6/4/2025, 12:00:00 AM ~ 6/5/2025, 12:00:00 AM (UTC)

Recent Announcements

AWS Network Firewall launches new monitoring dashboard

Today, AWS announces the launch of a new monitoring dashboard in the AWS Network Firewall console, enhancing customers ability to monitor their network traffic. This new feature provides visibility into network activities, allowing for more effective management and troubleshooting of firewall configurations.\n The new dashboard offers valuable insights into traffic patterns, including top traffic flows, TLS Server Name Indication (SNI), and HTTP Host headers. This level of detail allows customers to quickly identify and analyze their most significant network interactions. Additionally, the dashboard provides visibility into long-lived TCP flows and traffic flows where TCP handshake failed, which is particularly useful for troubleshooting network issues and identifying potential security concerns. This new monitoring dashboard is available in all AWS Regions where AWS Network Firewall is supported, see AWS Region table. There are no additional charges on AWS Network Firewall to use this dashboard. Please check Amazon CloudWatch pricing or Amazon Athena pricing to understand charges related to Logs and Queries. To take advantage of this new feature, customers need to configure Flow logs and Alert logs in their AWS Network Firewall, and enable the monitoring dashboard. For more information on how to set up and use the new monitoring dashboard, please visit the AWS Network Firewall documentation or log in to the AWS Management Console.

ENA Express supports 120 new instances

120 EC2 instances now support ENA Express, including network optimized, storage, high-memory, and accelerated computing. With this launch, ENA Express is adding support for 35 network optimized instances, 6 storage instances, 7 high-memory instances, and 5 accelerated computing instances. Additionally, ENA Express has added support for 67 different compute, general purpose, and memory optimized EC2 instances.\n ENA Express is a networking feature that uses the AWS Scalable Reliable Datagram (SRD) protocol to improve network performance in two key ways: higher single flow bandwidth and lower tail latency for network traffic between EC2 instances. SRD is a proprietary protocol that delivers these improvements through advanced congestion control, multi-pathing, and packet reordering directly from the Nitro card. ENA Express works transparently to your applications with TCP and UDP protocols. ENA Express with network optimized instances is great for file systems and media encoding workloads that need higher single flow bandwidth and consistent tail latency. ENA Express coupled with storage instances improves performance for large object transactions to and from databases. ENA Express on high-memory instances is great for single flow performance for in memory databases transactions like with SAP HANA. Finally, for accelerated computing instances ENA Express provides better single flow performance for file system access to services like FSx Lustre. ENA Express is available in all AWS Commercial Regions and AWS GovCloud (US) Regions and comes at no additional cost. For a complete list of supported instances, please review the latest EC2 Documentation.

Announcing Amazon RDS for PostgreSQL Extended Support versions R2 11.22-rds.20250508 and 12.22-rds.20250508

Amazon RDS for PostgreSQL introduces Extended Support minor versions 11.22-rds.20250508 and 12.22-rds.20250508, which include important security updates and bug fixes for PostgreSQL databases.. We recommend upgrading your RDS instances to these latest versions to maintain optimal security and performance of your PostgreSQL deployments.\n Amazon RDS Extended Support provides you more time, up to three years, to upgrade to a new major version to help you meet your business requirements. During Extended Support, Amazon RDS will provide critical security and bug fixes for your RDS for PostgreSQL databases after the community ends support for a major version. You can run your PostgreSQL databases on Amazon RDS with Extended Support for up to three years beyond a major version’s end of standard support date. You can use automatic minor version upgrades to automatically upgrade your databases to more recent minor versions during scheduled maintenance windows. You can also use Amazon RDS Blue/Green deployments for RDS for PostgreSQL using physical replication for your minor version upgrades. Learn more about upgrading your database instances, including automatic minor version upgrades and Blue/Green Deployments in the Amazon RDS User Guide. Amazon RDS for PostgreSQL makes it simple to set up, operate, and scale PostgreSQL deployments in the cloud. See Amazon RDS for PostgreSQL Pricing for pricing details and regional availability. Create or update a fully managed Amazon RDS database in the Amazon RDS Management Console.

Amazon EKS add-ons now supports Private CA Connector for Kubernetes

Today, AWS announces the general availability of Private CA Connector for Kubernetes Amazon EKS add-on. This new integration allows customers to easily issue certificates from AWS Private Certificate Authority (AWS Private CA) to their Kubernetes clusters running on Amazon Elastic Kubernetes Service (Amazon EKS). The add-on installs and manages the Private CA Connector for Kubernetes. The connector enables customers to use AWS Private CA certificates for Transport Layer Security (TLS) termination at load balancers, Kubernetes ingress controllers, and pods, as well as securing pod-to-pod communication.\n Now, with the new Amazon EKS add-on, customers can quickly and easily set up new and existing clusters using automation to leverage AWS Private CA certificates, enhancing security and simplifying certificate management. Previously, this process could take hours or even days and involved numerous manual steps. The connector works in conjunction with cert-manager, an open-source certificate lifecycle management Kubernetes add-on, to provide a comprehensive solution for certificate issuance and management within Kubernetes environments. cert-manager is also available through the Amazon EKS add-ons catalog. Amazon EKS add-ons are curated extensions that automate the installation, configuration, and lifecycle management of operational software for Kubernetes clusters, simplifying the process of maintaining cluster functionality and security. AWS Private CA is a managed service that lets you create private certificate authority hierarchies to issue private certificates. AWS Private CA secures private key material using Federal Information Processing Standard (FIPS) 140-3 Security Level 3 hardware security modules (HSMs). This new Amazon EKS add-on is available in all commercial AWS Regions.

To get started, see the following resources:

Amazon EKS add-ons user guide

AWS Private CA user guide

Amazon EC2 C7a instances are now available in AWS Europe (London) Region

Starting today, the compute optimized Amazon EC2 C7a instances are now available in AWS Europe (London) Region. C7a instances, powered by 4th Gen AMD EPYC processors (code-named Genoa) with a maximum frequency of 3.7 GHz, deliver up to 50% higher performance compared to C6a instances.\n C7a instances offer new processor capabilities such as AVX-512, VNNI, and bfloat16. They feature Double Data Rate 5 (DDR5) memory to enable high-speed access to data in memory and 2.25x more memory bandwidth compared to C6a instances, making these instances ideal for even latency sensitive workloads. C7a instances offer 12 sizes from medium to 48xlarge, including a bare-metal size. And with the launch of C7a instances, customers can attach up to 128 EBS volumes to an EC2 instance — by comparison, C6a instances allow up to 28 EBS volume attachments to an EC2 instance. These instances are built on the AWS Nitro System and ideal for high performance, compute-intensive workloads such as batch processing, distributed analytics, high performance computing (HPC), ad serving, highly-scalable multiplayer gaming, and video encoding. C7a instances are available through On-Demand, Spot Instances, and Savings Plans. To get started, visit the AWS Management Console, AWS Command Line Interface (CLI), and AWS SDKs. To learn more, see C7a instances.

AWS Resource Groups adds support AWS PrivateLink

AWS Resource Group APIs now come with AWS PrivateLink support, allowing you to invoke AWS Resource Group APIs from within your Amazon Virtual Private Cloud (VPC) without traversing the public internet.\n AWS Resource Groups enables you to model, manage and automate tasks on large numbers of AWS resources by using tags to logically group your resources. You can create logical collections of resources such as applications, projects, and cost centers, and manage them on dimensions such as cost, performance, and compliance in AWS services such as myApplications, AWS Systems Manager and Amazon CloudWatch. AWS PrivateLink support for AWS Resource Groups is available in all AWS Regions where AWS Resource Groups is available. To get started, follow the directions provided in the AWS PrivateLink documentation or visit AWS Resource Groups.

Amazon Lex extends custom vocabulary feature to additional languages

Amazon Lex now extends custom vocabulary support to multiple languages, including Chinese, Japanese, Korean, Portuguese, Catalan, French, German, and Spanish locales. This enhancement enables you to improve speech recognition accuracy for domain-specific terminology, proper nouns, and rare words across a wider range of languages, creating more natural and accurate conversational experiences. With custom vocabulary, you can provide Amazon Lex with specific phrases that should be recognized during audio conversations, even when the spoken audio might be ambiguous. For example, you can ensure technical terms like “Cognito” or industry-specific vocabulary like “solvency” are correctly transcribed during bot interactions, providing consistent speech recognition capabilities that work both for intent recognition and improving slot value elicitation.\n This feature is now available in all AWS Regions where Amazon Lex operates for the supported languages. To learn more about implementing custom vocabulary for your bots, visit the Amazon Lex V2 Developer Guide.

Amazon EC2 M7g instances are now available in AWS GovCloud (US-West) Region

Starting today, Amazon Elastic Compute Cloud (Amazon EC2) M7g instances are available in the AWS GovCloud (US-West) Region. These instances are powered by AWS Graviton3 processors that provide up to 25% better compute performance compared to AWS Graviton2 processors, and built on top of the the AWS Nitro System, a collection of AWS designed innovations that deliver efficient, flexible, and secure cloud services with isolated multi-tenancy, private networking, and fast local storage.\n Amazon EC2 Graviton3 instances also use up to 60% less energy to reduce your cloud carbon footprint for the same performance than comparable EC2 instances. For increased scalability, these instances are available in 9 different instance sizes, including bare metal, and offer up to 30 Gbps networking bandwidth and up to 20 Gbps of bandwidth to the Amazon Elastic Block Store (EBS). To learn more, see Amazon EC2 M7g. To explore how to migrate your workloads to Graviton-based instances, see AWS Graviton Fast Start program and Porting Advisor for Graviton. To get started, see the AWS GovCloud (US) Console.

Amazon Redshift now supports increased concurrency for vacuum operations

Amazon Redshift has enhanced its vacuum operations to support increased concurrency across different tables in data warehouses. This feature reduces maintenance time and improves resource utilization by allowing multiple vacuum operations to run simultaneously.\n Vacuum operations maintain optimal query performance by performing two critical functions: sorting table data and reclaiming disk space from deleted rows. Redshift already offers automatic vacuum operations to minimize the need for manual maintenance. Now, these operations run at a higher concurrency automatically managed by Redshift. Further, users can also run multiple manual vacuum operations concurrently on different tables across sessions. This enhancement also extends support to run automatic and manual vacuum operations simultaneously across various vacuum modes. Concurrent vacuum operations reduces the maintenance time and enables better resource utilization of the data warehouse, solving a key operational challenge for database administrators. This support for concurrent vacuum operations is available in all AWS Regions where Amazon Redshift is available. For more information, please refer to our documentation.

AWS Resource Groups now supports IPv6

AWS Resource Group APIs now supports IPv6 for dual stack subnets so you can filter IPv4 and IPv6 traffic flows to and from the public internet, on-premises network, or any endpoint in your Amazon Virtual Private Cloud (VPC).\n AWS Resource Groups enables you to model, manage and automate tasks on large numbers of AWS resources by using tags to logically group your resources. You can create logical collections of resources such as applications, projects, and cost centers, and manage them on dimensions such as cost, performance, and compliance in AWS services such as myApplications, AWS Systems Manager and Amazon CloudWatch. IPv6 support is available in all AWS Regions where AWS Resource Groups is available today. To get started, learn how to configure IPv6 support or learn more about AWS Resource Groups.

AWS Blogs

AWS Japan Blog (Japanese)

AWS News Blog

AWS Open Source Blog

AWS Cloud Financial Management

AWS Database Blog

AWS for Industries

The Internet of Things on AWS – Official Blog

AWS Machine Learning Blog

AWS for M&E Blog

Open Source Project

AWS CLI