Containers

Category: Containers

Logging image scan findings from Amazon ECR in CloudWatch using an AWS Lambda function

Amazon Elastic Container Registry (Amazon ECR) image scanning helps in identifying software vulnerabilities in your container images. Amazon ECR uses the common vulnerabilities and exposures (CVEs) database from the open source Clair project and provides you with a list of scan findings. However, scan findings are only accessible for viewing, either from the AWS Management […]

Read More

Fast forward on your first serverless container deployment on AWS

Introduction Modernization and container technologies are a hot topic in recent technology news, reports, and conference talks. Containers are becoming a dominant modern compute layer for on-premise, local, and hybrid workloads. This blog post introduces container concepts with easy-to-understand examples and equips the reader with a lightweight toolset to deploy your first containers on AWS. […]

Read More

Catching up with Managed Node Groups in Amazon EKS

Since its launch in 2018, Amazon Elastic Kubernetes Service (Amazon EKS) has continued to deliver upon and expand its mission to simplify the process of building, securing, operating, and maintaining Kubernetes clusters. The first realization of that mission was a managed Kubernetes control plane, swapping the heavy lifting of provisioning, curating, and assembling the various […]

Read More

Speeding up Windows container launch times with EC2 Image builder and image cache strategy

I have heard many times from customers that Windows containers aren’t fast to launch due to the container image size. In part this is true, however, it is important to demystify “the big image” and how to implement cache strategy to avoid expensive operations on the disk (the extraction) and speed up the Windows container […]

Read More

Amazon EKS now supports Kubernetes 1.21

The Amazon Elastic Kubernetes Service (Amazon EKS) team is pleased to announce support for Kubernetes 1.21. I had the privilege of serving on the upstream release team for this release from January to April of 2021 and am excited for Amazon EKS customers to experience the “Power to the Community” release. Kubernetes runtime changes and […]

Read More

Create a pipeline with canary deployments for Amazon ECS using AWS App Mesh

In this post, we demonstrate how customers can implement a canary deployment strategy for applications running on Amazon Elastic Container Service (Amazon ECS) in conjunction with AWS App Mesh. If you are looking to do canary deployments with AWS CodeDeploy using ALB’s weighted target groups, please refer to this post. By making use of container […]

Read More

Getting started with task networking on Amazon ECS with Windows containers

Today, AWS launched the support of awsvpc network mode for Windows workloads running in Amazon Elastic Container Service (Amazon ECS). This feature brings EC2 networking capabilities to Windows tasks running on Amazon ECS by associating each task with its own elastic network interface (ENI). In this post, we will walk through the steps for using […]

Read More

Capturing logs at scale with Fluent Bit and Amazon EKS

Earlier this year, AWS support engineers noticed an uptick in customers experiencing Kubernetes API server slowness with their Amazon Elastic Kubernetes Service (Amazon EKS) clusters. Seasoned Kubernetes users know that a slow Kubernetes API server is often indicative of a large, overloaded cluster or a malfunctioning controller. Once support engineers ruled out cluster size as […]

Read More

Persistent Storage using EFS for EKS on Bottlerocket

In this post, we discuss about how to achieve persistent storage with Amazon Elastic Kubernetes Service (Amazon EKS) clusters running on Bottlerocket OS with Amazon Elastic File System (Amazon EFS). Persistent storage is needed for long running stateful applications to persist state for high availability or to scale out around shared datasets. This is true […]

Read More

Getting started with Bottlerocket and Amazon ECS

Last week we announced the general availability of the Amazon Elastic Container Service (Amazon ECS)-optimized Bottlerocket AMI and Bottlerocket support for Amazon ECS is now generally available. Bottlerocket is an open source project that focuses on security and maintainability, providing a reliable, and consistent Linux distribution for hosting container-based workloads. In this post, I am […]

Read More