This week's roundup of all the cloud news.
Here's a round up of all things AWS, Azure and Google Cloud Platform for the week ending Friday 5th February 2021.
AWS Graviton2 M6g, C6g, and R6g instances now available in Asia Pacific (Seoul, Hong Kong) regions, and M6gd, C6gd, and R6gd instances now available in EU (Frankfurt), and Asia Pacific (Singapore, Sydney) regionsStarting this week, Amazon EC2 M6g, C6g, and R6g instances are available in Asia Pacific (Seoul), and Asia Pacific (Hong Kong) regions. Additionally, Amazon EC2 M6gd, C6gd and R6gd instances with local NVMe-based SSD storage are now available in EU (Frankfurt), Asia Pacific (Singapore), and Asia Pacific (Sydney) regions.
Introducing Amazon EC2 M5n, M5dn, R5n, and R5dn Bare Metal Instances
Starting this week, Amazon EC2 M5n, M5dn, R5n, and R5dn bare metal instances that can utilize up to 100 Gbps of network bandwidth, and Elastic Fabric Adapter (EFA) for HPC/ML workloads. are generally available. Amazon EC2 bare metal instances provide your applications with direct access to the Intel® Xeon® Scalable processor and memory resources of the underlying server. These instances are ideal for workloads that require access to the hardware feature set (such as Intel® VT-x), or for applications that need to run in non-virtualized environments for licensing or support requirements.
Announcing AWS App Mesh Controller for Kubernetes version 1.3.0 with mTLS support
AWS App Mesh Controller for Kubernetes v1.3.0 is now available and includes support for mTLS (mutual Transport Layer Security) authentication on App Mesh. The AWS App Mesh Controller for Kubernetes provides a way to configure and manage AWS App Mesh using Kubernetes directly. AWS App Mesh is a service mesh that provides application-level networking to standardize how your services communicate, giving you end-to-end visibility and allowing high availability for your applications.
Introducing Amazon EBS Local Snapshots on Outposts
Starting today, with Amazon EBS Local Snapshots on Outposts you can store snapshots of your Amazon EBS volumes locally on Amazon S3 on Outposts to meet your data residency and local data processing needs. EBS Local Snapshots on Outposts require your Outpost to be provisioned with S3 on Outposts. You can also continue to back up your EBS volumes to snapshots stored on S3 in the AWS Region. Snapshots are point-in-time copies of your data which can be used to enable disaster recovery and improve backup compliance.
AWS App Mesh now supports mutual TLS authentication
AWS App Mesh now supports mutual TLS (Transport Layer Security) authentication that offers two-way peer authentication. AWS App Mesh is a service mesh that provides application-level networking to standardize how your services communicate, giving you end-to-end visibility and options to tune for high-availability of your applications.
AWS Copilot launches v1.2 providing more deployment capabilities
Today, AWS Copilot launched version 1.2 which now provides more deployment capabilities for applications hosted on Amazon Elastic Container Service (Amazon ECS).
AWS Amplify Hosting adds monitoring capabilities with Amazon CloudWatch integration
AWS Amplify Hosting now allows users to monitor metrics for Amplify hosted applications in near real-time. Amplify provides a dashboard with metrics for Incoming requests, Bytes downloaded, Bytes uploaded, 4XX/5XX errors, and latency. You can create CloudWatch alarms in the Amplify console that send notiﬁcations when speciﬁc criteria are met. An alarm watches a single metric and sends an Amazon Simple Notiﬁcation Service notiﬁcation when the metric breaches the threshold for a speciﬁed number of evaluation periods.
AWS Backup Events and Metrics now available in Amazon CloudWatch
AWS Backup adds the ability to monitor your AWS Backup metrics and events via Amazon CloudWatch. AWS Backup enables you to centralize and automate data protection across AWS services and accounts, helping you support your regulatory compliance obligations and meet business continuity goals.
AWS Lambda now supports Node.js 14
Amazon Virtual Private Cloud (VPC) customers can now customize reverse DNS for their Elastic IP addresses
Amazon Virtual Private Cloud (VPC) makes it easier to setup reverse Domain Name System (DNS) lookup for your Elastic IP addresses and improves your email deliverability. A reverse DNS lookup for an IP address returns its domain name and is commonly used by email services to filter out spams. This release improves your email deliverability from EC2 by enabling you to set reverse DNS lookup with just a few clicks and meet a key spam filter requirement.
Amazon S3 now supports AWS PrivateLink
Amazon S3 now supports AWS PrivateLink, providing direct access to S3 via a private endpoint within your virtual private network. Simplify your network architecture by connecting to S3 from on-premises or in AWS using private IP addresses in your Virtual Private Cloud (VPC), eliminating the need to use public IPs, configure firewall rules, or configure an Internet Gateway to access S3 from on-premises.
Amazon Macie announces a slew of new capabilities including support for cross-account sensitive data discovery, scanning by Amazon S3 object prefix, improved pre-scan cost estimation, and added location detail in findings
We are excited to announce a series of new capabilities that have been added to Amazon Macie to make it easier to configure, scope, and run sensitive data discovery in AWS, including support for scanning jobs that cover Amazon S3 buckets residing across multiple accounts, scoping of scans by object prefix, better cost estimation for visibility of spend before jobs are submitted, and sensitive data location information added to Macie findings.
Insights is now generally available for AWS X-Ray
Today, AWS X-Ray launches Insights , which helps customers proactively discover issues in applications by using anomaly detection. X-Ray Insights enables developers and DevOps engineers to detect anomalies in fault rate for an application and then notify their teams on these issues and why it occurred.
Amazon GuardDuty introduces machine learning domain reputation model to expand threat detection and improve accuracy
Amazon GuardDuty introduces a new machine learning domain reputation model that can categorize previously unseen domains as highly likely to be malicious or benign based on their behavioral characteristics. GuardDuty uses this new capability to alert customers when an EC2 instance in their AWS environment is communicating with a domain identified as malicious and to improve the accuracy of existing domain based threat detections.
Amazon Elastic File System triples read throughput
Amazon Elastic File System (Amazon EFS) now allows you to drive up to 3x higher read throughput on your file system. For example, bursting mode file systems now provide 300MB/s of bursting read throughput, or 300MB/s per TiB of data stored in Amazon EFS standard, whichever is higher. If you have configured 1 GB/s of provisioned throughput, your application can now drive up to 3 GB/s for read operations (and continue to drive 1GB/s for write operations) without any application or configuration changes.
Amazon Managed Blockchain now supports resource tagging and tag-based access control
Amazon Managed Blockchain now supports assigning tags to networks, members, proposals, invitations, and nodes. Tags can be assigned to existing resources and to new resources at the time of creation. You can also define fine-grained access controls using tags and AWS Identity and Access Management (IAM) policies to control access to resources and actions. Tags are key-value pairs that you can assign to resources to easily organize and search for resources, automate resource activities, create cost allocation reports, and control access to resources.
AWS Glue DataBrew is now available in six additional AWS Regions
AWS Glue DataBrew, a visual data preparation tool that makes it easy for data analysts and data scientists to clean and normalize data for analytics and machine learning, is now available in the following six additional AWS Regions:
- US West (N. California)
- Asia Pacific (Singapore)
- Asia Pacific (Mumbai)
- EU (Stockholm)
- EU (London)
- EU (Paris)
Amazon Aurora supports PostgreSQL 12
Amazon Aurora with PostgreSQL compatibility now supports major version 12. PostgreSQL 12 includes better index management, improved partitioning capabilities, and the ability to execute JSON path queries per SQL/JSON specifications. It also enables nondeterministic collations that support case-insensitive and accent-insensitive comparisons for ICU provided collations, most common-value statistics for improved query plans, creation of generated columns that compute values with an expression, and many additional features.
Amazon Elasticsearch Service extends encryption at rest and node-to-node encryption to existing domains
Amazon Elasticsearch Service now supports encryption of data at rest and node-to-node encryption on existing domains, enabling organizations hosting sensitive workloads to meet stringent security and compliance requirements.
Amazon RDS for SQL Server now supports tempdb on local instance store with R5d and M5d instance types
Amazon Redshift doubles managed storage quota to 128 TB per node for RA3.16XL and RA3.4XL node-types
Amazon Redshift, the most widely used cloud data warehouse, doubles the managed storage capacity for RA3.16XL and RA3.4XL node-types to 128 TB per node. If your data is growing rapidly, doubling the managed storage quota will help you analyze even more data without increasing your compute cost or changing your workload.
Google Cloud Releases and Updates
- Paypal added as payment method for GCP billing accounts.
- App Engine Java SDK upgraded to 1.9.85.
- Cloud Functions adds security level feature for the functions URL
- Anthos GKE on AWS version 1.6.1-gke2 is now available
- Cloud Data Fusion can now replicate data continuously in real time
- Cloud Balancing IAP is now supporting Internal http(s) load balancing
- Artifact Registry on demand scanning is available in preview
- Compute Engine, you can now use schedule based autoscaling from the console
- Compute Engine, you can now create VMs for HPC workloads using the HPC VM Image
- Config connector 1.37.0 is now available
- GCP Eventarc is now GA
- Workflows is GA. Orchestrate and automate GCP and http based API services with serverless workflows.
- DataProc 2.0 image is generally available and becomes default on Feb 22nd
- Cloud Data Fusion 6.3.0 is now available
Microsoft Azure Releases And Updates
- Azure IoT Central added new API features, new data export features and docs.
- Azure Data Lake storage supports append blobs
- Azure Event Grid is now in public preview for Azure Cache for Redis
- New Azure Monitor agent is available on latest Linux distros
- Stop/Start functionality for Azure DB for MySQL is now GA
- Security - Secure score for management groups is now available in preview
- Security - Exempt entire recommendations from your secure score for subscriptions and management groups (preview)
- Security - Users can now request tenant-wide visibility from their global administrator (preview)
- Security - 35 preview recommendations added to increase coverage of Azure Security Benchmark (preview)
- Security - Export weekly snapshots of secure score and regulatory compliance data with continuous export (preview)
- Python 3.9 in Azure functions is now in public preview
Azure Virtual Events
Microsoft have a full schedule of Virtual Events
A full list including session times and details are here : https://azure.microsoft.com/en-us/community/events/
AWS events are pretty fluid at the moment, with most in-person events being cancelled or postponed. There are a number that have been taken online and full details can be found here: https://aws.amazon.com/events/
Thanks for reading again this week, we hope you found something useful.
hava.io allows users to visualise their AWS, GCP and Azure cloud environments in interactive diagram form including unique infrastructure, security and container views. hava.io continuously polls your cloud configuration and logs changes in a version history for later inspection which helps with issue resolution and provides history of all configs for audit and compliance purposes.
If you haven't opened a free hava.io account to see what the GCP, Azure and AWS automated diagram generator can do for your workflow, security and compliance needs, you can below - if you have questions, please get in touch.
You can reach us on chat, email email@example.com to book a callback or demo.