IT 2.0

Next generation IT infrastructures

Email GitHub Twitter LinkedIn Youtube

My first CDK experience under the hood

A few weeks ago I have published an AWS Fargate related project in GitHub called Fargatecount. I won’t bore you with the details of what it does (you can read it on the repository). In a nutshell, it runs a container as a scheduled Fargate task that in turn runs a script that queries ECS and EKS to collect the number of total Fargate tasks running in the account in that region and pushes a metric to CloudWatch. Read more...

Securing credentials using AWS Secrets Manager with AWS Fargate

This article was originally posted on the AWS compute blog. I am re-posting here for the convenience of the readers of my personal blog. Cloud security at AWS is the highest priority and the work that the Containers team is doing is a testament to that. A month ago, the team introduced an integration between AWS Secrets Manager and AWS Systems Manager Parameter Store with AWS Fargate tasks. Now, Fargate customers can easily consume secrets securely and parameters transparently from their own task definitions. Read more...

Deployment pipeline of a containerized application using AWS services

A few days ago, at Incontro DevOps Italia (IDI) 2019 I did a breakout session about the topic in subject. I decided to use the 30-ish minutes I had available to share a bit of context re the need for deployment automation and then I did a short demo (well, as short as a CI/CD demo could be) that was aimed at showing the individual pieces (namely the build and deploy phases) independently and then how to wrap them up together in a pipeline. Read more...

Moving to a new role at AWS

At Amazon we work backwards from customer needs and this is embodied in everything we do. When we release a new product or service we start from the “press release and FAQ” and work backwards from there to develop what we intend to build for our customers. I am sketching this post in early December (2018) on a train heading to Rome just a few days prior to interviewing for a new role at AWS. Read more...

Compute abstractions on AWS

When I joined AWS last year, I was trying to find a way to explain, in the easiest way possible, all the options the platform offers to our users from a compute perspective. There are of course many ways to peal this onion and I wanted to create a “visual story” that was easy for me to tell. I ended up drafting an animated slide that I have presented at many customers meetings and public events. Read more...

My first 6 months at AWS

As you may have heard, late last year I joined Amazon Web Services. I have recently turned 6 months at AWS (or 180 x Day1) and that is often a good point to pause and reflect. Also, I have got so many people asking me how I am doing here that I thought a public blog post would scale better than many 1:1 interactions. The TL/DR version of it is: it is exactly as I have envisioned before joining; I didn’t have any major surprise; my due diligence was accurate (i. Read more...

AWS Identity and Access Management: Introduction to Resources Access Control

This is my first blog post as an AWS employee. I have spent the last 6+ months learning new things (IAM being one of them) and I figured I could (and should) share some of these learnings with my followers. I hope it can smooth the learning curve when you transition from a data center centric view of the world to a cloud centric view of the world. This blog post doesn’t add new information that can’t be found in the AWS official documentation. Read more...

So long VMware, Hello AWS

I have an awesome job, an awesome manager and I work for one of the best companies around. Yet, Friday September 29th 2017 is my last day at VMware. On Monday October 2nd I will join Amazon Web Services as a Principal Solutions Architect. This was not a decision I took lightly. This blog post (in its original draft) was 7 pages long. I intended to explain, at a certain level of details, the thought process I went through to take this decision. Read more...

“VMware Cloud on AWS” Vs. “Azure Stack”

Introduction VMware, Amazon Web Services and Microsoft are in the middle of some interesting technology and services roll out that have the potential of moving the needle in cloud adoption (spoiler alert: whatever cloud means). VMware is coming from a very strong (almost exclusive) marketshare in the on-prem data center virtualization space. AWS is the 800-pounds cloud gorilla and Microsoft is one of the biggest contenders in the same public cloud space. Read more...

A data center provisioning horror story

Yesterday I noted a tweet from Frank Denneman: I guess he was asking this in the context of the VMWonAWS cloud offering and how, with said service, you could provision vSphere capacity without having to “acquire server hardware”. This reminded me of an anecdote I often use in talks to describe some of the data center provisioning and optimization horror stories. This won’t answer Frank’s question specifically but it offers a broader view of how awful (and off rail) it could quickly get inside a data center. Read more...