernetes Service (HAQM EKS) MNGs automate the provisioning and lifecycle management of nodes (HAQM Elastic Compute Cloud [HAQM EC2] instances) for […]