Advertisements

AWS bits and pieces – my journey to Certification

What is AWS?

Amazon Web Services or AWS is the worlds leading provider of IaaS public cloud.  it is also  not a single thing, it is made up of many different services, and is accessible from several locations across the world these locations are called Regions..

Currently AWS has 18 Regions these are shown below. It is important to remember that not all AWS services are available in every Region.

Region Name

Region

Protocol

US East (Ohio)

us-east-2

HTTPS

US East (N. Virginia)

us-east-1

HTTPS

US West (N. California)

us-west-1

HTTPS

US West (Oregon)

us-west-2

HTTPS

Asia Pacific (Tokyo)

ap-northeast-1

HTTPS

Asia Pacific (Seoul)

ap-northeast-2

HTTPS

Asia Pacific (Osaka-Local)

ap-northeast-3

HTTPS

Asia Pacific (Mumbai)

ap-south-1

HTTPS

Asia Pacific (Singapore)

ap-southeast-1

HTTPS

Asia Pacific (Sydney)

ap-southeast-2

HTTPS

Canada (Central)

ca-central-1

HTTPS

China (Beijing) *

cn-north-1

HTTPS

China (Ningxia) *

cn-northwest-1

HTTPS

EU (Frankfurt)

eu-central-1

HTTPS

EU (Ireland)

eu-west-1

HTTPS

EU (London)

eu-west-2

HTTPS

EU (Paris)

eu-west-3

HTTPS

South America (Sao Paulo)

sa-east-1

HTTPS

  • These regions are only available in China and only be accessed by Republic of China companies and citizens.

A Region is broken down in to a number of Availability Zones. The number of availability zones varies from region to region, ie there are more availability zones on more mature regions.

regions

Availability Zones are identified by the appending of a alpha character to the end of a zone name for example ap-southeast-2a. which related to an availability zone in the Sydney Region.

It is also important to know that availability groups are not immutable, what is your availability zone “a” is not necessarily the same zone for another customer. Also there is now way to coordinate Availability Zones between accounts.

That is a high level overview of the AWS infrastructure,

In my next post we will start looking into the numerous services and functions that are available across the AWS suite. It is should also be noted that AWS are constantly introducing new and enhancing their current services and functions. Also these services and functions are also being rolled out to new regions from their initial launch region.

Advertisements

Error “Idm client exception: Error trying to join AD, error code [11]” when joining a VCSA to AD domain

This is not clear in the documentation, but if you receive the following error when adding your device to an Active Directory:

Error “Idm client exception: Error trying to join AD, error code [11]” when joining a VCSA to AD domain

 The root cause of this is because of incorrectly formatted entries in the details form.

When adding a vCenter appliance to an Active Directory domain, remember this the vCenter Appliance is not a Windows device but a PhotonOS device and as such you should use the following:

  • The fully qualified domain name not the NETBios name for the domain field.
  • The LDAP format for Organisation units not the Active Directory format
  • The Qualified Username not the Windows format

See below for an example:

 

 

Notes on securing Meltdown and Spectre

Now that the dust is slightly starting to settle It became clear to me that there’s an enormous amount of information and confusion out there. I have read a lot of websites in order to get a clear picture and being able to get all of my hosts and Virtual Machines patched. While not completely done yet, here’s my collection of links and some answers on questions that I see asked often. This is a live document and will be updated with notes relevant for patching. Last update 2018/01/29 Continue reading

Monitor storage for a Dell PERC H710 Mini on vSphere 6.5

So I managed to get myself some DELL R320 servers for the lab. Great servers, love that R3x0 series, they fit my needs perfectly. In previous R3xx series and vSphere versions using the “thick” vSphere client you could just monitor the storage (PERC H710 mini) and other hardware so that you could easily find out if your server needs maintenance.

Continue reading

Tis the Season to be Jolly and heres a little Christmas Gift from Cormac and Duncan the VSAN Elves

Tis the season to be Jolly, and here is a little festive treat from Santa’s little VSAN helpers Cormac Hogan and Duncan Epping.

or from

VSAN as we know is VMware Software defined storage solution that is integrated at the VMkernal level and a core component in SDDC and vxRAILs.  This is a serious tome about all things VSAN 6.2, (yes we are at VSAN 6.5 but this book is still relevant)

So mosy on over to either of the two sites and download the book, I can vouch for it. these too folk know their stuff.

TWITTER AND THE RIGHT NOT TO BE BLOCKED

What follows in pure conjecture, and in no way constitutes legal opinion. It merely outlines one of many possible outcomes.

An article in the New York Post on June 6 reported on a potential legal case aiming to force President Trump to unblock users he has blocked from seeing or tweeting to his timeline, either directly or by replying. This raises an interesting legal conundrum. The President uses his personal Twitter account, @RealDonaldTrump, rather than the official @POTUS account that was created under President Obama’s tenure to handle presidential Twitter discourse.

Unintended Consequences

UNINTENDED CONSEQUENCES

———– Read More ————-

“NO THANKS, WE’RE TOO BUSY,” OR PAY BACK TECHNICAL DEBT?

We have all heard this refrain. I bet many of you can even hear yourselves saying it. Over my many years in IT, I have often heard this from coworkers, bosses, and clients. I have even said it a few times myself. But what if we just stopped and listened? Who knows where that conversation could travel? Perhaps it could be the start of the next big thing. We now have a new term that relates to this message, and that term is “technical debt.”

No Thanks We’re too busy

———- Read More ———–

Privacy: it is such a personal thing, Part 1

This is the first in a series of articles that outline the legal position on an individual’s right to privacy with regard to personal data held across the world. There is an implicit assumption that every individual has the right to privacy. In fact, you could say it is a human right. This right to data privacy is being or has been codified into law across the globe. There is only one major exception in the free Western world, and that is the US, where there is no legally backed guarantee to data privacy. Yes, there is the common-law tort of invasion of privacy derived from English law and the 1974 Privacy Act. However, a guaranteed protection of data rights has never been codified into federal statute in the US, whereas more than eighty other countries and independent territories—including the EU; the UK; and the majority of Latin America, the Caribbean, Asia, and large parts of Africa—now have comprehensive data-protection laws.

—————— Read More ——————

Like Cloud and Virtualization, Serverless Computng is still someone Else’s Computer

Today, serverless is all the rage. In the beginning, we had the server. Then along came virtualization, and things were good. We saved money. We could purchase less tin but run more servers. We could easily see the benefits of moving in that direction: lower power requirements, less hardware needing cooling down in our computer rooms. This was an easy sell for engineers and salespeople alike. Techies loved the elegance, and the business types loved the financial savings. The messaging was easily understandable.

——————– Read More—————

VMware Leaves the Data Protection Market

Back in April, VMware announced the end of life for its vSphere Data Protection (VDP) product. This little nugget was once again hidden in a blog post, in which VMware stated that moving forward after vSphere 6.5, it would be helping to consolidate backup and recovery by realigning its focus on its Storage APIs. Now, before you go into full panic mode, you do not need to worry: the VMware Lifecycle Product Matrix gives the relevant end-of-general-support dates for each version, and 6.1, the latest, is supported until mid-March 2020. You will have to plenty of time to plan your migration if you are using VDP.

————Read More ——————