Jens-Uwe Walther
Jens-Uwe Walther
### What were you trying to accomplish? Create an EKS cluster with IRSA setup for EKS managed add-on "vpc-cni" without relying on node IAM permission: [AmazonEKS_CNI_Policy](https://us-east-1.console.aws.amazon.com/iam/home#/policies/arn:aws:iam::aws:policy/AmazonEKS_CNI_Policy) ### What happened? Sometimes...
### What feature/behavior/change do you want? I propose to enhance the recently introduced tag propagation feature for ASG "propagateASGTags: true" to allow tag propagation to launched EC2 instances as well...
## Is your request related to a new offering from AWS? Yes, see: https://aws.amazon.com/blogs/aws/new-attribute-based-instance-type-selection-for-ec2-auto-scaling-and-ec2-fleet/ https://docs.aws.amazon.com/autoscaling/ec2/userguide/create-asg-instance-type-requirements.html The feature is not yet implemented in the Terraform AWS provider, see corresponding issue: https://github.com/hashicorp/terraform-provider-aws/issues/21566...
**Which component are you using?**: EKS 1.21 and correspond CAS Currently AWS and CAS documentation recommend using Availability Zone bounded Auto Scaling groups for usage of persistent storage in form...
## Description trivy throws errors when running trivy image against local container image when using containerd runtime. This should work with Trivy version => 0.29.. See closed issue [https://github.com/aquasecurity/trivy/issues/851](url) ##...
**Which component are you using?**: Cluster Autoscaler **Is your feature request designed to solve a problem? If so describe the problem this feature should solve.**: AWS EC2 has a rich...
**What happened**: I am running NGINX Ingress Controller (for demo purposes with just one pod) in an AWS environment behind an NLB with target group in IP mode. When using...
Allow setting of EC2 Security group connection tracking configurable idle timeouts in AWS VPC CNI
**What would you like to be added**: AWS just released [EC2 Security group connection tracking adds support for configurable idle timeouts](https://aws.amazon.com/about-aws/whats-new/2023/11/ec2-security-connection-tracking-idle-timeouts/). Modifying these parameters requires EC2 API calls. It would...
**What would you like to be enhanced**: 1. AWS docs “[What is Traffic Mirroring?](https://docs.aws.amazon.com/vpc/latest/mirroring/what-is-traffic-mirroring.html)” states that only ENI of type “interface” are supported. 2. When Security Groups for Pods are...
I propose to add additional resources to Helm chart to be able to mimic naming conventions of Amazon EKS CoreDNS implementation to quickly move between self-managed CoreDNS, Helm managed CoreDNS...