📝Daily

Day 16

Tony Duong

Tony Duong

Mar 28, 2026 · 3 min

Also available in:🇫🇷🇯🇵
#engineering#aws#s3#storage#cloudfront#cdn#global-accelerator#rds#databases#cloudwatch#eventbridge#cloudtrail#aws-config#service-quotas#health#organizations#control-tower#service-catalog#budgets#cost-explorer#logs#alarms#synthetics#monitoring#cloudops#certification#gcp#vertex-ai#ruby#prompts#llm#shirimono#i18n#french#translation
Day 16

Today, I:

  • watched section 10 on amazon s3 (introduction) and wrote this Amazon S3 Introduction: Buckets, Objects, Security, and Versioning note for my aws cloudops engineer associate prep
  • extended that note with versioning propagation on first enable, crr/srr replication, batch replication for existing objects, delete marker vs permanent-delete behavior, no chaining, and cross-account owner override (same post)
  • continued aws certification prep by watching the full cloudfront section (plus global accelerator in that track) and wrote AWS CloudFront and Global Accelerator: CDN, Caching, Origins, and Edge Networking
  • moved on to the aws databases section and built out AWS RDS, Aurora, RDS Proxy, and ElastiCache over several study blocks
  • expanded the same cloudwatch post with anomaly detection, cross-region dashboards, logs and metric filters, insights vs live tail, export vs subscription filters, data protection, alarms and composite alarms, ec2 recovery, synthetics canaries in vpc, and container insights in AWS Observability and Governance: CloudWatch, EventBridge, CloudTrail, and Config
  • continued that note with internet monitor, network synthetic monitor for direct connect and vpn paths, and eventbridge (default/partner/custom buses, rules and schedules, archive and replay, schema registry, cross-account bus policies, content filtering, input transformers, pipes, and api destinations) (same post)
  • added eventbridge pipes and enrichment, retries and sqs dlq, ssm automation targets, two-way cross-account permissions, service quotas alarms vs trusted advisor, and cloudtrail trails management vs data events and insights (same post)
  • added eventbridge rules on cloudtrail api names, cloudtrail log digest and sha-256 integrity, org trails and member restrictions, aws config recorder and rules, aggregators vs stacksets for rule rollout, ssm remediation examples, and a cloudwatch vs cloudtrail vs config comparison (same post)
  • moved into aws account management and wrote AWS Account Management: Health Dashboard, Organizations, SCPs, and Control Tower for service vs account vs org health, health to eventbridge automations, organizations ou invites consolidated billing ri sharing scps and exam-style denies, principalorgid and tag policies, and control tower landing zones guardrails and identity center
  • added AWS Service Catalog, Billing Alarms, Cost Explorer, Budgets, and Cost Tools for service catalog portfolios sharing and tagoptions, us-east-1 billing metrics and sns alarms, cost explorer forecasts and savings plan hints, budgets templates filters sns chatbot actions on ec2 rds iam and scp, cost allocation tags and cur to s3 athena, usage reports csv, compute optimizer supported resources and 30 hour ec2 caveat, and billing conductor showback
  • read Gen AI evaluation service overview on vertex ai (rubrics, datasets, console vs sdk workflow) to learn how to evaluate prompts, shipped a tiny ruby harness tonystrawberry/ruby-vertex-eval that mirrors yaml-driven generate-then-evaluateinstances against managed metrics, and wrote Vertex AI Gen AI evaluation in the Google Cloud console with a screenshot of general quality scoring on gemini-1.5-flash for a recipe-to-shopping-list dataset
  • started translating shirimono resources into french so in-app copy and learning content stay aligned now that the app ships a french locale
Tony Duong

By Tony Duong

A digital diary. Thoughts, experiences, and reflections.

GitHubEmail