Author: sourav kundu

Amazon S3-SNS-Lambda Event-Driven Architecture with Terraform

~ sourav kundu ~ Leave a comment

When development teams need to process thousands of file uploads daily across multiple applications, traditional polling-based monitoring systems create significant operational overhead and cost inefficiencies. Manual file-processing workflows can't scale to meet modern application demands, leading to delayed processing, wasted resources, and potential data loss during peak loads. Event-driven architecture solves this challenge by automatically … Continue reading Amazon S3-SNS-Lambda Event-Driven Architecture with Terraform

Automate ephemeral workspaces in HCP Terraform using the TFE provider

Automate ephemeral workspaces in HCP Terraform using the TFE provider
~ sourav kundu ~ 1 Comment

Over the last several years, organizations worldwide have adopted Terraform as their primary tool for cloud infrastructure provisioning. To make the management and adoption of Terraform accessible, so that organizations can focus on building their applications, HashiCorp released HCP Terraform that handles the heavy lifting for scaling via secure state file management, CI/CD, and cross-stack … Continue reading Automate ephemeral workspaces in HCP Terraform using the TFE provider

Automate AWS resource import into Terraform state using GitHub Actions

~ sourav kundu ~ Leave a comment

Organizations choose Terraform as their cloud infrastructure automation tool primarily for its features, such as idempotency, repeatability, and declarative configuration management, which enable teams to version-control their infrastructure alongside application code. However, many organizations don't have the luxury of starting fresh with Terraform. At times, organizations face scenarios in which critical cloud resources have already … Continue reading Automate AWS resource import into Terraform state using GitHub Actions

Automated GitHub Self-Hosted Runner Cleanup: Lambda Functions and Auto Scaling Lifecycle Hooks

~ sourav kundu ~ 1 Comment

Running self-hosted GitHub runners on an Auto Scaling group enables organizations to have high availability during active development so that development teams do not have to compromise on runner availability. This allows development teams to have the same flexibility as that of a GitHub-hosted runner while also maintaining all the benefits of self-hosted runners, such … Continue reading Automated GitHub Self-Hosted Runner Cleanup: Lambda Functions and Auto Scaling Lifecycle Hooks

Build Secure GitHub Self-Hosted Runners on Amazon EC2 with Terraform

~ sourav kundu ~ 1 Comment

GitHub, in addition to being an excellent version control system, offers workflow automation capabilities (Actions) that enable testing, building, and deploying code based on triggers such as code commits, pull requests, or scheduled events. These workflows run on runners, which are virtual or physical machines that execute these workflow steps.While GitHub offers free hosted runners … Continue reading Build Secure GitHub Self-Hosted Runners on Amazon EC2 with Terraform

17 Key Considerations Before Designing Terraform Modules

~ sourav kundu ~ Leave a comment

Terraform modules are reusable, self-contained units of infrastructure code that allow users to encapsulate and organize resources in an efficient and scalable process. By grouping related resources into a module, engineering teams enable project teams to manage complex infrastructure setups with ease. These modules can be shared and versioned, promoting consistency and reducing redundancy across … Continue reading 17 Key Considerations Before Designing Terraform Modules

Automate AWS Lambda Deployment with Docker Images, Terraform, and GitHub Actions

~ sourav kundu ~ Leave a comment

AWS Lambda is a serverless compute service that lets cloud application development teams run code without provisioning or managing servers. While Lambda natively supports several programming languages, developers often face limitations with dependency management and runtime constraints. This is where Docker containers come to the rescue. By packaging the Lambda function as a Docker image, … Continue reading Automate AWS Lambda Deployment with Docker Images, Terraform, and GitHub Actions

Configure DNSSEC for Amazon Route 53 hosted zone using Terraform

Configure DNSSEC for Amazon Route 53 hosted zone using Terraform
~ sourav kundu ~ Leave a comment

DNSSEC (Domain Name System Security Extensions) is a security protocol that adds cryptographic signatures to DNS records. This ensures that users are connecting to legitimate websites rather than malicious ones. It also helps prevent attacks like DNS spoofing or cache poisoning by verifying the authenticity and integrity of DNS responses. Amazon Route 53 is a … Continue reading Configure DNSSEC for Amazon Route 53 hosted zone using Terraform

Enable Domain Name System (DNS) query logging for Amazon Route 53 hosted zones using Terraform

~ sourav kundu ~ Leave a comment

Maintaining visibility into DNS-related activities is crucial for organizations to ensure the security and performance of their web-based applications. Cloud engineering teams must use tools to effectively monitor and analyze DNS queries to protect from DNS-based attacks and optimize performance for genuine requests. DNS Query logging for Amazon Route 53 hosted zones addresses this challenge … Continue reading Enable Domain Name System (DNS) query logging for Amazon Route 53 hosted zones using Terraform

Attach AWS WAF to load balancer using Terraform and GitHub Actions

~ sourav kundu ~ 2 Comments

Public-facing load balancers are vulnerable to attacks, including DDoS, SQL injection, cross-site scripting (XSS), and bot attacks. These attacks can degrade the load balancer's performance, rendering it unavailable to legitimate users and negatively impacting business operations. AWS Web Application Firewall (WAF) is a service designed to protect resources like load balancers, Amazon CloudFront distributions, API … Continue reading Attach AWS WAF to load balancer using Terraform and GitHub Actions