Redhat Repo on AWS

I encountered a lot of questions, mainly about the RED HAT REPO. The Cloud Engineer asked if AMAZON has a RedHat Repo and if they can patch their EC2 without going through the Internet. The simple answer is NO. RED HAT hosts its RHUI (Red Hat Update Infrastructure) in AWS, but you can only access its Repository via the Internet (through Internet Gateway—IGW). You can refer to: https://aws.amazon.com/partners/redhat/faqs/

How can a private EC2 be updated? Depends on your company policy. Over here, I have 2 options:

Option1, access through IGW via NAT Gateway



You can leverage NAT Gateway to access the Internet. Red Hat maintains its Repository in each AWS region. You can update your RED HAT EC2 to point to the following URL(https://access.redhat.com/articles/4720861)

Depending on your region, need to update the URL of the Red Hat report URL so your traffic can flow to it.

rhui3.<<Region>>.aws.ce.redhat.com

Option 2: 

Create a local Red Hat Repository, and all your EC2 will get their repo from the Local Repository. This option is common in a highly regulated environment because it provides full control of the patches and also does not allow all the EC2 to connect directly to the Red Hat repo via the Internet.

I am more of a control freak, so I will go for Option 2, knowing there will be a higher cost than Option 1 due to the nature of my customers, which are Governments and Banks. To reduce the price, you can shut down and power up before your maintenance windows to get the patches you need, hence removing the compute cost in your AWS environment (note that EBS volume will continue to charge you even if you shut down your EC2).






Comments

Post a Comment

Popular posts from this blog

SharePoint 2013: Distributed Cache Services

Image
What is Distributed Cache Services(DCS)? - It is a Platform Service, it runs at the Farm Level.   -- You can decide to run it on all servers in the farm or you can use it to run on a 1 or a couple of servers.   -- Suggest to have dedicate servers for DCS. - It provides in-memory cache for the entire farm. - It is based on Window Server App Fabric Distributed Caching. - It uses to cache Authentication Token(to avoid multiple authentication processes) and MySite Social Feeds. - DCS enable by default and allocate memory based on total memory on your server.   -- You should at least dedicate 50% of RAM or more just to the DCS service for overhead. What is it NOT : - It do not uses Window Azure Cache services and thus it cache on local server (no cloud). - It uses Window Server App Fabric version that comes together with the installer: You are not recommended download any version from Microsoft and upgrade it independently.  - You are not recommended go to the "C
Read more

SharePoint 2013 for Developer: Baby Journey (1)

Introduction to SharePoint 2013 for developer (1): Introduction a. SandBox is not the way to go for SharePoint 2013 or SharePoint Online 2013  SharePoint 2013 App Model is the replacement for SandBox but SandBox still exists in SPS2013 for backward compatibility purpose. SharePoint 2013 Farm\SandBox Solution :  -CAB File with a .wsp extension -Container of files distributed as a unit (no change from previous version) -Contains manifest with instruction for installer (no change from previous version) -Use powershell to deployed  Good News : - Nothing changes on Farm\SandBox solution: so 0 relearning - Bad News:  - Because nothing change, 0 enhancement to that as well.   File system in SharePoint 2013  - same path as SharePoint 2010 or MOSS(2007) -c:\program files\ common files\ microsoft shared\web server extension\ NOTE: it contains 2 folders (14 and 15) - 14 : Is for 2010 and 15 is for 2013 WHY? * SharePoint 2013 have 2 UI mode ** It is for Migration from
Read more

File Structure (Part 1)

Image
There are few ways for people who arrange their folder structures and which i do not wish to invent it. My approach is to arranging my folder structures based on Features not by types What is Type? Angular have alot of types. for example, we have Controller, Services, Directives which are the commonly used. We do not wish to arrange our file structure like this: This file approach is suitable only for SMALL application, for enterprise application, we have tons of Modules and alot of programmers are working on different modules. So before we jump to multiple modules, we should first arrange our file structures by modules. Let say build an intranet application which consists with Employees modules, eTimelog modules and eLeave modules. I would like also to create main folder to stores all my framework (layout, sidebar, navigationbar, footer-bar etc on my site. here is my simple file structure: - common: putting all my modal, services\repositories\utilities class to be
Read more