DEV Community

jesus manrique
jesus manrique

Posted on • Originally published at guayoyo.tech

Your Tech Stack Is Leaking Money — And You Don't Know It

#aws #cloud #finops #devops

Every month you look at your AWS, Azure, or cloud provider bill. You pay it. Your devs tell you "that's how it works." Your vendors tell you "scaling costs." And the cycle repeats.

But if you did a 4-hour audit of that bill, you'd find something uncomfortable: between 20% and 40% of what you pay is resources you don't need, instances no one turned off after a test, and architectures designed for a traffic spike that never came.

Cloud overbilling isn't an accident. It's the cloud business model working exactly as it was designed: making itself invisible.

The three leaks draining your budget

1. Idle resources — the silent leak

Every company has staging, development, and testing environments. Most run 24/7. No one uses them at night. No one uses them on weekends. But the bill comes the same.

A t3.medium EC2 instance used only 40 hours per week costs the same as one running 168 hours. You're paying for 128 hours per week of electricity no one consumes. Multiply by three environments. Multiply by twelve months.

In Kubernetes it's worse: development clusters tend to have oversized nodes because "it's easier to request a big machine than to fiddle with requests and limits." The result: clusters running at 15% CPU utilization and 30% memory, but billing at 100%.

2. Overprovisioning — the fear-based leak

"Better to have too much than too little." That phrase, repeated in a thousand planning meetings, has cost more money than any production bug.

Overprovisioning happens when you size your infrastructure for the worst possible scenario and leave it that way permanently. Black Friday, the launch of the year, the massive marketing campaign. Three peak days per year, 362 days paying for idle resources.

An RDS database with 8 vCPUs and 64 GB of RAM "just in case" when 95% of the time it uses 2 vCPUs and 12 GB is costing you triple every month. And the worst part: the team justifies it with "it's what AWS recommends" without asking who benefits from that recommendation.

3. Misrouted data transfer — the leak you don't even see

You move data between regions because the app was designed when everything was in us-east-1 and later you opened customers in Europe. Every gigabyte crossing regions has a cost. Every query to an API in the wrong cloud adds up.

Worse: you use NAT Gateway to give internet access to your private instances. Traffic goes through the NAT Gateway, which charges per hour and per gigabyte processed. If your pods pull Docker Hub images 20 times a day, every download goes through that toll. A VPC Gateway Endpoint for S3 and a container image cache would save you hundreds of dollars a month. But nobody told you during setup.

The cloud paradox: easier to spend than to save

AWS, Azure, and GCP have done a brilliant job making spending easy. A newly hired junior can provision a Kubernetes cluster in 15 minutes. But that same junior doesn't know what a Reserved Instance, a Savings Plan, a spot instance, or an auto-scaling group with scale-to-zero is.

The cloud democratized spending. Optimization is still specialist territory. And in that gap lives overbilling.

The real case: 40% savings without touching the product

A few months ago we worked with an e-commerce company that had a cloud bill of $12,000/month. Their stack: Kubernetes on EKS, RDS for PostgreSQL, ElastiCache for Redis, CloudFront for CDN.

The 4-hour audit found:

  • 3 Kubernetes clusters: production, staging, and development. Staging and development had the same number of nodes as production. We reduced staging to 2 nodes with auto-scaling and development to 1 spot node.
  • RDS: db.r5.4xlarge instance (16 vCPU, 128 GB RAM). Monitoring showed it never exceeded 25% usage. We migrated to db.r5.xlarge with storage auto-scaling. Immediate 60% savings on the database.
  • NAT Gateway: 3 NAT Gateways, one per availability zone "for high availability." One was enough with properly configured routes. Two NAT Gateways turned off.
  • ElastiCache: a cache.m5.large cluster no one used because the app had migrated to local Redis in pods 4 months ago and no one turned off the cluster. $90/month in the trash.

Result: bill from $12,000 to $7,200. Same product. Same performance. Zero downtime. Forty percent savings detected in a single afternoon.

Kubernetes isn't an expense — it's a savings tool, if you know how to use it

There's a dangerous belief among technical decision-makers: "Kubernetes is expensive, let's stick with VPS." That's like saying a car is expensive because it consumes gas, ignoring that you can choose between an efficient sedan and a mining truck.

Well-configured Kubernetes — with auto-scaling, spot instances, bin packing, and correct resource limits — gives you more workload per dollar than any artisanal alternative. The problem isn't Kubernetes. The problem is badly sized Kubernetes, which is what you get when you spin up a cluster without prior architecture.

The difference between a bleeding-money cluster and an efficient one isn't in the technology. It's in the sizing decisions no one made because "we had to ship the feature."

5 things you can audit this week

Without hiring anyone, without touching production. Open your AWS/Azure/GCP console right now and check:

  1. EC2/VMs instances: sort by CPU utilization. If any is running below 10% in the last month, ask the owner if they still need it.
  2. Load Balancers: how many do you have? If there's more than one per environment, you probably have extras.
  3. NAT Gateways: do you have more than one per VPC? If you don't have critical multi-AZ traffic, one is enough.
  4. Unattached EBS volumes/disks: look for them. There are always some. They're from instances that were deleted and the disk was left orphaned.
  5. Unassociated elastic IPs: they cost money if not attached to a running instance. Find them.

If you find even one of these, you just paid for your coffee this week. If you find three, you just saved hundreds of dollars a month without touching a line of code.

Every month that passes without auditing your infrastructure is a month of accumulated overbilling. At Guayoyo Tech we do cloud architecture audits in hours, not weeks, and tell you exactly how much you're leaking and how to close every leak. No commitment, no filler, no vendor lock-in.

Let's talk →

Top comments (0)