Enable Domain Name System (DNS) query logging for Amazon Route 53 hosted zones using Terraform

April 9, 2025April 9, 2025 ~ sourav kundu ~ Leave a comment

Maintaining visibility into DNS-related activities is crucial for organizations to ensure the security and performance of their web-based applications. Cloud engineering teams must use tools to effectively monitor and analyze DNS queries to protect from DNS-based attacks and optimize performance for genuine requests. DNS Query logging for Amazon Route 53 hosted zones addresses this challenge … Continue reading Enable Domain Name System (DNS) query logging for Amazon Route 53 hosted zones using Terraform

Attach AWS WAF to load balancer using Terraform and GitHub Actions

April 6, 2025April 9, 2025 ~ sourav kundu ~ 2 Comments

Public-facing load balancers are vulnerable to attacks, including DDoS, SQL injection, cross-site scripting (XSS), and bot attacks. These attacks can degrade the load balancer's performance, rendering it unavailable to legitimate users and negatively impacting business operations. AWS Web Application Firewall (WAF) is a service designed to protect resources like load balancers, Amazon CloudFront distributions, API … Continue reading Attach AWS WAF to load balancer using Terraform and GitHub Actions

Create infrastructure to host an Amazon ECS Service using Terraform

April 10, 2024October 6, 2024 ~ sourav kundu ~ 6 Comments

This is the first part of an umbrella note in which I describe how to create and deploy an Amazon ECS service using Terraform and GitHub Actions. The cloud engineering team must provision particular AWS cloud services before hosting a container in Amazon ECS. In this note, I list all the required AWS services, their … Continue reading Create infrastructure to host an Amazon ECS Service using Terraform

Add an application load balancer to Amazon EC2 instances in a private subnet

July 26, 2023March 25, 2025 ~ sourav kundu ~ 6 Comments

In this note, I create a highly available environment using Amazon EC2 instances spread over multiple availability zones attached to an application load balancer. I also have a link to my GitHub repository with the code. In the past, I wrote a note on how to toggle traffic between three EC2 instances in three availability … Continue reading Add an application load balancer to Amazon EC2 instances in a private subnet