Archives for Cloud Computing - Page 10
Routing and NATing on Google Cloud – allowing internet access from a private subnet on GCP
Step 1 - Create an instance in a public subnet (to be later used as a NAT Instance) gcloud compute instances create nat-gateway --network my-network --can-ip-forward \ --zone us-central1-a \…
Installing an SSL certificate on an EC2 instance
Pre Requisites You would need these three items: The actual Server certificate (.crt file) Private key (.crt file) CA bundle (contains intermediate certificates and the root certificate). This chain of…
Cloud Tagging strategies - AWS Tagging, Google cloud Tagging and Azure Tagging of resources - for security, business, cost management and automation
How much is this cloud resource costing me? How much are all my development instances costing me? Was there a security compliance violation on any of my resources or any…
Common Issues encountered while hosting your web app / website within a Container ( versus hosting it on the host server )
Issue 1 - Domain Joining Issue for Containers: A server can be domain joined. A container cannot. Solution to Issue 1 - Use an Active Directory gMSA. Create a gMSA…
ec2 with public IP is still not accessible
As long as the subnet containing the EC2 has an internet gateway (route), then the only other issue could be the SG on the EC2. The security group needs to…
Adding a new user to an existing Project on GCP
Basically, you cannot just add to an existing project in GCP. You need either a google account (gmail) or a GSuite account to start adding members to a project. The…
Remediate Non Compliant Resources using Custom AWS Config
Using System Manager Documents (SSM Docs) To remediate non compliant resources, one could leverage existing Systems Manager documents to accomplish this. Clicking on ‘Edit Config Rule’ –> 'Manage remediation' by…
PCI Compliance for 3 Tier Apps hosted on AWS
PCI Compliance requires that the network as well as the data be secured – both at rest and in transit. Here are some relevant AWS services that help achieve PCI…
GCP api keys at an enterprise level
The provisioning of the key is identical for all users, enterprise or non. However, based on usage, there are limits. Taking Google maps as an example (from GCP) Users of…
Control Tower vs Landing Zones in AWS –High Level Recap
Control Tower Pros Self Service model - A 'better' supported service - with shorter AWS support response times (compared to Landing Zones) Lower Complexity - most customers report smoother execution…