Skip to content

Instantly share code, notes, and snippets.

@muath-ye

muath-ye/AWS documentation guide.md

Created December 31, 2024 09:53
Show Gist options
  • Save muath-ye/8944307cf093d64c2a31768c0d6ccb52 to your computer and use it in GitHub Desktop.
Save muath-ye/8944307cf093d64c2a31768c0d6ccb52 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
AWS documentation guide.md

A structured approach to document AWS infrastructure effectively:

1. High-Level Overview

  • Purpose: Start with a high-level summary of your infrastructure, including objectives, regions, and primary services used.
  • Details to include:
    • Regions and Availability Zones (AZs) used.
    • Core services (EC2, S3, RDS, Lambda, etc.).
    • Key integrations (e.g., on-premise connections, third-party tools).

2. Architecture Diagram

  • Use tools like Lucidchart, Draw.io, AWS Architecture Icons, or Visio to create a visual representation of your infrastructure.
  • Include:
    • VPCs, subnets, route tables, and internet gateways.
    • Compute resources like EC2 instances, ECS clusters, or Lambda functions.
    • Storage like S3 buckets, EBS volumes, and file systems.
    • Databases like RDS, DynamoDB, or ElastiCache.
    • Security groups, NACLs, and IAM roles.

3. Service Documentation

  • Create detailed sections for each AWS service you use. Include:
    • EC2 Instances:
      • Instance types, AMI IDs, and key pairs.
      • Security groups and IAM roles.
      • Elastic IPs (EIPs) and auto-scaling configurations.
    • S3:
      • Bucket names, policies, lifecycle rules, and replication settings.
    • RDS/Database:
      • Instance types, databases hosted, backup configurations, and security groups.
    • Networking (VPC):
      • CIDR blocks, subnets, NAT gateways, VPN connections, and route tables.

4. Configuration Details

  • Provide JSON or YAML excerpts of key configurations:
    • CloudFormation templates or Terraform scripts (if applicable).
    • IAM policies and roles.
    • Security group and NACL rules.

5. Monitoring and Logging

  • Document how you monitor and log activities:
    • Tools like CloudWatch, CloudTrail, or third-party solutions.
    • Alarms, dashboards, and metrics being tracked.

6. Access and Security

  • IAM Roles and Policies:
    • Define permissions and user roles.
  • Key Management:
    • AWS KMS keys, encryption settings.
  • Secrets Management:
    • Secrets stored in AWS Secrets Manager or Parameter Store.

7. Automation and Deployment

  • Include CI/CD pipelines (e.g., CodePipeline, Jenkins).
  • Automation scripts (e.g., Lambda functions, Step Functions).

8. Backup and Recovery

  • Backup strategies and frequencies (e.g., snapshots, S3 backups).
  • Disaster recovery plans and Recovery Time Objectives (RTOs) / Recovery Point Objectives (RPOs).

9. Cost Management

  • Tools like AWS Cost Explorer or third-party tools (e.g., CloudHealth, Spot).
  • Cost allocation by service, tags, or environments (prod/dev/staging).

10. Versioning and Collaboration

  • Use a version control system (e.g., GitHub, GitLab) to manage documentation updates.
  • Share documentation via platforms like Confluence, Notion, or SharePoint for collaboration.

Example Tools for Documentation:

  • Automated Tools:
    • AWS Config: Provides a snapshot of your AWS resources.
    • CloudMapper: Visualizes AWS architecture.
    • Hava: For automated AWS diagrams.
  • Manual Tools:
    • Markdown documentation.
    • Visual diagramming tools as mentioned above.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment