Cloud Formation Support for Rate-Based WAF Rule [closed] - amazon-web-services

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 3 years ago.
Improve this question
I want to set up a Cloud Formation in aws to attach a Rate Based Rule to my LB. I have been reading the AWS documentation for hours, and I know how to create a regular WAF Rule in Cloud Formation and attach them to my LB in Cloud Formation. The problem is I cant find how to create a Rule of type Rate-Based of WAF in CF, there is not RateBasedRule object in Cloud Formation. Does anyone knows how to get around this?

After talking to aws support itself: This feature is not yet supported by aws as of today.

Related

Converting terraform google iac to terraform aws iac [closed]

Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 11 months ago.
Improve this question
Any idea how to go about converting terraform google resources to their terraform aws equivalents? I’ve got a terraform google project but I’m needing to use the iac in aws. Insight appreciated.
The question is focused enough for people who know about IaC.
Let me refer you to this question which is the other way around: from AWS to GCP: Movement from AWS to GCP with terraform
Unfortunately there is no automatic conversion. Just think of the differences in detailed configurations let alone differences on a resource or concept level. So as the answer in the link mentioned: "You'll need to work out what the equivalents are for everything and move things bit by bit" (https://stackoverflow.com/a/60936052/7337539)

AWS EKS NodeCreationFailure [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 2 years ago.
Improve this question
Following the AWS guide on creating an EKS cluster, I get this error:
NodeCreationFailure Unhealthy nodes in the Kubernetes cluster
I followed the required IAM roles for both the cluster and the nodegroup. Also tried using Private and/or Public subnets. The error does not appear in their documentation as well so I am unable to troubleshoot this further

Different options for creating an AWS EKS Cluster [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 2 years ago.
Improve this question
An AWS EKS Cluster can be created using the AWS CLI or eksctl commands. And AWS is supporting both of them. Both of them at the end of day creates a EKS cluster.
When to use what? I am not able to find any differences between the two.aws
AWS CLI is an imperative way to do it. With eksctl you can use both imperative and declarative way (e.g. when using yaml-manifests).
In addition, you can create EKS cluster declaratively when using CloudFormation EKS cluster or Terraform AWS EKS module.
What is best for you depends on your situation. For laboratory exploration, it is easiest to use imperative commands. But when you are setting up something like a production environment, you want your changes version controlled in e.g. git - so a declarative way to work is a better fit.
What declarative method to use depends on if you e.g. also provision other AWS resources. It is easiest to use same tool for all your infrastructure, e.g. CloudFormation for everything or Terraform for everything. An advantage with Terraform is that it is available for other cloud providers as well, e.g. both AWS and GCP.

What are some good resources for aws security? Like a security checklist for different services [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 2 years ago.
Improve this question
I'll be working on a project to improve the security of a client's aws infrastructure soon. While I know the basics (cleared solutions architect associate) I'm not great at all things aws security.
It would be great if you kind folks directed me to some good resources that I can refer to that would help create a sound plan to evaluate the client's cloud security and improve their security posture on aws.
Something like a checklist for different services. Like for example enabling log validation on your cloud trail logs for instance.
Any help is highly appreciated.
Much thanks.
Some places to visit:
Cloud Security – Amazon Web Services (AWS)
AWS Whitepapers & Guides
Amazon Web Services: Overview of Security Processes
Whitepaper | AWS Security Blog

Cloud services that provide continuous integration and delivery [closed]

Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
Questions asking us to recommend or find a book, tool, software library, tutorial or other off-site resource are off-topic for Stack Overflow as they tend to attract opinionated answers and spam. Instead, describe the problem and what has been done so far to solve it.
Closed 8 years ago.
Improve this question
Anyone know of some good cloud services that provide continuous integration and delivery with deployment to cloud providers like AWS or GCE? We use Jenkinks and want to integrate it with a cloud service so we can rapidly deploy applications to dev, test instances on AWS and GCE.
Cloud services don't provide 'services' in general. They provide the infrastructure where you can build the services on top of.
It's quite easy to deploy to AWS instances with Jenkins/Bamboo/etc.
for a full end to end CI & CD "in the cloud" you can try
codeship (https://www.codeship.io/)
circleci (https://circleci.com/)
travis CI (https://travis-ci.com/)
But your sourcecode will probably need to be hosted on github or bitbucket not on your local infrastructure.
You can find a good overview on different hosted continuous delivery services at this Quora answer
Full Disclosure I'm one of the founders of Codeship