Category

Tehnology

Cloudflare Access – Secure access to internal applications without a VPN

Cloudflare Access is a new innovative products to secure access to internal applications without a VPN. It build a fence around your internal applications no longer works for your global team. Cloudflare Access replaces corporate VPN clients by putting Cloudflare’s global edge network in front of your internal applications. How’s the Cloudflare Access work is…

ELK

Installing Elastalert for ELK Stack

ELK is one of the most famous monitoring stack which come with 2 version, which is commercial version and community version, it’s allow you to store, parse and monitor text data either is log or any unstructured data. ELK is consist of 3 software which is Elastic Log Stack / Filebeat (Log transfer and transformation),…

Provisioning ACM Certificates on AWS with Terraform

AWS Certificate Manager (ACM) is a service from AWS which provide the free on-demand TLS certificate. It’s similar to the Let’s Encrypt which provide the free cert for you, but the difference is that Amazon controls the Certificate Authority (Amazon Trust Services, LLC) behind the certificates, as well as the accompanying API to manage them.…

Installing Nginx Pagespeed Module

PageSpeed is a technology from Google, designed to help a website’s performance optimizations. Faster websites offer a better user experience, boost rankings in Google and increase conversion rates. Pagespeed lets you measure and (automatically) optimize your web pages and comply with web performance best practices. Speed up your web site and boost web performance! Assume…

Deploying EC2 with Private and Public Subnet Using Terraform in AWS

Terraform always the simple and easy way for us to deploying our infrastructure over the cloud, in this post, I will deploying 2 EC2 in the public and private subnet and try to access into the private EC2 using the public bastion host. A bastion host is a special-purpose computer on a network specifically designed and configured…

How to remove server header in Nginx

Nginx is one of the world most famous web server as per market share, security always a main concert when come to the web server and web application. By default, Nginx will always send the information in server HTTP header as well as on the error page. It’s always the best practise to hide up…

How to automate IP2Location BIN database download in Linux

IP2Location is one of the top IP database provider in the world as their database is being updated every 1st day of the month, in order to make use the latest database to keep data up to date, we may need to download, extract and import the database to our system. Thanks for the automation…

Passing client User-Agent from CloudFront to origin

These few days I try to setup the CloudFront for my website and everything working fine as per expected except the real user agent is not passing from the CloudFront to my origin server, instead it’s replace the user-agent to “Amazon CloudFront” when I check from my Nginx Log. After some Googling, and find out…

Updating AWS CloudFront IP to Nginx

CloudFront become a very common CDN/Reverse proxy nowadays because of their high availability and easy to use. So if you place a CloudFront as a proxy server in front of your Nginx web server, than the Nginx web server not able to get the real customer IP address. Same thing will happen if you using…

Deploying VPC with Terraform

Terraform is an open-source infrastructure as code software tools created by HashiCrop and it enables user to define and provisioning a datacenter infrastructure using high-level configuration language which is know as HashiCorp Configuration Language (HCL) or optionally you can using JSON. Terraform is platform independent tools where you can use it to code for infrastructure…

google.com, pub-3772983857049267, DIRECT, f08c47fec0942fa0