Questions in AWS Well-Architected Framework
Content language: English
Select up to 5 tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
We have 2 identical prod environments in AWS and the end-user send the exact same payload in those environments. However, one works fine, the other is blocked by **AWS Managed WAF Ruleset-Size...
1
answers
0
votes
148
views
asked 14 days agolg...
How to get Best Performance for Nginx with AWS Load Balancer?
I get error in worker connections and php fpm max children.
1
answers
0
votes
583
views
asked 16 days agolg...
Hello, what is the safest way for an application running outside of AWS to consume an object stored in an S3 bucket via get? Could you give examples of the best way to configure it.
I was reading...
1
answers
0
votes
170
views
asked 16 days agolg...
There's an endpoint blocked by AWS WAF. Let's say /api/services. In the logs, it's evident that it's being blocked due to the "size body" in the AWS Managed RuleSet. I've edited SizeRestrictions_BODY...
1
answers
0
votes
166
views
asked 17 days agolg...
We was working on integration with AWS CodeBuild and use OAuth flow to authorize connections with our GitHub Org repos using documentation from...
1
answers
0
votes
195
views
asked 18 days agolg...
Is it possible to use a VPC interface endpoint (for service S3) only for S3 buckets from *my* AWS Organization, and a NAT gateway for s3 buckets *outside* of my AWS organization?
**Current thoughts...
2
answers
0
votes
314
views
asked 19 days agolg...
These are supposed to be public IPs. I can only access them from our internal network. I need to be able to access them from anywhere and to be able to set an A record up for them in our dns, but I...
2
answers
0
votes
139
views
asked 19 days agolg...
I've been using the CloudFront key pair trusted signers for a long time, which requires using the root account to generate a key pair that I can use for the CloudFront signed URL feature. For security...
1
answers
0
votes
152
views
asked 20 days agolg...
I have several hundred Amazon CloudWatch dashboards and they cost a significant amount of money at $3 USD a pop. I'm sure out of all these dashboards, at least some of them are not actively being...
1
answers
0
votes
158
views
asked 20 days agolg...
Hello,
I recently set up 5 VPC Endpoints to avoid using NAT Gateway with my ECS tasks (2 for ECR, 1 for S3, 1 for Cloudwatch Logs and 1 for Secret Manager), each endpoint is linked to only one AZ....
2
answers
0
votes
107
views
asked 20 days agolg...
Hi to you all
do we use from AWS server for bug bounty
for example running any scanning script on the server ? or not
1
answers
0
votes
117
views
asked 21 days agolg...
Today we found that on our RDS on every DB there is an extra table name "YOUR_DB_IS_HACKED" containing these below content. we checked that this table is created on on "2024-03-19".
> ('Your database...
2
answers
0
votes
189
views
asked 21 days agolg...