Sibabalwe (Siba) Ngqoyiya’s Post

You can now sync Twingate DNS filtering logs to Amazon Web Services (AWS) S3 🎉 By ingesting your DNS log data into an S3 bucket, you can programmatically consume critical information about your network. Read the full changelog 👉 https://lnkd.in/eXYYVsY4

🎥 New AWS Tutorial Alert! 🚀 In this video, I dive into Multi-Factor Authentication (MFA) in AWS and walk through how to enhance security by enabling MFA for AWS users. 🛡️ 🔑 I also show how to set up access keys for users so they can access the AWS CLI, empowering them to work seamlessly from the command line. 📊 And, to keep track of everything, I’ll guide you on how to generate a credentials report—a powerful tool for auditing user access and ensuring best practices are followed. #AWS #CloudSecurity #MFA #IAM #AccessKeys #AWSTutorial #CloudComputing

If you want to protect your AWS VPC like a pro then learn to automate threat response with GuardDuty, Lambda, and EventBridge. 🔐 This hands-on tutorial by Foluso Ogunsakin will teach you to secure your infrastructure with an automated quarantine solution. 🔗 https://hshno.de/aGs9NW1 Want your article to be featured on Hashnode & get the recognition it deserves? Follow this basic criteria ➡️ https://hshno.de/MogP7o0

We updated the IAM Access Analyzer by extending the custom policy checks and adding a new guided revocation feature. The custom policy checks are powered by automated reasoning and help you to detect policies that grant access to specific, critical AWS resources, or that grant any type of public access. The guided revocation gives you guidance to help you to remove permissions that grant access that is not actually used. To learn more about both of these new features, read my blog post at https://lnkd.in/gknXJ3Zk .

Today was a bit different for us. We used CloudFormation to automate the creation of our infrastructure. We did this by utilizing a YAML file and defining what we wanted CloudFormation to create for us. Our first file defined the VPC, Internet Gateway, two Subnets, Routing Table, and Security Group. Creating the infrastructure this way had the benefit of saving time and energy by having everything defined in one place. The only problem I ran into was making sure I had the correct syntax. The Second YAML file contained code to launch an EC2 instance in one of the subnets. It also contained information for the IP address and the Security Group. I thought this was a great lab that brought a different view of AWS. Fully utilizing CloudFormation will have many benefits and a great skill to master.

AWS, it's 2024 and we're still paying a fortune for private network egress? Luckily there's a very cheap alternative to Managed NAT Gateways. Enter "fck-nat" - a solution that came from the community to start challenging AWS's pricing status quo. Here's why it's a great alternative: • 90% cost reduction: A t4g.nano instance with fck-nat costs just $0.0042/hour compared to $0.045/hour for a Managed NAT Gateway. • Zero data transfer costs vs $0.045/GB with Managed NAT. • Up to 5Gbps burst NAT traffic on a t4g.nano. That's more than enough for most use cases. The best part? With AWS CDK, maintaining the servers and setting up the network configuration is a breeze. You get cost-effectiveness without sacrificing ease of management. Are you still overpaying for NAT or are you ready to say "fck-nat" to unnecessary costs?

🚀 Just Learned About AWS S3 Presigned URLs – Secure & Temporary File Access! 🔐 Did you know S3 presigned URLs let you grant time-limited access to your S3 objects? They're perfect for securely sharing files without exposing credentials. Once generated, users can download or upload files with a URL that expires after a set time. Real-World Use Case: Paid Course Platforms Platforms often use presigned URLs to share videos securely. When a student clicks to view content, a presigned URL is created that grants access for only that session, preventing unauthorized sharing and keeping the content secure behind the paywall. #AWS #S3 #WebSecurity #TechTips Piyush Garg

'fck-nat' can help you significantly reduce costs associated with private network egress in AWS. By using a t4g.nano instance, you can achieve a 90% cost reduction compared to Managed NAT Gateways. Additionally, it eliminates data transfer costs and offers up to 5Gbps burst NAT traffic. With AWS CDK, setup and maintenance are straightforward, making it a cost-effective and manageable solution. AWS CDK simplifies 'fck-nat' setup by automating the creation and configuration of the necessary infrastructure. It allows you to define your network configuration as code, making it easier to deploy, manage, and maintain. This reduces manual effort and ensures consistency across deployments, enhancing both cost-effectiveness and ease of management. #AWS #CloudCostOptimization #NetworkSecurity #AWSCDK #InfrastructureAsCode #DevOps #CloudComputing

AWS Stale DNS Finder is a tool designed to identify and manage stale DNS records within your AWS environment. It helps you keep your DNS records clean and up-to-date, preventing issues related to outdated or unnecessary DNS entries. We welcome contributions to the AWS Stale DNS Finder. #devopskhan

🚀 Just published a step-by-step guide on making S3 objects publicly accessible using the AWS Management Console! Learn how to configure bucket and object permissions to securely share your files over the internet. 🔹 Perfect for both new and existing objects in S3 buckets. 🔹 Includes best practices for maintaining security. #AWS #S3 #CloudStorage #TechTips #DataSecurity #AWSManagement