Cloud Infrastructure Skill

Overview

Master cloud platforms: AWS, Azure, and GCP.

Parameters

Name Type Required Default Description

provider string No aws Cloud provider

service string No compute Service type

Core Topics

MANDATORY

• AWS: EC2, S3, RDS, Lambda, VPC

• Azure: VMs, Storage, AKS

• GCP: Compute Engine, GKE

• IAM and security

• Networking (VPCs, subnets)

OPTIONAL

• Cost optimization

• Multi-cloud strategies

• Managed Kubernetes

• Serverless patterns

ADVANCED

• Well-Architected Framework

• Landing zones

• Organizations/Control Tower

• FinOps

Service Comparison

Category AWS Azure GCP

Compute EC2 VMs Compute Engine

K8s EKS AKS GKE

Serverless Lambda Functions Cloud Functions

Storage S3 Blob Cloud Storage

Quick Reference

AWS CLI

aws sts get-caller-identity aws ec2 describe-instances aws s3 ls s3://bucket-name aws eks update-kubeconfig --name cluster

Azure CLI

az login az account list az vm list az aks get-credentials --name cluster

GCP CLI

gcloud auth login gcloud projects list gcloud compute instances list gcloud container clusters get-credentials cluster

Troubleshooting

Common Failures

Symptom Root Cause Solution

Access Denied IAM policy Check policies

Quota Exceeded Service limit Request increase

Timeout Network/SG Check VPC, SGs

Cost spike Runaway resources Cost Explorer

Debug Checklist

• Identity: aws sts get-caller-identity

• Region: echo $AWS_REGION

• Permissions: Check IAM

• CloudTrail: Audit logs

Recovery Procedures

Compromised Key

• Disable key immediately

• Review CloudTrail

• Rotate credentials

Resources

• AWS Docs

• Azure Docs

• GCP Docs