@TeriRadichel | Cloud. Security. Software.

In my last post I explained how to turn on detailed Boto logging to get more information about an AWS error. The specific problem I was hav...

In my last post I explained how to turn on AWS X-RAY to log details about Lambda functions. That feature is probably most useful when you ha...

I just realized there's a check box under Lambda configuration tab to enable x-ray. I was trying to enable it in other more complicated ...

Sometimes when running a script to create AWS Resources, an EC2 instance needs to be created and up and running before the script can contin...

I am noticing that AWS CloudFormation has difficulties deleting my particular Lambda function. If you are having this problem the trick is...

In a previous post I mentioned using a WatchGuard Firebox Cloud as an NTP server. Here's some sample code. Our Firebox CloudForma...

Here are some troubleshooting tips if you are getting this error when running a CloudFormation template to create NACLs: "ResourceSt...

If you are trying to download an SSH key pair from a bucket and getting an error trying to use the key pair (for example with Paramiko in a ...

WatchGuard Firebox Cloud offers subscriptions for various security services that help keep your network and instances secure. The full suit...

Here's a hint - create Network Interfaces (ENIs) separately in AWS CloudFormation so you can assign names via tags . That way when you...

When trying to concoct a UserData statement in an EC2 CloudFormation in YAML a !SUB function can be used to replace variables in the UserD...

I set my Firebox to only allow HTTPS traffic just so I could see what sites don't support SSL. At first I thought the Linksys site did n...

Although HTTPS API request traffic is encrypted, AWS states best practice for cross-region communication is to use a VPN . A VPN will prote...

I have been digging into network traffic to truly understand all the sources and destinations when using AWS services - specifically S3 and ...

I've been working with AWS S3 and S3 endpoints lately and digging into the the nitty gritty of how it works with the support team at AWS...

While trying to use an ImportValue the way specified on the web sites in the UserData section of a CloudFormation template I go this error: ...

Attempting to get a count of filtered items while looping through the original list in Python will yield the count of the original list or t...

When your instances run on AWS by default they will reach out to the Internet to an NTP service to update the clock that is used to create a...

Running AWS Minimal Linux instance got this error in the logs on start up: Starting cloud-init: Cloud-init v. 0.7.6 running 'modules:c...

I am trying to find a way to get a list of AMIs from a specific vendor in the AWS Marketplace. I thought I figured out a way to do this but ...

When running cloud formation templates certain templates require IAM permissions. You will need to add this to your IAM call: --capabilit...

IP Spoofing means that someone likely manually crafted a network packet and put in a bogus IP address as the source address. A network pac...

If you see this error trying while working on the command line of WatchGuard Firebox: WG#configure %Error: The Device Administrator admin ...

Public Safety Announcement: 0.0.0.0/0 should be used sparingly. It means any host on any IP address (or any IPv4 address to be precise) on...

When you set up your network it is very important to understand how route tables work and how they open up access to your network in uninten...