Cloud Infrastructure Skill
Overview
Master cloud platforms: AWS, Azure, and GCP.
Parameters
| Name | Type | Required | Default | Description |
|---|---|---|---|---|
| provider | string | No | aws | Cloud provider |
| service | string | No | compute | Service type |
Core Topics
MANDATORY
- •AWS: EC2, S3, RDS, Lambda, VPC
- •Azure: VMs, Storage, AKS
- •GCP: Compute Engine, GKE
- •IAM and security
- •Networking (VPCs, subnets)
OPTIONAL
- •Cost optimization
- •Multi-cloud strategies
- •Managed Kubernetes
- •Serverless patterns
ADVANCED
- •Well-Architected Framework
- •Landing zones
- •Organizations/Control Tower
- •FinOps
Service Comparison
| Category | AWS | Azure | GCP |
|---|---|---|---|
| Compute | EC2 | VMs | Compute Engine |
| K8s | EKS | AKS | GKE |
| Serverless | Lambda | Functions | Cloud Functions |
| Storage | S3 | Blob | Cloud Storage |
Quick Reference
bash
# AWS CLI aws sts get-caller-identity aws ec2 describe-instances aws s3 ls s3://bucket-name aws eks update-kubeconfig --name cluster # Azure CLI az login az account list az vm list az aks get-credentials --name cluster # GCP CLI gcloud auth login gcloud projects list gcloud compute instances list gcloud container clusters get-credentials cluster
Troubleshooting
Common Failures
| Symptom | Root Cause | Solution |
|---|---|---|
| Access Denied | IAM policy | Check policies |
| Quota Exceeded | Service limit | Request increase |
| Timeout | Network/SG | Check VPC, SGs |
| Cost spike | Runaway resources | Cost Explorer |
Debug Checklist
- •Identity:
aws sts get-caller-identity - •Region:
echo $AWS_REGION - •Permissions: Check IAM
- •CloudTrail: Audit logs
Recovery Procedures
Compromised Key
- •Disable key immediately
- •Review CloudTrail
- •Rotate credentials