Containers
AWS container services offer the broadest choice of services to run your containers and run on the best global infrastructure, with 77 Availability Zones across 24 regions. AWS also provides strong security isolation between your containers, ensures you are running the latest security updates, and gives you the ability to set granular access permissions for every container.
Recent questions
see all1 / 18
- I am attempting to set-up a REST API using ECS Express Mode and CloudFormation. I have a CloudFormation template along the lines of the following ```yaml AWSTemplateFormatVersion: 2010-09-09 Resource...
- Hi, I am working on an automation that identities the stacks that have drifted status. Due to the number of stacks I need to process, I used threadpooling to batch process them. This is working perf...
- I have an ECS Fargate task in a public subnet that needs to load a TLS certificate from SSM Parameter Store (SecureString) at container startup via Python/boto3. Setup: Launch type: Fargate, public ...
- We are observing intermittent server-side query errors on a DocumentDB 5.0 cluster that started after a load incident in early May 2026. The driver receives a `MongoServerError` with `code: 40` and an...
- I'm coding in Java. I need to run a R script in lambda. I've created the below Docker file ``` FROM amazonlinux:2 # Install R and dependencies RUN yum update -y && \ yum install -y R R-devel gcc...
- Describe the bug Secrets Store CSI Driver fails to retrieve secrets from AWS Secrets Manager when using EKS Pod Identity on EKS Auto Mode nodes. The driver is unable to obtain AWS credentials, causin...
- I would like to pass tags to tasks when they are executed by state machine
- Want to orchestrate ECS TAKS using aws step function, I have requirement to attache my ECS Margate task to as VPC and security group, and didn't find configuration for VPC network for task definition
- Hi, We need advice on the best-practice AWS architecture for a long-running async process. Our application stack: - Frontend: Vite React, hosted on S3 static hosting + CloudFront - Backend: Python ...
- We are seeing increased CPUUtilization on our apprunner instances, starting this week. Has anyone else been noticing differences? See for example: ![Enter image description here](/media/postImages/or...
- Hello, I am working on hardening the security groups for our Amazon EKS clusters to meet strict internal security policies. Our security team flagged the "All traffic, All ports, Self" (self=true / -...
- **Background** I am migrating two EKS Auto Mode clusters (Kuberntes 1.35) from old /25 private subnets to new /23 private subnets due to IP exhaustion. I have already: - Created the new /23 subnets ...
- I noticed that in the AWS Console header (top-right corner), the account name is displayed as a URL-encoded value instead of a readable format. Example: Displayed: Love%20Rajput Expected: Love Rajput...
- My objectives are-- - Create an EKS cluster using `eksctl`. - Manage the cluster using `kubectl`. - Delete the Kubernetes resources using `kubectl` and the AWS resources for the cluster using `eksctl`...
- Body: We are running EKS Auto Mode (v1.33) and experienced an issue where modifications to the built-in general-purpose NodePool were automatically reverted by EKS. What we did: - Used kubec...
- One of my EKS worker nodes (i-0f9) suddenly failed EC2 status checks and was terminated by the Auto Scaling Group (ASG), which then launched a replacement instance. From kubectl describe node (capture...
- Hi AWS experts, can you help answer this for me? I am looking for guidance on implementing blue-green deployments for a containerized application using ECS Fargate with CodeDeploy, where the applicati...
- Service: Amazon EKS Category: Security / Vulnerability ...
Recent Knowledge Center content
see all1 / 18
Recent articles
see all1 / 18
Hohyun LeeSUPPORT ENGINEERpublished 10 days ago1 votes54 viewsThree practical scenarios for the Karpenter `v1alpha1` NodeOverlay feature, with sample YAML.- AWS OFFICIALUpdated 13 days ago2 votes215 viewsThis article explains how to troubleshoot Kubernetes network policies in Amazon Elastic Kubernetes Service (Amazon EKS).
markchoiEXPERTpublished 19 days ago0 votes60 viewsAmazon GameLift Servers adds a new DescribeContainerGroupPortMappings API for container fleets, making it easy to discover which connection ports map to your container ports without needing to remotel...- JLT_WEXPERTpublished 23 days ago0 votes163 viewsThis article explains how to configure a dedicated IAM role for the Amazon EFS CSI driver node component `efs-csi-node-sa` in Amazon EKS using Pod Identity, enabling least-privilege access to EFS file...
- JensEXPERTpublished 24 days ago2 votes116 viewsThe `kubernetes` service and its endpoint and endpointslices objects in the `default` namespace are a topic of common questions but even misunderstanding. This article will explain how it is implement...
- Varun SharmaEXPERTpublished 25 days ago0 votes195 viewsI want to automatically invoke AWS DevOps Agent investigations when a CloudWatch Alarm enters ALARM state or when Amazon EventBridge detects an Amazon Elastic Container Service (Amazon ECS) task failu...
- Henrique SantanaEXPERTpublished a month ago0 votes43 viewsWhen requirements change and your team needs to move an application from serverless to containers (or the reverse), the question is rarely about deployment scripts. It's about whether your code is str...
- Henrique SantanaEXPERTpublished 2 months ago0 votes156 viewsAI teams that choose Kubernetes gain infrastructure control, workload portability, and a single cluster for business and AI workloads. The challenge is knowing how to get from that choice to productio...
- Henrique SantanaEXPERTpublished 2 months ago0 votes80 viewsSession CNS208 at re:Invent 2025 examines how to build security into every stage of the container supply chain, from build time through runtime. Liz Duke covers Amazon ECR's scanning and access contro...
- Henrique SantanaEXPERTpublished 2 months ago0 votes86 viewsDeploying new container versions without downtime and with the ability to roll back quickly are requirements most teams running containerized workloads share. This session from re:Invent 2025 walks th...
- Henrique SantanaEXPERTpublished 2 months ago0 votes86 viewsTeams running production services on Amazon ECS face a recurring challenge: deploying new features quickly without affecting existing customers. This session introduces the advanced deployment strateg...
- Henrique SantanaEXPERTpublished 2 months ago0 votes170 viewsThis post covers session CNS307 from AWS re:Invent 2025. If your containerized microservices have ever buckled under peak traffic, this session offers a practical path to more resilient, scalable arch...
- Henrique SantanaEXPERTpublished 2 months ago0 votes116 viewsGetting a containerized application to production means coordinating networking, load balancers, TLS certificates, autoscaling, and observability configurations. Amazon ECS Express Mode collapses that...
- Henrique SantanaEXPERTpublished 2 months ago0 votes88 viewsAWS announced fully managed, remotely hosted Model Context Protocol (MCP) servers for Amazon ECS and Amazon EKS at re:Invent 2025. These servers give AI coding assistants real-time awareness of your c...
- Henrique SantanaEXPERTpublished 2 months ago0 votes208 viewsSession CNS379 at re:Invent 2025 introduces Amazon ECS Express Mode, a feature that collapses that complexity into three required inputs and a single command. In this post, we'll walk through what Exp...
- Henrique SantanaEXPERTpublished 2 months ago0 votes123 viewsAmazon ECS shipped two significant capabilities in late 2025: Amazon ECS Managed Instances, a new compute option between EC2 and Fargate on the control-versus-simplicity spectrum, and redesigned nativ...
- Henrique SantanaEXPERTpublished 2 months ago0 votes129 viewsFargate provides a fully managed container compute experience, but it has limits: no GPU support, no privileged containers, and a 120 GB memory ceiling. ECS Managed Instances, launched two months befo...
- JensEXPERTpublished 2 months ago0 votes408 viewsThe open-source AWS Load Balancer Controller supports Gateway API in GA (General Available) since v3.0.0. This two-part article series provides a comprehensive example of installing AWS Load Balancer...
Recent selections
see all1 / 4
- Henrique SantanaEXPERTpublished 3 months ago1 votes318 viewsSummaries of Serverless & Containers breakout sessions from AWS re:Invent 2025. Each article distills key announcements, technical deep dives, and practical guidance from sessions covering Amazon EKS,...
- AWS OfficialEXPERTpublished a year ago0 votes521 viewsThis spotlight on Amazon ECS equips you with the skills and troubleshooting tips to get the most out of a scalable service.
- Henrique SantanaEXPERTpublished a year ago0 votes655 viewsThis collection summarizes container-focused sessions from AWS re:Invent 2024, covering Amazon EKS and Amazon ECS topics including Kubernetes management, container networking, security, resilience, se...
- AWS OFFICIALUpdated 3 years ago0 votes7.5K viewsDo you want to modernize your existing .NET workloads on AWS? AWS has developed a number of services and tools to simplify your .NET modernization journey.
1 / 18
Riku_Kobayashi
EXPERTDidier Durand
EXPERTGary Mclean
EXPERTAntonio Lagrotteria
EXPERTUri Segev
EXPERTOleksii Bebych
EXPERTOsvaldo Marte
EXPERTAdeleke Adebowale .J.
EXPERTTushar Jagdale
EXPERTSHAJAM
EXPERTIndranil Banerjee AWS
EXPERTGK
EXPERTGunasekaran, Makendran
EXPERTGarre Sandeep
EXPERTThanniru Anil Kumar
EXPERTNARRAVULA MUNI SAI TEJA
EXPERTkranthi putti
EXPERT
Learn AWS faster by following popular topics
1 / 2
