5 articles
Running everything in a single AWS account quickly becomes painful as teams, environments, and compliance needs grow. This post explains a practical multi-account landing zone using Organizations, OU structure, IAM Identity Center, shared networking, centralized logging, and security guardrails.
A practical guide to AWS IAM from an operational perspective. Covers IAM Users, Groups, Roles, Policies, least privilege, account separation, and CI/CD permission design.
A practical comparison of AWS Security Groups and Network ACLs. Covers stateful vs stateless behavior, instance-level vs subnet-level protection, typical production patterns, and common misunderstandings.
A practical guide to designing AWS VPCs. Covers public and private subnets, route tables, NAT Gateways, Internet Gateways, security groups, and the common mistakes teams make early on.
Comparing AWS EKS and Naver Cloud NKS on cost, performance, operational ease, and compliance. Which is better for Korean services?
2 articles
Real cost reduction strategies that work. Reserved Instances, Spot, storage optimization, and network cost control — item-by-item savings tactics.
From Cloudflare CDN setup to cache rules, Workers, and Page Rules. Real configuration values to maximize your website performance.
1 articles
A practical guide to EKS node group design. Covers how to separate system nodes, application nodes, and Spot worker nodes using labels, taints, and workload boundaries for better cost and stability.