Questions in AWS Well-Architected Framework
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
I'm setting up an infrastructure that uses AWS Global Accelerator to provide static IPs for my Application Load Balancer (ALB), which handles URL redirections. I aim to follow the principle of least...
2
answers
0
votes
474
views
asked 2 months agolg...
I want to design an architecture for a ride-sharing application built with Laravel on AWS.
I need recommendations for the AWS services to use. I'll be using Laravel.
I also want to create a database...
1
answers
0
votes
268
views
asked 2 months agolg...
We have 2 identical prod environments in AWS and the end-user send the exact same payload in those environments. However, one works fine, the other is blocked by **AWS Managed WAF Ruleset-Size...
1
answers
0
votes
401
views
asked 2 months agolg...
How to get Best Performance for Nginx with AWS Load Balancer?
I get error in worker connections and php fpm max children.
1
answers
0
votes
1084
views
asked 2 months agolg...
Hello, what is the safest way for an application running outside of AWS to consume an object stored in an S3 bucket via get? Could you give examples of the best way to configure it.
I was reading...
1
answers
0
votes
206
views
asked 2 months agolg...
There's an endpoint blocked by AWS WAF. Let's say /api/services. In the logs, it's evident that it's being blocked due to the "size body" in the AWS Managed RuleSet. I've edited SizeRestrictions_BODY...
1
answers
0
votes
434
views
asked 2 months agolg...
We was working on integration with AWS CodeBuild and use OAuth flow to authorize connections with our GitHub Org repos using documentation from...
1
answers
0
votes
242
views
asked 2 months agolg...
Is it possible to use a VPC interface endpoint (for service S3) only for S3 buckets from *my* AWS Organization, and a NAT gateway for s3 buckets *outside* of my AWS organization?
**Current thoughts...
2
answers
0
votes
377
views
asked 2 months agolg...
These are supposed to be public IPs. I can only access them from our internal network. I need to be able to access them from anywhere and to be able to set an A record up for them in our dns, but I...
2
answers
0
votes
163
views
asked 2 months agolg...
I've been using the CloudFront key pair trusted signers for a long time, which requires using the root account to generate a key pair that I can use for the CloudFront signed URL feature. For security...
1
answers
0
votes
177
views
asked 2 months agolg...
I have several hundred Amazon CloudWatch dashboards and they cost a significant amount of money at $3 USD a pop. I'm sure out of all these dashboards, at least some of them are not actively being...
1
answers
0
votes
197
views
asked 2 months agolg...
Hello,
I recently set up 5 VPC Endpoints to avoid using NAT Gateway with my ECS tasks (2 for ECR, 1 for S3, 1 for Cloudwatch Logs and 1 for Secret Manager), each endpoint is linked to only one AZ....
2
answers
0
votes
152
views
asked 2 months agolg...