TLDR: Uncheck Require SNI (Server Name Indication) is required from IIS site binding, as ALB does not include SNI TLS extension in the request sent to the target There can be many reasons behind hitting 502 bad gateway error from an ALB, and most of them can be fixed by following the AWS documentation here. […]
Tag: AWS
How to avoid distro upgrade for RHEL 8.x when running yum update
This is simply for my personal reference since I spent a lot of time figuring out how to do this simple thing I have some RHEL 8.3 servers which I need to have security patches, but it should not upgrade to 8.4. This runs on AWS EC2 instances, and it does not have a subscription […]
Bulk change retention period of AWS Cloudwatch Log Groups
By default cloudwatch log groups will have a retention period of “Never expire” set when created. If you have a lot of cloudwatch log groups and want to set retention period for all of them at one shot, use the following powershell code snippet. The script requires you to have the AWS CLI profile configured […]
Managing multi account AWS SSM Session Manager Port Porwarding in an easier way
SSM Session Manager Port Forwarding is great tool that can be used get rid of your bastion hosts or VPN servers to manage your private instances. However, when you have to manage many instances that are spread over multiple AWS accounts, it will become a difficult task to remember their instance ids, and creating sessions […]
Rename Windows and Linux EC2 instances based on tag
If you need to rename your EC2 instances based on the tags set, you can use the below code snippets. This can be particularly useful if you use a hardened AMI with a name already set in. To apply them, you can just use a cron job or a Task Scheduler job, or even cloudwatch […]
Create AWS Systems Manager Maintenance Window without a target
AWS SSM is a great tool, with a lot of cool features, but I always felt that the documentation is not very good, or the console is very intuitive. Recently I wanted to configure a maintenance window with an SSM Automation task, but the task did not take any instances as the inputs. The task […]
Fixing intermittent connectivity issues between AWS Site-to-Site VPN and Sophos firewalls
So if you setup a VPN between an AWS account and an on premise network with a Sophos firewall as the customer end device, it should work perfectly if you only have one route to the on premise network. But, when you start adding more routes to the VPN, you will start seeing connection dropping […]
This site is now serverless!!
This site is now serverless – well, sort of. I was paying around $85 per year with hosting on WordPress.com, and now I guess it will be less than $40 per year. I am not really interested in posting a big how to guide on that, but I used the below tools for this setup. […]
My experience with AWS Certified Solutions Architect – Professional (SAP-C01) exam – June 2019
On June 12, 2019, I passed my fourth AWS certification – AWS Certified Solutions Architect – Professional. I would like to share my experience with it. The last time I used AWS professionally was on 2017 December. Ever since I joined Accenture, I was working on some private cloud, and never really had a chance […]
How to fix AWS SES domain and DKIM verification failures in Godaddy domains
When we try to register a domain with AWS SES, they will ask us to add some TXT records in our DNS records. The sample TXT record that AWS asks us to add will be as follows : Name Type Value _amazonses.example.com TXT pmBGN/7MjnfhTKUZ06Enqq1PeGUaOkw8lGhcfwefcHU= However, if we add this in our Godaddy console, AWS is […]