profile

AWS for the Real World

🚨 Still jumping between accounts for alerts? Fixed.

Published 21 days agoΒ β€’Β 2 min read
AWS FOR THE REAL WORLD
⏱️
Reading time: 6 minutes
🎯
Main Learning: Build a central alerting approach with CloudWatch, Lambda, EventBridge, and CDK across your AWS Organization.
πŸ“
🎬

Hey Reader πŸ‘‹πŸ½

Welcome to the first issue after re:Invent.

For everybody who was out there, I hope you came home safe & healthy. I heard re:Invent cold is a thing like Oktoberfest cold in Munich 🍻

πŸ“° This Week in AWS

⏸️AWS Lambda Durable Functions

Lambda launched Durable Functions! We're pretty hyped on them. We love Step Functions (especially the visual part). But ASL (the language you write SFNs in) can actually be quite a burden. Doing it all in your favorite programming language is great! Read More β†’

πŸ’°Database Savings Plans

FINALLY, we've got some database saving plans. We'll have a dedicated post on them soon! Read More β†’

πŸ–₯️Lambda Managed Instances

Ever needed your Lambda function with some specific compute requirements? Now you can set them up with Lambda Managed Instances. Read More β†’

We'll have dedicated launch newsletters and posts on them as well!

In this week's deep dive, we'll talk about CloudWatch Central Alerting. I (Sandro) just built something similar for a client and published a YouTube video + an example CDK implementation!

video preview​

​

Now let's learn something and build centralized alerting in this week's deep dive πŸ€“

Cover

πŸ“š This Week's Deep Dive

The Case for Centralized Alerting

If you use AWS, you use CloudWatch to some extent. Having it as a powerful monitoring tool is nice. As your organization grows, organizing alerts, logs, and metrics becomes harder.

You should have a global way of handling your alerts. It doesn't make sense that all of your developers need to think about where your alerts should arrive. You will end up with a mess of:

  • Custom Apps in your IM messengers (Slack, Teams, etc.)
  • Webhook Implementations
  • Email Alerts

Platform teams should make it as simple as possible for developers to be able to create alerts. These alerts should be handled automatically and arrive at some common point where you can handle them. This is often an instant messaging service like Slack. Or it could also be a ticketing system such as Jira.

In this post, we will show you how to create such an architecture in a multi-account setup in AWS.

Architecture Overview

The architecture consists fully of serverless services.

We have three different sets of accounts:

  1. Management Account
  2. Member Accounts
  3. Observability Account

All of these accounts are in an AWS Organization. This organization has different organizational units (OU).

For instance, we could have the following OUs:

  • Production
  • Development

The observability account could live in its own OU or directly in the root.

Typically, two app accounts exist. One in production and one in development.

...

πŸš€ Read the Full Tutorial β†’

Summary

That's it for this week's newsletter!

Tobi & I are traveling to Berlin this week for a client's AWS workshop and some co-working. I'm sure we'll grab a mulled wine at a Christmas market 🍷 (if you're in Berlin, hit us up!)

Have a great pre-Christmas/post-re:Invent time – and talk to you soon ❄️

AWS for the Real World

by Tobi & Sandro

We teach AWS for the real world - not for certifications. Join more than 10,500 developers learning how to build real-world applications on AWS.

Read more from AWS for the Real World

AWS FOR THE REAL WORLD ⏱️ Reading time: 10 minutes 🎯 Main Learning: Building and testing Lambda@Edge functions with CloudFront is complicated, as deployments can take up to 10 minutes. With LocalStack, you can build, test, and debug your Lambda@Edge functions locally! πŸ“ Blog Post πŸ’» GitHub Repository 🎬 Watch on YouTube Hey Reader πŸ‘‹πŸ½ Happy new year! We hope you had a great time with your families and loved ones 😊 We took some time off. Sandro is bridging the cold winter in Thailand (say hi if...

2 days agoΒ β€’Β 1 min read

AWS FOR THE REAL WORLD ⏱️ Reading time: 7 minutes 🎯 Main Learning: Learn how to securely connect to your RDS database in a private subnet using an EC2 jumphost and AWS Session Manager. No SSH keys needed. πŸ“ Blog Post πŸ’» GitHub Repository 🎬 Watch on YouTube Hey Reader πŸ‘‹πŸ½ Hope you had a great Christmas with your loved ones πŸŽ„ Tobi and I spent a few days in Berlin consulting with a startup, then caught the last sunny days in Munich before winter really hits. This week: how to actually connect to...

11 days agoΒ β€’Β 1 min read

AWS FOR THE REAL WORLD ⏱️ Reading time: 6 minutes 🎯 Main Learning: Learn how to securely connect GitHub Actions to your AWS account using OIDC authentication without storing access keys. Step-by-step guide with IAM role setup, trust policy configuration, and workflow examples for safe CI/CD deployments. πŸ“ Blog Post Hey Reader πŸ‘‹πŸ½, welcome to another week of AWS for the Real World We are right in the middle of pre:invent. Re:Invent starts next week! We are both not present, but we will give you...

about 1 month agoΒ β€’Β 6 min read