Manage the complex Security group rules in Terraform using CSV files generated by python instead of writing huge code.

In a small-scale application managing security group rules through Terraform HCL code is simple and combined with configs can be managed. But when variables like security, monitoring, and compliance come in the number of security group rules can touch to almost 50 for a single security group. Then managing and maintaining can be huge operations overhead.

To overcome this, managing the rules in a CSV and then giving it to Terraform to plan and then apply looks like a better plan…

This article will show how you can spin up an EC2 instance with Terraform and how we make it eligible for Ansible by default.

For managing or Configuring Windows EC2 instances, the winRM HTTPS port, i.e., 5986, should be opened. So we do have the ConfigureRemotingForAnsible PowerShell script for enabling Ansible on windows instance.

So here you can find how we can userdata of EC2 to make-instance available for configuration with Ansible. The idea for this came from the article, where the fleet of windows instances are added to the domain. In my case, I was required to do more things other than adding to the domain and I am quite comfortable with Ansible and like to stay away from powershell. …

As we keep advancing on Terraform and use it in the production environment, we start using some advanced commands for the same. Or some times even to start the process on a new host, we need to run from initialization to plan to apply. There may be a time when some steps might get miss due to human fatigue, or when sometimes a person who does not understand terraform, needs to run a taint with a terraform. In such a scenario, Makefile can be of great help—one of the basic orchestrators.

This solution is good for running terraform in platforms…

Although setting up a LAMP in this modern world is possible with containers, I recently came through as a task, and I want to share.

Here we have chosen our long-time good friend OS Ubuntu 20.4, and for the database, we have chosen AWS RDS MySQL. One of the major things RDS offer is that database is managed by AWS and also the updates, and they don’t need a NAT Gateway or instance to pull the updates. NATs are really costly. But anyway, RDS multi-zone is also not cheap. The Bill is going to be high. …

Amit Kumar Dash

I am a Senior Software Engineer at an IT company in Pune, India. And for Coding Coffee does not help me but an Indian Ginger Tea does the job.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store