📝Daily
Day 17
Tony Duong
Mar 29, 2026 · 2 min
#engineering#aws#disaster-recovery#cloudops#certification#security#kms#waf#compliance#iam#sts#federation#route-53#dns
Today, I:
- continued aws certification prep in the disaster recovery section and wrote AWS DataSync and AWS Backup: Disaster Recovery Notes for the cloudops collection
- continued the security and compliance track (perimeter, detective controls, logging, governance, encryption, tls, secrets) and wrote AWS Security, Compliance, Encryption, and Secrets for CloudOps for the same collection
- studied identity in aws (permission boundaries vs scps, credentials report, access advisor, iam access analyzer, sts and cross-account assume role, saml and custom broker and cognito federation, iam policy simulator) and wrote AWS IAM Identity: Permission Boundaries, Federation, STS, and Access Tools for the cloudops collection
- finished the day with route 53 (dns resolution and terminology, hosted zones, a/aaaa/cname/ns, ttl and caching, mx and txt for email, alias vs cname and zone apex) and wrote Amazon Route 53: DNS Fundamentals, Records, TTL, and Alias vs CNAME for the cloudops collection
- continued route 53 with routing policies (simple, weighted, latency, failover, geolocation, geoproximity, multi-value, ip-based), health checks and traffic flow, and wrote Amazon Route 53: Routing Policies, Health Checks, and Traffic Flow for the cloudops collection
- closed route 53 with multi-value vs simple, registrar vs dns delegation, s3 website aliases, resolver hybrid dns, query logging, dns firewall, arc, and profiles, and wrote Amazon Route 53: Registrar Delegation, Resolver, Logging, and Governance for the cloudops collection
