Amazon S3-SNS-Lambda Event-Driven Architecture with Terraform

December 5, 2025 ~ sourav kundu ~ Leave a comment

When development teams need to process thousands of file uploads daily across multiple applications, traditional polling-based monitoring systems create significant operational overhead and cost inefficiencies. Manual file-processing workflows can't scale to meet modern application demands, leading to delayed processing, wasted resources, and potential data loss during peak loads. Event-driven architecture solves this challenge by automatically … Continue reading Amazon S3-SNS-Lambda Event-Driven Architecture with Terraform

Configure DNSSEC for Amazon Route 53 hosted zone using Terraform

April 17, 2025April 16, 2025 ~ sourav kundu ~ Leave a comment

DNSSEC (Domain Name System Security Extensions) is a security protocol that adds cryptographic signatures to DNS records. This ensures that users are connecting to legitimate websites rather than malicious ones. It also helps prevent attacks like DNS spoofing or cache poisoning by verifying the authenticity and integrity of DNS responses. Amazon Route 53 is a … Continue reading Configure DNSSEC for Amazon Route 53 hosted zone using Terraform

Enable Domain Name System (DNS) query logging for Amazon Route 53 hosted zones using Terraform

April 9, 2025April 9, 2025 ~ sourav kundu ~ Leave a comment

Maintaining visibility into DNS-related activities is crucial for organizations to ensure the security and performance of their web-based applications. Cloud engineering teams must use tools to effectively monitor and analyze DNS queries to protect from DNS-based attacks and optimize performance for genuine requests. DNS Query logging for Amazon Route 53 hosted zones addresses this challenge … Continue reading Enable Domain Name System (DNS) query logging for Amazon Route 53 hosted zones using Terraform

Attach AWS WAF to load balancer using Terraform and GitHub Actions

April 6, 2025April 9, 2025 ~ sourav kundu ~ 2 Comments

Public-facing load balancers are vulnerable to attacks, including DDoS, SQL injection, cross-site scripting (XSS), and bot attacks. These attacks can degrade the load balancer's performance, rendering it unavailable to legitimate users and negatively impacting business operations. AWS Web Application Firewall (WAF) is a service designed to protect resources like load balancers, Amazon CloudFront distributions, API … Continue reading Attach AWS WAF to load balancer using Terraform and GitHub Actions

Create VPC Flow logs to publish to Amazon CloudWatch Logs using Terraform

November 20, 2024 ~ sourav kundu ~ Leave a comment

VPC Flow Logs is a feature in Amazon Web Services (AWS) that enables capturing information about IP traffic going to and from network interfaces in the Virtual Private Cloud (VPC). These logs provide detailed visibility into network traffic, helping to monitor, troubleshoot, and analyze traffic patterns, security issues, and performance within the VPC. The logs … Continue reading Create VPC Flow logs to publish to Amazon CloudWatch Logs using Terraform

Install and configure CloudWatch Logs agent on Amazon EC2 instance for Linux using user data

October 21, 2024 ~ sourav kundu ~ 1 Comment

Amazon CloudWatch Logs Agent is a software component installed on servers that allows Cloud Engineering teams to monitor and collect log files from the servers and applications in real time. It sends log data to Amazon CloudWatch Logs, where they can be analyzed, searched, and visualized, thus making it easier to troubleshoot issues and monitor … Continue reading Install and configure CloudWatch Logs agent on Amazon EC2 instance for Linux using user data

Create infrastructure to host an Amazon ECS Service using Terraform

April 10, 2024October 6, 2024 ~ sourav kundu ~ 6 Comments

This is the first part of an umbrella note in which I describe how to create and deploy an Amazon ECS service using Terraform and GitHub Actions. The cloud engineering team must provision particular AWS cloud services before hosting a container in Amazon ECS. In this note, I list all the required AWS services, their … Continue reading Create infrastructure to host an Amazon ECS Service using Terraform