Benchmark: ECS Checks
Thrifty ECS Benchmark
Thrifty developers eliminate their unused and under-utilized ECS instances. This benchmark focuses on finding resources that have not been restarted recently, have old snapshots and have large, unused or inactive disks.
Variables
Variable | Description | Default |
---|---|---|
ecs_disk_max_iops | The maximum IOPS allowed for disks. | 32000 IOPS |
ecs_disk_max_size_gb | The maximum size in GB allowed for disks. | 100 GB |
ecs_instance_allowed_types | A list of allowed instance types. PostgreSQL wildcards are supported. | ["%.nano", "%.small", "%._large", ".__large"] |
ecs_instance_avg_cpu_utilization_low | The average CPU utilization required for instances to be considered infrequently used. This value should be lower than ecs_instance_avg_cpu_utilization_high . | 20% |
ecs_instance_avg_cpu_utilization_high | The average CPU utilization required for instances to be considered frequently used. This value should be higher than ecs_instance_avg_cpu_utilization_low . | 35% |
ecs_running_instance_age_max_days | The maximum number of days instances are allowed to run. | 90 days |
ecs_snapshot_age_max_days | The maximum number of days snapshots can be retained. | 90 days |
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-alicloud-thrifty
Start the Powerpipe server:
steampipe service startpowerpipe server
Open http://localhost:9033 in your browser and select ECS Checks.
Run this benchmark in your terminal:
powerpipe benchmark run alicloud_thrifty.benchmark.ecs
Snapshot and share results via Turbot Pipes:
powerpipe benchmark run alicloud_thrifty.benchmark.ecs --share
Controls
- Disks attached to stopped instances should be reviewed
- ECS disks with high IOPS should be reviewed
- Disks should be resized if too large
- Unattached disks should be removed
- Large ECS instances should be reviewed
- ECS instances with very low CPU utilization should be reviewed
- Long running instances should be reviewed
- Old snapshots should be deleted if not required