Zhimin WenAWS Network ACL and Ephemeral PortsTroubleshooting with VPC Flowlog·4 min read·Apr 23, 2024----
Zhimin WenDual-home ENI routings for RHELI have a RHEL9 EC2 instance with dual-home ENI cards. One interface is located in the data subnet which suppose to handle data related…·3 min read·Apr 17, 2024----
Zhimin WenPrivate Network Only VPC with Transit Gateway and Egress VPCTips and Traps·9 min read·Apr 7, 2024----
Zhimin WenCreate a Reverse Proxy with GolangTo let IBM API connect work properly, I need to supply the client ID in the request header based the user name or the client certificate…·3 min read·Mar 31, 2024----
Zhimin WenAssigning Client ID Dynamically in API ConnectIBM API Connect works based on the Client ID for its enforcement rules. Only when the caller being identified with its client ID, the…·5 min read·Mar 30, 2024----
Zhimin WenWhy Protecting DNS server through AWS DNS Firewall May Not Be a Good Idea in PractiseI am having an outbound DNS resolver to perform conditional DNS forwarding to an internal DNS server. To protect the DNS server, one idea…·5 min read·Mar 16, 2024----
Zhimin WeninITNEXTAutomate Browsing Tasks with GolangThe use of ChromeDP — Chrome DevTools Protocol·4 min read·Mar 14, 2024----
Zhimin WenROSA Log Forwarding to CloudWatch in a Private Subnet only VPCLet’s configure the Redhat Openshift on AWS (ROSA) log forwarding to AWS CloudWatch with the AWS Security Token Service (STS).·7 min read·Feb 29, 2024----
Zhimin WenUsing IAM Roles with STS in ROSA Container AppSimilar as way of using IAM roles in an EC2 instance, we can get the container application in ROSA the IAM roles to access the AWS…·5 min read·Feb 27, 2024----