alternat
terraform-aws-secure-baseline
alternat | terraform-aws-secure-baseline | |
---|---|---|
10 | 1 | |
994 | 1,117 | |
1.7% | - | |
5.8 | 0.0 | |
7 days ago | about 1 month ago | |
HCL | HCL | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
alternat
-
Fck-nat: The (f)easible (C)ost (k)onfigurable NAT
This is perfect for preprod environments. I'd probably not deploy in production. There is a better nat instance setup available called alternat [1] which is a little more durable and better for production cases.
[1] https://github.com/1debit/alternat
-
AWS to Begin Charging for Public IPv4 Addresses
We use https://github.com/1debit/alternat in our EKS cluster to save the AWS tax (surcharge for NAT on top of the egress fee)
-
NAT Instances - monitoring and other operational concerns
Unfortunately we've been getting absolutely hammered by NAT gateway pricing, and we've had to switch over to NAT instances. We deployed (alternat)[https://github.com/1debit/alternat] for some OOTB resiliency, but I've never had to manage a group of NAT instances myself at this scale.
-
Painful bill for image pulls from ECR ?
alterNAT is another approach that makes it even easier, and falls back to NAT GW if needed.
-
Important Information about NAT Gateway in your Account emails
As for the alternatives they already exists. Feel free to create more if your like, more the merrier. https://github.com/1debit/alternat
- 1debit/alternat: High availability implementation of AWS NAT instances.
-
Is AWS affordable for small workloads for personal/family/community use?
You can go around NAT gateway costs (not completely) by using alternat: https://github.com/1debit/alternat
-
Setup Fargate on private subnet without NAT
Welcome to hell. I default to public subnets where possible; past that I either bend the knee or use alterNAT.
- High availability implementation of AWS NAT instances
- AlterNAT: High availability cost efficient implementation of AWS NAT instances
terraform-aws-secure-baseline
-
Curated GitHub repository on how organisations around the world use AWS
I found this -https://github.com/nozaq/terraform-aws-secure-baseline
What are some alternatives?
fck-nat - Feasible cost konfigurable NAT: An AWS NAT Instance AMI
CIS-Ubuntu-20.04-Ansible - Ansible Role to Automate CIS v1.1.0 Ubuntu Linux 18.04 LTS, 20.04 LTS Remediation
typhoon - Minimal and free Kubernetes distribution with Terraform
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
cloudblock - Cloudblock deploys secure ad-blocking and VPN for all devices. Text and video guides included! 6 supported cloud providers, plus Ubuntu and Raspberry Pi. Cloudblock deploys Wireguard VPN, Pi-Hole DNS Ad-blocking, and DNS over HTTPS in a cloud provider - or locally - using Terraform and Ansible.
terraform-aws-elasticache-redis - Terraform module to provision an ElastiCache Redis Cluster
terraform-aws-vpc - Terraform module to create AWS VPC resources πΊπ¦
steampipe-mod-aws-compliance - Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
terraform-aws-eks - Terraform module to create AWS Elastic Kubernetes (EKS) resources πΊπ¦
terragrunt-infrastructure-modules-example - A repo used to show examples file/folder structures you can use with Terragrunt and Terraform
terraform-aws-rds - Terraform module to create AWS RDS resources πΊπ¦
terrascan - Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.