[chef] Re: Re: EC2 and VPC

[Andrew Gross < >]

Hey Sam,

Currently we are migrating from EC2 to VPC.  This was mostly done because our AWS rep told us that in the future new services will be available in the VPC first, then general EC2.

As for working with the VPC there are still a few bugs but for the most part it is not too difficult. Feel free to ping me privately if you have questions.

Andrew

On Thu, Feb 28, 2013 at 6:06 AM, Zac Stevens < " target="_blank"> > wrote:

Hi Sam,

One thing to be aware of, if you rely on "knife bootstrap" to provision servers, is that you need end-to-end connectivity between your workstation (running knife) and the newly provisioned instance.  That's a given if you're using plain EC2, but you'll need some kind of VPN if you're using VPC.  Amazon has turnkey support for connecting hardware VPNs to VPC, but you can provision something software based (eg, openvpn) if you prefer.

Other than that, not all AWS services are available inside VPC, you may have some additional work to do to ensure redundancy, and there are the usual tradeoffs between security and complexity.  None of that is specifically related to Chef, though, and I'd think detailed discussion of those issues would be off-topic for this list...

Zac

On Thu, Feb 28, 2013 at 10:34 AM, Sam Darwin < " target="_blank"> > wrote:

For Amazon users, are you using plain ec2 or the VPC offering?
Why have you switched to VPC?
Why haven't you switched to VPC?

For context, there may be a difference between standard corporate enterprises
and fast-moving web-based startups.   We are in the latter category and using
chef to provision the servers.