EC2 Instances Should Not Be Underutilized
More Info:
Underutilized EC2 instances should be downsized in order to optimize your AWS costs.Risk Level
LowAddress
Cost optimizationCompliance Standards
AWSWAFTriage and Remediation
Remediation
Using Console
Using Console
To remediate the misconfiguration of underutilized EC2 instances in AWS, you can follow the below steps:
- Log in to your AWS Management Console.
- Go to the EC2 Dashboard.
- Click on the “Instances” option from the left-hand side menu.
- Select the underutilized EC2 instance(s) that you want to remediate.
- Click on the “Actions” button and select “Create Image” from the dropdown list.
- Enter the required details for creating an image of the instance and click on the “Create Image” button.
- Once the image is created, go to the “AMIs” section from the left-hand side menu.
- Select the newly created AMI and click on the “Launch” button.
- Follow the on-screen instructions to launch a new instance from the AMI.
- Once the new instance is launched, you can terminate the underutilized instance(s) to save costs.
Using CLI
Using CLI
To remediate EC2 instances that are underutilized in AWS using AWS CLI, you can follow these steps:Replace INSTANCE_ID with the ID of the instance you want to check, START_TIME and END_TIME with the time range you want to check.Replace INSTANCE_ID with the ID of the instance you want to resize and INSTANCE_TYPE with the new instance type.Replace INSTANCE_ID with the ID of the instance you want to terminate.
- Identify the underutilized EC2 instances by checking their CPU utilization metrics. You can use the following AWS CLI command to get the CPU utilization metrics for all running instances in your account:
- Once you have identified the underutilized instances, you can take the following actions:
- Resize the instance: If the instance is underutilized because it has too few resources, you can resize the instance to a larger size using the
modify-instance-attributeAWS CLI command.
- Terminate the instance: If the instance is underutilized because it is no longer needed, you can terminate the instance using the
terminate-instancesAWS CLI command.
- Monitor the CPU utilization metrics of your instances regularly to ensure they are not underutilized or overutilized. You can set up CloudWatch alarms to notify you when the CPU utilization exceeds or falls below a certain threshold.
Using Python
Using Python
To remediate EC2 instances that are underutilized in AWS using Python, you can follow the below steps:
-
Identify underutilized instances:
- Use AWS SDK for Python (Boto3) to get the list of all EC2 instances.
- For each instance, get its CPU utilization metric using CloudWatch.
- If the average CPU utilization is below a certain threshold (e.g. 20%) for a certain period (e.g. 7 days), mark the instance as underutilized.
-
Stop underutilized instances:
- Use Boto3 to stop the identified underutilized instances.
- Before stopping the instance, make sure that it is not being used for any critical application or service.
-
Schedule start/stop instances:
- Use AWS Lambda and CloudWatch Events to schedule start/stop instances based on the usage pattern.
- For example, you can start instances during peak hours and stop them during off-hours to save costs.
-
Resize underutilized instances:
- Use AWS Auto Scaling to resize instances based on their usage pattern.
- For example, you can increase the instance size during peak hours and decrease it during off-hours to optimize costs.
-
Monitor and optimize:
- Monitor the instances regularly to ensure that they are not underutilized or overutilized.
- Optimize the instances based on the usage pattern and workload requirements to minimize costs and maximize performance.