Select a document to summarize:
ποΈ AWS Well-Architected Framework
π Amazon Bedrock User Guide
π¦ Meta Llama 4 Research Paper
Select a document above and click "Summarize" to see the AI-generated summary via PrivateLink.
Bedrock Incident Simulator
Trigger real Bedrock errors to test the DevOps Agent investigation flow.
Each scenario sends a request that causes an error β CW Alarm fires β DevOps Agent investigates.
π΄ Deprecated Model (ValidationException)
π Invalid Parameters (ValidationException)
π£ Max Tokens Exceeded (ValidationException)
π‘ Non-existent Model (ValidationException)
π PrivateLink Connectivity Failure
βͺ NLB Targets Unhealthy
π‘ 429 Throttling (Synthetic)
π΄ 503 Capacity Exhaustion (Synthetic)
Incident log will appear here...
DynamoDB Load Test
Simulates high write throughput against a provisioned DynamoDB table. When throttling occurs, CloudWatch Alarm fires β DevOps Agent investigates.
10 req/s
Live Statistics
Requests Sent
0
Successful
0
Throttled
0
Error Rate
0%
Elapsed
0s
CW Alarm Status
β
DevOps Agent
β
End-to-End Architecture
Cross-Account PrivateLink Architecture
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β SPOKE ACCOUNT (us-east-1) β Consumer β
β β
β ββββββββββββββββ βββββββββββββββ ββββββββββββββββββββββββββββββββ β
β β CloudFront ββββββΆβ API Gateway ββββββΆβ Lambda (VPC) β β
β β + S3 (UI) β β /api/* β β β’ ConverseStream β β
β ββββββββββββββββ βββββββββββββββ β β’ Per-team role assumption β β
β β β’ Cost attribution β β
β ββββββββββββββββ¬ββββββββββββββββ β
β β HTTPS :443 β
β βΌ β
β ββββββββββββββββββββββββββββββββ β
β β VPC Endpoint Interface β β
β β (Cross-Region PrivateLink) β β
β β ServiceRegion: us-east-2 β β
β ββββββββββββββββ¬ββββββββββββββββ β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββΌβββββββββββββββββββ
β
ββββββββββββββ§βββββββββββββ
β AWS PrivateLink β
β Cross-Region Traffic β
β (private, encrypted) β
ββββββββββββββ€βββββββββββββ
β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββΌβββββββββββββββββββ
β HUB ACCOUNT (us-east-2) β Provider β
β β β
β ββββββββββββββββΌββββββββββββββββ β
β β VPC Endpoint Service β β
β β (No acceptance required) β β
β ββββββββββββββββ¬ββββββββββββββββ β
β β β
β ββββββββββββββββΌββββββββββββββββ β
β β Network Load Balancer β β
β β (Internal, TCP :443) β β
β βββββ¬βββββββββββ¬βββββββββββ¬βββββ β
β β β β β
β βββββΌββββ βββββΌββββ ββββΌβββββ β
β βTarget β βTarget β βTarget β β
β β10.1.1xβ β10.1.2xβ β10.1.3xβ β
β βββββ¬ββββ βββββ¬ββββ βββββ¬ββββ β
β ββββββββββββΌβββββββββββ β
β ββββββββββββββββΌββββββββββββββββ β
β β Bedrock VPC Endpoints β β
β β β’ bedrock-runtime β β
β β β’ bedrock-agent-runtime β β
β ββββββββββββββββ¬ββββββββββββββββ β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββΌβββββββββββββββββββ
β
βΌ
ββββββββββββββββββββββββββ
β Amazon Bedrock β
β (US CRIS Routing) β
β β
β us-east-1 / us-east-2β
β / us-west-2 β
ββββββββββββββββββββββββββ
Cost Attribution Flow (Gateway Pattern)
βββββββββββββββ βββββββββββββββββββ ββββββββββββββββββββββββ βββββββββββββββ
β Web UI ββββββΆβ Lambda ββββββΆβ STS AssumeRole ββββββΆβ Bedrock β
β (team β β (Gateway) β β per-team role β β (invoked β
β selector) β β β β β β as team) β
βββββββββββββββ βββββββββββββββββββ ββββββββββββββββββββββββ βββββββββββββββ
β
βΌ
ββββββββββββββββββββββββ
β CUR 2.0 shows: β
β iamPrincipal/team β
β = ml-platform β
β = data-science β
β = product-eng β
ββββββββββββββββββββββββ
Incident β DevOps Agent Investigation Flow
βββββββββββββββ βββββββββββββββ βββββββββββββββ βββββββββββββββ βββββββββββββββ
β Error ββββββΆβ CloudWatch ββββββΆβ SNS Topic ββββββΆβ Webhook ββββββΆβ DevOps β
β Occurs β β Alarm β β β β Lambda β β Agent β
β β β (10s) β β β β (HMAC) β β β
βββββββββββββββ βββββββββββββββ βββββββββββββββ βββββββββββββββ ββββββββ¬βββββββ
β
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β
βΌ
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β DevOps Agent Investigation: β
β β
β 1. Checks CloudWatch Logs (Lambda errors, Bedrock invocation logs) β
β 2. Checks CloudTrail (recent deployments, config changes) β
β 3. Inspects Lambda code (GetFunction) β
β 4. Checks NLB health, VPC Endpoint status β
β 5. Correlates timeline (error start β deployment β config change) β
β 6. Posts findings to Slack (#meta-bedrockdevops-agent-investigation) β
β β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
CloudFormation Stacks
| Stack | Account | Resources |
|---|---|---|
| bedrock-devops-demo-spoke-vpc | Spoke | VPC, 3 subnets, IGW, SSM/STS/S3 endpoints |
| bedrock-devops-demo-hub-vpc | Hub | VPC, 3 subnets, IGW |
| bedrock-devops-demo-hub | Hub | Bedrock VPCEs, NLB, VPCE Service, Invocation Logging |
| bedrock-devops-demo-spoke | Spoke | VPCE Interface, STS endpoint, Test Lambda |
| bedrock-devops-demo-cost-attribution | Hub | Per-team IAM roles (ml-platform, data-science, product-eng) |
| bedrock-devops-demo-monitoring | Hub | NLB/VPCE alarms, CloudWatch dashboard |
| bedrock-devops-demo-observability | Hub | Metric filters, Bedrock alarms, VPC Flow Logs, Ops dashboard |
| bedrock-devops-demo-web-ui | Spoke | CloudFront, S3, API GW, Lambdas, DynamoDB, Alarms |
| bedrock-devops-demo-agent-space | Spoke | DevOps Agent Space, IAM roles, Associations |