Questions in AWS Well-Architected Framework
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
Is it possible to use a VPC interface endpoint (for service S3) only for S3 buckets from *my* AWS Organization, and a NAT gateway for s3 buckets *outside* of my AWS organization?
**Current thoughts...
2
answers
0
votes
366
views
asked 2 months agolg...
These are supposed to be public IPs. I can only access them from our internal network. I need to be able to access them from anywhere and to be able to set an A record up for them in our dns, but I...
2
answers
0
votes
159
views
asked 2 months agolg...
I've been using the CloudFront key pair trusted signers for a long time, which requires using the root account to generate a key pair that I can use for the CloudFront signed URL feature. For security...
1
answers
0
votes
175
views
asked 2 months agolg...
I have several hundred Amazon CloudWatch dashboards and they cost a significant amount of money at $3 USD a pop. I'm sure out of all these dashboards, at least some of them are not actively being...
1
answers
0
votes
193
views
asked 2 months agolg...
Hello,
I recently set up 5 VPC Endpoints to avoid using NAT Gateway with my ECS tasks (2 for ECR, 1 for S3, 1 for Cloudwatch Logs and 1 for Secret Manager), each endpoint is linked to only one AZ....
2
answers
0
votes
147
views
asked 2 months agolg...
Hi to you all
do we use from AWS server for bug bounty
for example running any scanning script on the server ? or not
1
answers
0
votes
137
views
asked 2 months agolg...
Today we found that on our RDS on every DB there is an extra table name "YOUR_DB_IS_HACKED" containing these below content. we checked that this table is created on on "2024-03-19".
> ('Your database...
2
answers
0
votes
224
views
asked 2 months agolg...
I did some changed to my resources. Security hub score has not being updated after 24 hours. What should I do?
1
answers
0
votes
140
views
asked 2 months agolg...
I am using Packer to generate multiple images for AWS, GCP, Azure, VMWare, Qemu and Hyper-V for Ubuntu OS.
Since AWS Inspector is agent based service, can I use it for scanning servers for the above...
1
answers
0
votes
479
views
asked 2 months agolg...
I have a nodejs rest application hosted on elastic beanstalk with load balancer enabled. The application makes external apis calls but not of them are working. One example call is...
1
answers
0
votes
187
views
asked 2 months agolg...
I have created a Secret in AWS Secrets Manager and added multiple Secrets.
In the console when I click on Retrieve and view the secret value in AWS Secrets Manager. It opens as plain text.
I need to...
1
answers
0
votes
254
views
asked 2 months agolg...
Hello,
In the EC2 instance, there is an image processing API, and I associate a WAF on ALB, then configured the following rule in the WAF:
```typescript
const awsManagedRulesCommonRuleSet:...
2
answers
0
votes
462
views
asked 2 months agolg...