Automated GitHub Self-Hosted Runner Cleanup: Lambda Functions and Auto Scaling Lifecycle Hooks

September 7, 2025 ~ sourav kundu ~ 1 Comment

Running self-hosted GitHub runners on an Auto Scaling group enables organizations to have high availability during active development so that development teams do not have to compromise on runner availability. This allows development teams to have the same flexibility as that of a GitHub-hosted runner while also maintaining all the benefits of self-hosted runners, such … Continue reading Automated GitHub Self-Hosted Runner Cleanup: Lambda Functions and Auto Scaling Lifecycle Hooks

Build Secure GitHub Self-Hosted Runners on Amazon EC2 with Terraform

September 2, 2025September 8, 2025 ~ sourav kundu ~ 1 Comment

GitHub, in addition to being an excellent version control system, offers workflow automation capabilities (Actions) that enable testing, building, and deploying code based on triggers such as code commits, pull requests, or scheduled events. These workflows run on runners, which are virtual or physical machines that execute these workflow steps.While GitHub offers free hosted runners … Continue reading Build Secure GitHub Self-Hosted Runners on Amazon EC2 with Terraform

Automate Amazon Route 53 hosted zone, ACM, and Load Balancer provisioning with Terraform and GitHub Actions

March 25, 2025April 8, 2025 ~ sourav kundu ~ 3 Comments

AWS provides seamless integration to manage secure traffic routing through an Amazon Route 53 hosted zone to an Application Load Balancer (ALB), using a secure certificate from AWS Certificate Manager (ACM). I build upon a previously discussed use case such that by the end of this note, you'll have the concept of creating an ALB … Continue reading Automate Amazon Route 53 hosted zone, ACM, and Load Balancer provisioning with Terraform and GitHub Actions

Install and configure CloudWatch Logs agent on Amazon EC2 instance for Linux using user data

October 21, 2024 ~ sourav kundu ~ 1 Comment

Amazon CloudWatch Logs Agent is a software component installed on servers that allows Cloud Engineering teams to monitor and collect log files from the servers and applications in real time. It sends log data to Amazon CloudWatch Logs, where they can be analyzed, searched, and visualized, thus making it easier to troubleshoot issues and monitor … Continue reading Install and configure CloudWatch Logs agent on Amazon EC2 instance for Linux using user data

Access Amazon ElastiCache for Memcached from an Amazon EC2 instance using Python

August 21, 2024 ~ sourav kundu ~ Leave a comment

This note is the second part of my notes on Amazon ElastiCache for Memcached. In the first note, I demonstrated how to create an Amazon ElastiCache for Memcached using Terraform. In this note, I list the steps to create the additional infrastructure and access the Memcached cluster using Python. To accomplish the use-case, I'll use … Continue reading Access Amazon ElastiCache for Memcached from an Amazon EC2 instance using Python

Secure RDP Access to Amazon EC2 for Windows: Leveraging Fleet Manager and Session Manager

July 27, 2024July 27, 2024 ~ sourav kundu ~ Leave a comment

Fleet Manager is a service AWS Systems Manager provides to securely manage Amazon EC2 instances at scale. Cloud engineers can log in via remote desktop (RDP) to Amazon EC2 instances for Windows using Fleet Manager to perform troubleshooting or management tasks. Previously, a set of configurations were required to access an Amazon EC2 instance for … Continue reading Secure RDP Access to Amazon EC2 for Windows: Leveraging Fleet Manager and Session Manager

Install and configure CloudWatch Logs agent on Amazon EC2 instance for Windows using user data

July 16, 2024October 21, 2024 ~ sourav kundu ~ 3 Comments

Amazon CloudWatch is a monitoring and observability service that Amazon Web Services (AWS) provides. It monitors log files, collects and tracks metrics, sets alarms, and triggers actions to help AWS users ensure the health and performance of their applications and infrastructure resources. CloudWatch integrates with various AWS services, such as Amazon EC2, to provide comprehensive … Continue reading Install and configure CloudWatch Logs agent on Amazon EC2 instance for Windows using user data

Create an Amazon EC2 instance using Terraform with Session Manager access using VPC Endpoint

December 27, 2023April 17, 2024 ~ sourav kundu ~ 1 Comment

As a reader of this note, I believe you are familiar with Session Manager. Per AWS-Docs, Session Manager is a fully managed AWS Systems Manager capability that lets you manage your Amazon EC2 instances through an interactive one-click browser-based shell or through the AWS CLI. For Session Manager to function, the Amazon VPC requires access … Continue reading Create an Amazon EC2 instance using Terraform with Session Manager access using VPC Endpoint

Connect to an Amazon ElastiCache cluster from an Amazon EC2 instance using Python

December 13, 2023August 16, 2024 ~ sourav kundu ~ 2 Comments

This note continues my previous note on Amazon ElastiCache for Redis. In my earlier note, I demonstrated how to create an Amazon ElastiCache for the Redis cluster using Terraform and automate the process using GitHub Actions. In this note, I explain how to connect to the ElastiCache cluster using Python from an Amazon EC2 instance. … Continue reading Connect to an Amazon ElastiCache cluster from an Amazon EC2 instance using Python

Access AWS Secrets Manager secret from Amazon EC2 instance using Python

November 27, 2023November 27, 2023 ~ sourav kundu ~ Leave a comment

Per AWS-Docs, AWS Secrets Manager is a service to manage, retrieve, and rotate database credentials, application credentials, OAuth tokens, API keys, and other secrets throughout their lifecycles. Many AWS services store and use secrets in Secrets Manager. In this note, I demonstrate how to access the AWS Secrets Manager secret value using Python from an … Continue reading Access AWS Secrets Manager secret from Amazon EC2 instance using Python