Видео

If you do subnet sharing whats the use of transit GW ? I think design will make more sense if TGW routing is used instead of subnet sharing between two accounts.

quick question: is it possible to integrate cross-account? for example Managed AD Microsoft in one Account Let's say shared service account and AWS SSO in another Account, lets say Security Account.

you are a life saver. tysm

@Cloud4DevOps... We will whitelist IP ranges in SG also naa....instead of LB

Sir aap ye video hindi language me banao na

How many snapshot will create, As per our environment I can see last 1year EDRS snapshot are there, Can we clear those old snapshot

👌👌👌 explanation.tq so much bro

if both my management and data collection account is the same, then the fields "destination and source account" in all stacks should have the same account id?? or does it create a conflict?

what's the major difference between organization, landing zone and control tower?

Your efforts much appreciated but just one thing that never and ever we use In production by manually it might be with IAC tool Terraform or cloudformation.. and post a video on Centralized Golden images pipeline

How to do it for postgres?

These playlist is very helpful. A small request, can you move this to 3rd video in the playlist and third on to 4th ?

man u save my day..

Nice Explanation

Great video. Is possible to configure a local read replica to do tests?

At 16:00 you propose an architecture that includes Route53 for multi-region support. Is it not better to use the endpoint groups feature from AWS Global Accelerator? Can we even do that? When I configured it, it seemed like you could have an endpoint group per region, and multiple endpoints(instances, alb) per endpoint group.

from instances of my alb i am accessing an external API which is demanding ips for whitelisting my instances now if i implement your mentioned way can i provide my nlb static ip to them??

Thank you for this through video.

Crystal clear brother ✨

how many target groups can be created in one load balance? and how many instances can be added to target group?

there are so many diagrams, screenshots from the actual service and chatGPT to create visuals so just talking and underlining this type of content could maybe be better as a podcast

Can you please mention all the features of EC2 Instance that you used in this video? I too followed the same, but i could not connect my jenkins to Ec2 possibly because my Ec2 is not configured properly. Please note that i too opened port 8080 in security group. So that can not be the reason behind it..

Audio is very low

What a crystal clear explanation. Tnx!

This is awesome

Amazing guide 👍👍👍

Awesome demo! Thanks!

Awesome!👍👍👍

Thank you for this very easy to follow and understand lesson.

Very good video

Sir ji Kaha kya ho Raha hai samajh nhi Raha Just you have to explain what are you doing You are doing great But please explain step by step You directly go on instance then Direct open Guardduty there is already some data fetch So as learner I need step wise sir ji This my own comments. You are great sir ji

Really a pity that you didn’t show everything as promised - especially the creation of the quicksight connection and the costs introduced by it.

Im confused with landing zone and control tower as both will be created form control tower service from Aws console right ... Kindly help me to understand major difference since both will be created by clicking on landing zone from Aws rite..

Very high level and vague, my friend. where is the implementation part with Lambda? How are we supposed to know the hacker machine IP address? if the IP is not in the Guardduty threatlist, how will Lambda get triggered to deactivate the credentials?

where is code

When we manually remediate a finding, does it automatically disappear from GuardDuty findings tab or we have to suppress it each time?

if your organization uses an account for 3 environment. will it be a good practice to use aws control tower to establish 3 environment

Thanks for the video. Couple of questions - You hardcoded the instance Id of the compromised instance in the Lambda environment variables? How will this work in a production scenario where any instance can become compromised and tries to communicate with the malicious instance. How would you get the instance ID of the compromised instance then? The SG of the compromised instance has ALL outbound access but no inbound access from the malicious IP address correct? If the nmap script is failing, the finding is still generated in Security hub?

What it's AWS internet right, the services we use in AWS they are on AWS internet/network right then AWS should give it free right?

kindly, tell me this doubt, for efs no domain required but coming to fsx we require domain why ?

How to changes the password to user root if you aren't able to connect to any other option? For example, I am not able to access my instance SSH isn't working anymore. EC2 instance console is giving errors and not connecting me there. I am unaware about Session Manager. How do I acquire root password? I just have ssh private key file.

Bro I got errorr for 443 when I run python script in Linux machine

Superb!!! thank you creating a detailed video.

Very well explained!

Sir maine direct phele VPC delete ki ab mere subnet aur route table delete nhi ho pare muje delete karna hai.

Sir how to recover customer Or NO default VPC

if i have 10 clients should i create one account for each of them, OU is confusing me

your github is not available. Thanks for the demo tho

Great information in simple way ,Thanks

Hey Bro, I have one query suppose in SCP we mention only T2 is allowed but we invite existing aws account in OU& it has M5 instance already. So what happens to existing instance ?