Mysterious Code

Blog

Latest posts from our team. Stay up-to-day with news and new features, see if we can help with common problems and see how we solved our clients issues.

Blog

Complete code: automated EC2 snapshots and retention management

March 11, 2018 by Paulina Budzoń

Creating snapshots from EBS drives attached to your EC2 instances is the most basic way of backing up your data. While you have to be cautious when snapshotting running EC2 instances without restart, doing it regularly is a base of many disaster recovery plans. In the latest update to aws-maintenance repo on GitHub you’ll find a complete code and CloudFormation template that will make this as painless a process as possible.

Continue reading

Cross-region RDS recovery: encryption and Aurora support

February 3, 2018 by Paulina Budzoń

After my previous post about a complete code for automated RDS cross-region backup copy, some issues and new feature requests have been raised on GitHub (thanks for that!) - and with your help, support for encrypted RDS instances and Aurora Clusters have now been added!

Continue reading

Complete code: cross-region RDS recovery

December 28, 2017 by Paulina Budzoń

After posting the previous post on this topic (Copying RDS snapshot to another region for cross-region recovery) , I noticed a lot of people being interested in using the code I provided as an example. Many were not sure how to make use of it, and after a couple of pull requests it became obvious that a complete, fully-working code and CloudFormation template would be a good idea. So, yesterday, I pushed an update to aws-maintenance repository with a fully working code, which you can easily customize via CloudFormation parameters to match your needs.

Continue reading

Sharing encrypted AMIs between AWS accounts (using Python and boto3)

November 2, 2017 by Paulina Budzoń

Each Amazon Machine Image (AMI) holds information of the volumes and snapshots of those volumes that should be attached to instances created from that AMI. To protect the data on those snapshots, you can choose to encrypt them using KMS. Encrypting your data at rest is generally a good idea, though many companies choose to avoid encrypting their snapshots, because sharing such snapshots between different AWS accounts (for example, Test and Production accounts) can be difficult. That’s why I’m sharing details on how to make this as easy as possible (and automated!).

Continue reading

Enabling global API Gateway stage logging using CloudFormation

July 18, 2017 by Paulina Budzoń

Enabling logging in API Gateway for your stage is fairly easy. You go into the Console, setup a role for API Gateway to use for logging, find the stage and enable logs. It will enable logging for all methods within that stage. Doing the same configuration using CloudFormation is not completely obvious though, as the stage object’s MethodSettings property seems to allow you to only do that for a specific resource and method.

Continue reading

Mysterious Code - Your AWS & DevOps consultants

Mysterious Code Ltd is a company registered in England and Wales, company registration number 9263665.