The 15 Biggest Mistakes Made with Amazon Web Services

Well, well, well… While we’re busy building a great startup, the nice folks at Newvem wrote a blog post on the 10 biggest mistakes” made with Amazon Web Services.

We think it’s a good list but somehow seems a little too “simple”.

This is OUR list instead.

The 15 biggest mistakes made with Amazon Web Services.

1) Wasting money by running resources that you don’t need.

2) You think you’re not wasting money, but actually, some resources are running IN ANOTHER REGION. Unfortunately, AWS doesn’t allow to see how much you’re spending globally. If like us, you use multiple regions, you need to check every region.

3) You are not optimizing the type of EC2 instances you’re using. A medium is double the cost, but five times more CPU power, for instance (pun intended).

4) You are not using subaccounts or IAM. This can potentially be your biggest security mistake. We use a master account to create subaccounts, and then use the subaccounts to do the stuff. Plus, we limit permissions with IAM, especially to those credentials that we store on EC2 directly.

5) You are running MySQL on Amazon EC2. Come on, Amazon RDS rocks (it’s a MySQL on EC2, but it’s managed by AWS for a small extra cost). Use it, and forget about your DBA nightmares.

6) If you are using Amazon S3 to do backups, you might consider Reduced Redundancy (it’s about 2/3 the original cost of Amazon S3).

7) Always use server-side encryption on Amazon S3. You never know.

8) If you use autoscaling, make sure you don’t do mistakes, otherwise, things can go really bad, either your site is down, or you have tens of machines running and don’t know how to stop them.

9) One of the biggest mistakes is thinking that you can start with your own colo, and switch to AWS later. You won’t have the time, and it will hurt. Use AWS now.

10) If you don’t know about Reserved Instances and Spot Instances, it’s time to know. You can save significant amounts of money… And rest assured that your fierce competition knows about it.

11) The AWS folks regularly host online webinars. It’s free, and it’s a great way to learn about it.

12) They also have events everywhere in the world. We recently attended “Running a lean startup with AWS” in Italy, hosted by our friends at H-Farm.

13) Well, thirteen is always a bad, unlucky number. Let’s use it for the worst mistakes of all. Not using the Cloud (AWS, or any other Cloud alternative such as Rackspace, Azure) in the first place! Wake up, it’s the year 2012 and it’s time to learn Cloud Computing!

14) Underestimating the importance of security, which also means forgetting about the existence of Amazon Virtual Private Cloud, or VPC. For most companies, that’s the only way you could securely use a public Cloud.

15) Messing up with users. IAM is a good tool, but it’s not easy to manage all the details related to permissions, teams, etc. Sometimes it happens that the wrong guy has the permissions to do everything… And things go bad. Make sure that you set permissions in a very conservative way. Especially if your team is bigger than 5-6 people.
And since you made it to here, a “bonus mistake” for you:

16) Not knowing about ElastiCache (an automated cache system between your apps and your DB), Route53 (DNS), and even more importantly not using Amazon CloudWatch and custom metrics. Metrics are the single most important thing to help you avoid disaster, or at least prevent the worst outcomes.

Well, what do you think of this list? Does it make sense?

Stefano Bellasio

Written by

Stefano Bellasio

Stefano's a computer engineering guy that loves building products. He's the CEO and co-founder of CloudAcademy.com. All his experience is in the web hosting and cloud computing industry where he started other companies before. He loves talking with all readers of Cloud Academy blog, so feel free to email him at stefano@cloudacademy.com!


Related Posts

Albert Qian
Albert Qian
— November 13, 2019

Advantages and Disadvantages of Microservices Architecture

What are microservices? Let's start our discussion by setting a foundation of what microservices are. Microservices are a way of breaking large software projects into loosely coupled modules, which communicate with each other through simple Application Programming Interfaces (APIs). ...

Read more
  • AWS
  • Docker
  • Kubernetes
  • Microservices
Nisar Ahmad
Nisar Ahmad
— November 12, 2019

Kubernetes Services: AWS vs. Azure vs. Google Cloud

Kubernetes is a popular open-source container orchestration platform that allows us to deploy and manage multi-container applications at scale. Businesses are rapidly adopting this revolutionary technology to modernize their applications. Cloud service providers — such as Amazon Web Ser...

Read more
  • AWS
  • Azure
  • Google Cloud
  • Kubernetes
Avatar
Stuart Scott
— October 31, 2019

AWS Internet of Things (IoT): The 3 Services You Need to Know

The Internet of Things (IoT) embeds technology into any physical thing to enable never-before-seen levels of connectivity. IoT is revolutionizing industries and creating many new market opportunities. Cloud services play an important role in enabling deployment of IoT solutions that min...

Read more
  • AWS
  • AWS IoT Events
  • AWS IoT SiteWise
  • AWS IoT Things Graph
  • IoT
Avatar
Cloud Academy Team
— October 23, 2019

Which Certifications Should I Get?

As we mentioned in an earlier post, the old AWS slogan, “Cloud is the new normal” is indeed a reality today. Really, cloud has been the new normal for a while now and getting credentials has become an increasingly effective way to quickly showcase your abilities to recruiters and compan...

Read more
  • AWS
  • Azure
  • Certifications
  • Cloud Computing
  • Google Cloud Platform
Valery Calderón Briz
Valery Calderón Briz
— October 22, 2019

How to Go Serverless Like a Pro

So, no servers? Yeah, I checked and there are definitely no servers. Well...the cloud service providers do need servers to host and run the code, but we don’t have to worry about it. Which operating system to use, how and when to run the instances, the scalability, and all the arch...

Read more
  • AWS
  • Lambda
  • Serverless
Avatar
Stuart Scott
— October 16, 2019

AWS Security: Bastion Hosts, NAT instances and VPC Peering

Effective security requires close control over your data and resources. Bastion hosts, NAT instances, and VPC peering can help you secure your AWS infrastructure. Welcome to part four of my AWS Security overview. In part three, we looked at network security at the subnet level. This ti...

Read more
  • AWS
Avatar
Sudhi Seshachala
— October 9, 2019

Top 13 Amazon Virtual Private Cloud (VPC) Best Practices

Amazon Virtual Private Cloud (VPC) brings a host of advantages to the table, including static private IP addresses, Elastic Network Interfaces, secure bastion host setup, DHCP options, Advanced Network Access Control, predictable internal IP ranges, VPN connectivity, movement of interna...

Read more
  • AWS
  • best practices
  • VPC
Avatar
Stuart Scott
— October 2, 2019

Big Changes to the AWS Certification Exams

With AWS re:Invent 2019 just around the corner, we can expect some early announcements to trickle through with upcoming features and services. However, AWS has just announced some big changes to their certification exams. So what’s changing and what’s new? There is a brand NEW ...

Read more
  • AWS
  • Certifications
Alisha Reyes
Alisha Reyes
— October 1, 2019

New on Cloud Academy: ITIL® 4, Microsoft 365 Tenant, Jenkins, TOGAF® 9.1, and more

At Cloud Academy, we're always striving to make improvements to our training platform. Based on your feedback, we released some new features to help make it easier for you to continue studying. These new features allow you to: Remove content from “Continue Studying” section Disc...

Read more
  • AWS
  • Azure
  • Google Cloud Platform
  • ITIL® 4
  • Jenkins
  • Microsoft 365 Tenant
  • New content
  • Product Feature
  • Python programming
  • TOGAF® 9.1
Avatar
Stuart Scott
— September 27, 2019

AWS Security Groups: Instance Level Security

Instance security requires that you fully understand AWS security groups, along with patching responsibility, key pairs, and various tenancy options. As a precursor to this post, you should have a thorough understanding of the AWS Shared Responsibility Model before moving onto discussi...

Read more
  • AWS
  • instance security
  • Security
  • security groups
Avatar
Jeremy Cook
— September 17, 2019

Cloud Migration Risks & Benefits

If you’re like most businesses, you already have at least one workload running in the cloud. However, that doesn’t mean that cloud migration is right for everyone. While cloud environments are generally scalable, reliable, and highly available, those won’t be the only considerations dri...

Read more
  • AWS
  • Azure
  • Cloud Migration
Joe Nemer
Joe Nemer
— September 12, 2019

Real-Time Application Monitoring with Amazon Kinesis

Amazon Kinesis is a real-time data streaming service that makes it easy to collect, process, and analyze data so you can get quick insights and react as fast as possible to new information.  With Amazon Kinesis you can ingest real-time data such as application logs, website clickstre...

Read more
  • amazon kinesis
  • AWS
  • Stream Analytics
  • Streaming data