#aws (2023-12)
Discussion related to Amazon Web Services (AWS)
Discussion related to Amazon Web Services (AWS)
Archive: https://archive.sweetops.com/aws/
2023-12-01
2023-12-04
2023-12-05
seeing some weird behavior with route53. not sure what the cause is. when i add entries to a hosted zone, (which is a sub domain of another hosted zone in my dns account) it doesn’t show up (nslookup, ping, dig) unless i prefix the domain with an underscore ex: _test.prod.example.com works but test.prod.example.com does not work. any clues?
I was seeing some issues in the console around then too. Timeouts on page loads. Also saw folks saying similar in an AWS Slack workspace
timeouts in the console? what’s this in reference to
I was playing around in Route53 and the TF changes were not showing up for ages
even if i applied it manually in the console it wasn’t taking. i also set it up as an alias.
Is it working fine now? Mine seems to be behaving, but around 12hrs ago it was being a pain
@Michael Dizon still having issues? I was using route53 for a lot yesterday without any issues. If so, send a screenshot. I wonder if you just had a typo somewhere?
for what it’s worth, the cname is pointing to an ELB
2023-12-06
2023-12-07
2023-12-11
2023-12-14
Hey all - we’re trying to build out the AWS SSO Application module & component, however we’re pretty limited in that currently custom-saml applications do not work with the initial release of the ssoadmin_application Terraform-provider-aws#34813. if you have a chance, give it a
anyone tested the new GuarDutty AWS Org aware with terraform? https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_organizations.html
@bradj @Matt Calhoun
2023-12-15
2023-12-18
Anyone have experience with GitLab Runners and Kaniko on EKS & Fargate? Docker in Docker doesn’t seem to be possible with Fargate.
https://docs.aws.amazon.com/AmazonECS/latest/bestpracticesguide/fargate-security-considerations.html
• No privileged containers or access - Features such as privileged containers or access are currently unavailable on Fargate. This will affect uses cases such as running Docker in Docker.
Yes, thank you. I know why DinD isn’t possible on Fargate. Looking to use Kaniko instead, as that is possible on Fargate because it doesn’t require privileged mode. https://docs.gitlab.com/ee/ci/docker/using_kaniko.html However, it’s very, very slow. My build process takes ~8 minutes with DinD, but 90 in Kaniko. Was hoping to find if anyone has managed to build a performance Kaniko solution.
do you use cross-arch build?
I don’t believe so
a bit hard to find the cause without reproduction, how much memory/cpu were allocated in Kaniko?
how big is the final image?
Resources:
[[runners]]
[runners.kubernetes]
image = "ubuntu:20.04"
privileged = true
namespace = "gitlab-runner"
cpu_request = "100m"
memory_request = "512Mi"
service_cpu_request = "100m"
service_memory_request = "512Mi"
helper_cpu_request = "100m"
helper_memory_request = "512Mi"
ic the resources allocated are low
either try allocating more cpu/memory or comment them out
cpu_request = "100m"
memory_request = "512Mi"
service_cpu_request = "100m"
service_memory_request = "512Mi"
helper_cpu_request = "100m"
helper_memory_request = "512Mi"
Will try that, thanks!
you are welcome
2023-12-19
2023-12-24
Has anyone noticed a huge increase in fargate deployment times lately? I’ve gone from 10/15 minutes up to 40
I would consider 10-15 already high. How long does the container take to start when running on your local machine?
It’s not the container - it’s instant
It’s the deployment in the cluster
Then no. Mine are near instant beyond waiting for healthchecks which complete in the expected time
I am deploying on ecs fargate in us-east-1
I’ll try a different region then and see if it makes a difference.
2023-12-26
Hello Team - Is there anyone who tried to use a CMK to encrypt EKS ? I am trying to create a EKS cluster using CMK encryption with Terraform. I am using EKS Blueprint as the base for my code. Any help on this will be really helpful.
When you say encrypt what part do you mean exactly?