You can now add tags, simple labels consisting of a user-defined key and an optional value, to your Amazon Virtual Private Cloud (VPC) gateway endpoints, interface endpoints (AWS PrivateLink), and endpoint services (AWS PrivateLink) directly while creating the resource. By tagging resources at the time of creation, you can eliminate the need to run custom tagging scripts after resource creation.
Los usuarios de iOS ahora pueden utilizar las características de Amazon Simple Queue Service, AWS Lambda, AWS Identity and Access Management, AWS CloudTrail y Amazon API Gateway en la aplicación móvil de la consola. Adicionalmente, hemos ampliado las capacidades de Amazon CloudWatch para incluir los registros.
You can use Amazon DynamoDB backup and restore to create on-demand and continuous backups of your DynamoDB tables and then restore from those backups. Starting today, you also can restore table backups as new tables in other AWS Regions.
Using dashboards in Cloud Monitoring makes it easy to track critical metrics across time. Dashboards can, for example, provide visualizations to help debug high latency in your application or track key metrics for your applications. Creating dashboards by hand in the Monitoring UI can be a time-consuming process, which may require many iterations. Once dashboards are created, you can save time by using them in multiple Workspaces within your organization.
Today, we’re pleased to announce that the Cloud Monitoring dashboards API is generally available from Google Cloud. The dashboards API lets you read the configuration for existing dashboards, create new dashboards, update existing dashboards and delete dashboards that you no longer use. These methods follow the REST and gRPC semantics and are consistent with other Google Cloud APIs.
A common use case for the dashboards API is to deploy a dashboard developed in one Monitoring Workspace into one or more additional Workspaces. For example, you may have a separate Workspace for your development, QA and production environments (learn more on selecting Workspace structures). In one of the environments, you may have developed a standard operational dashboard that you’d like to use across all your Workspaces. By first reading the dashboard configuration via the projects.dashboards.get method, you can save the dashboard configuration and then use the projects.dashboards.create method to create the same dashboard across the other environments.
How the dashboard API works
When creating a dashboard, you have to specify the layout and the widgets that go inside that layout. A dashboard must use one of three layout types: GridLayout, RowLayout or ColumnLayout.
GridLayout divides the available space into vertical columns of equal width and arranges a set of widgets using a row-first strategy.
RowLayout divides the available space into rows and arranges a set of widgets horizontally in each row.
ColumnLayout divides the available space into vertical columns and arranges a set of widgets vertically in each column.
The widgets available to place inside the layouts include an XyChart, Scorecard and Text object.
XyChart: displays data using X and Y axes. Charts created through the Google Cloud Console are instances of this widget.
Scorecard: displays the latest value of a metric, and how this value relates to one or more thresholds.
Text: displays textual content, either as raw text or a markdown string.
Here’s an example of the JSON dashboard configuration, which specifies a GridLayout with a single XyChart widget. You can see other examples in our sample dashboards and layouts documentation.
Dashboard configuration as a template
A simple approach to building a dashboard configuration is to first create a dashboard in the Cloud Monitoring console, then use the dashboards API projects.dashboards.get method to export the JSON configuration. Then, you can share that configuration as a template either via source control or however you normally share files with your colleagues.
You can try out the dashboard API in the Try this API section of the API documentation, and learn more about managing dashboards by reading the Managing Dashboards documentation. We’re working on features to make the API even more useful, including through the gcloud command line. Also, contributors are discussing and planning the Terraform module for the Monitoring Dashboard API in github.
A special thanks to our colleagues David Batelu, Technical Lead and Joy Wang, Product Manager, Cloud Monitoring, for their contributions to this post.
We launched Anthos to provide customers with a platform to deliver and manage applications across all types of environments and infrastructure—most commonly, hybrid and multi-cloud environments—leveraging containers and Kubernetes.
To date, we have seen an extremely enthusiastic response from customers who want to run key workloads on Anthos. Our partners are enabling customers to deliver solutions that leverage Anthos in new and exciting ways. This includes storage, which is a key consideration as organizations look to manage their data across hybrid or multi-cloud deployments in containerized environments.
Today, we’re excited to announce a new qualification for partner storage solutions:Anthos Ready Storage. This qualification recognizes partner solutions that have met a core set of requirements to run optimally with Anthos running on-premises, and helps organizations select storage solutions that are deployed with Anthos.
All Anthos Ready Storage partners have met multiple criteria, including:
Demonstrated core Kubernetes functionality including dynamic provisioning of volumes via open and portable Kubernetes-native storage APIs.
A proven ability to automatically manage storage across cluster scale-up and scale-down scenarios.
A simplified deployment experience following Kubernetes practices.
“Speed is the new scale in the world upset by digital transformation, the complex reality is that data and resources live anywhere and everywhere.” said Anthony Lye, senior vice president and general manager, Cloud Data Services at NetApp. “We’re excited to expand our support for customers on Anthos in the hybrid multicloud as a part of the Anthos Ready Storage initiative. Together, Google Cloud’s Anthos and NetApp Trident and Kubernetes-ready storage offer a proven solution that helps customers manage their data on public cloud, on premises and hybrid cloud environments.”
“Speed to market is a key differentiator as companies develop next generation, cloud-native applications. The emergence of Kubernetes is driven by that need for agility,” said Jay Snyder, SVP Global Alliances, Dell Technologies. “We’re pleased to participate in this program, as Dell EMC PowerMax and VxFlex are ideal infrastructure options when paired with Google Cloud Anthos to deploy Kubernetes in multi-cloud environments.”
“Businesses are moving rapidly to modernize their applications using container based architectures,” said Omer Asad, VP and GM Primary Storage & Data Services at HP Enterprise. “We’re excited to expand our work with Google Cloud to qualify our fully-managed, container-based storage solutions such as HPE Nimble Storage for the Anthos platform.”
We’re committed to meeting customers where they are, and providing them with the ability to run key workloads and applications in the environment best suited for their business.
At Google Cloud, we want you to be able to choose the best VMs for your workloads. Today, we’re excited to announce a new addition to our general purpose VMs: the N2D family, built atop 2nd Gen AMD EPYC™ Processors.
N2D VMs are a great option for both general-purpose workloads and workloads that require high memory bandwidth.
- General-purpose workloads that require a balance of compute and memory, like web applications and databases, can benefit from N2D’s performance, price, and features. N2D VMs are designed to provide you with the same features as N2 VMs including local SSD, custom machine types, and transparent maintenance through live migration, while features like large machine types with up to an industry-leading 224 vCPUs, the largest general purpose VM on Compute Engine. At the same time, N2D instances provide savings of up to 13% over comparable N-series instances, and up to a 39% performance improvement on the Coremark benchmark compared to comparable N1 instances1.
- HPC workloads such as crash analysis, financial modeling, rendering and reservoir analysis, will benefit from the N2D machine types configured with 128 and 224 vCPUs, which offer up to 70% higher platform memory bandwidth than comparable N1 instances. This, combined with higher core counts, provides over a 100% performance improvement on a variety of representative benchmarks, including Gromacs and NAMD, compared to n1-standard-96 vCPUs.
N2D machine type details
N2D VMs are now available in beta from us-central1, asia-southeast1, and europe-west4, with more regions on the way! You can launch them on-demand or as preemptible VMs.When you sign up for committed use discounts, you can save up to 55% for three-year commitments versus on-demand pricing. Long-running N2D VMs can take advantage of sustained use discounts, and automatically save up to 20%. You can also configure N2D VMs as predefined machine types with vCPU to memory ratios of 1:1, 1:4, and 1:8, up to 224 vCPUs. You can also create custom machine types with N2Ds, helping you meet the needs of diverse workloads.
It’s easy to get started with N2D VMs—simply visit the Google Cloud Console and launch one! To learn more about N2D VMs or other Compute Engine VM options, check out our machine types and our pricing pages.
1. N2D-standard-32 performed 39% better than N1-standard-32 when evaluated using Coremark.
Amazon RDS for SQL Server ahora admite unir un dominio entre cuentas de AWS y las VPC mediante Managed Microsoft AD
A partir de hoy, Amazon RDS for SQL Server admite la unión de las instancias de las bases de datos a un directorio de AWS Managed Microsoft AD que resida en una VPC o cuenta de AWS diferente. Esto hace que la implementación de las cargas de trabajo de base de datos compatibles con el directorio sea fácil y rentable al reducir la configuración manual para unir las instancias de base de datos al dominio, así como la necesidad de implementar directorios en cada cuenta y VPC. Las instancias de base de datos de Amazon RDS for SQL Server ahora pueden unirse perfectamente a un directorio de cualquier cuenta de AWS y cualquier Amazon VPC dentro de una región de AWS.
AWS Security Hub lanza comprobaciones de seguridad consistentes con las normas de seguridad de datos de la industria de las tarjetas de crédito
AWS Security Hub ahora es compatible con las comprobaciones de seguridad automatizadas consistentes con los requisitos de la versión 3.2.1 de las normas de seguridad de datos (DSS) de la industria de las tarjetas de crédito (PCI). La norma DSS para PCI de Security Hub incluye 32 reglas automatizadas diseñadas para apoyar las actividades de seguridad relacionadas con las DSS de la PCI en curso mediante la realización de comprobaciones continuas de 32 requisitos de las DSS de la PCI en 14 servicios de AWS. Además de estas 32 comprobaciones de seguridad, Security Hub cuenta con 43 comprobaciones de seguridad automatizadas existentes para los indicadores de referencia del Centro de seguridad en Internet (CIS) para AWS. La documentación de Security Hub ofrece detalles acerca de cómo las comprobaciones de las DSS de la PCI se relacionan con requisitos específicos de las DSS de la PCI.
Amazon Rekognition now detects text in videos, and lets you filter results by region, bounding box size and confidence score
Amazon Rekognition is a deep learning-based image and video analysis service that can identify objects, people, text, scenes, as well as support content moderation by detecting unsafe content. Starting today, you can detect text in videos and get back the detection confidence, location bounding box as well as the timestamp for each text detection. In addition, text detection in both images and videos now provides convenient options to filter out words by regions of interest (ROIs), word bounding box size, and word confidence score.
AWS Firewall Manager now supports AWS CloudFormation, allowing customers to manage all Firewall Manager policy types and resources with CloudFormation stack templates. AWS Firewall Manager is a security management service which allows you to centrally configure and manage firewall rules across your accounts and applications in AWS Organization. With Firewall Manager, you can manage AWS WAF, AWS Shield Advanced, or VPC security groups across your entire AWS Organization. Firewall Manager ensures that all security rules are consistently enforced, even as new accounts or applications are created.
Hoy anunciamos la disponibilidad general de Multi-Attach en los volúmenes de Amazon Elastic Block Store (Amazon EBS). Ahora puede habilitar Multi-Attach en los volúmenes de IOPS provisionadas io1 de Amazon EBS a fin de permitir que un volumen único se adjunte simultáneamente a un máximo de dieciséis instancias de Amazon Elastic Compute Cloud (Amazon EC2) basadas en el sistema Nitro de AWS dentro de la misma zona de disponibilidad. Cada instancia adjunta tiene permiso completo de lectura y escritura del volumen compartido. Para las aplicaciones que administran la consistencia de almacenamiento desde múltiples escritores, Multi-Attach facilita alcanzar mayor disponibilidad de las aplicaciones.
iOS users can now use Amazon API Gateway, AWS CloudTrail, AWS Identity and Access Management, AWS Lambda, and Amazon Simple Queue Service features on the Console mobile app. In addition, we have expanded Amazon CloudWatch capabilities to include logs.