lambda-dns-lookup

command module

v0.1.9 Latest Latest Go to latest Published: Mar 1, 2021 License: MIT Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/natemarks/lambda-dns-lookup

Links

Open Source Insights

README ¶

lambda-dns-lookup

This lambda monitors the results of important DNS lookups to make sure that each returns the expected number of IP addresses. I use this terraform module to deploy the lambda and the alarm pipeline: https://github.com/natemarks/tf-aws-lambda-monitor

Once deployed, the lmbda can be configured wiht these environment variables:

DEBUG: [default: false] enable debug logging RANDOM_FAILURES: [default: false] randomly fire alarms for the difference failure modes LOOKUPS: json string that tells the lambda what FQDNs to check and how many addresses to expect for each

Understanding the alarms

Severity 1: Too few addresses - This is what we're looking for. It will cause intermittent failures for customers who use FQDN-based firewall ACLS. Somebody should wake up for this.

Severity 2: lookup failed - This is a blind spot for a test that shouldn't fail very often. It's ok to get to it next business day (NBD)

Severity 2: Can't parse LOOKUPS json - This is a blind spot for a test that shouldn't fail very often. It's ok to get to it next business day (NBD)

Severity 2: LOOKUPS env var is unset - This is a blind spot for a test that shouldn't fail very often. It's ok to get to it next business day (NBD)

Deployment

Build and push the lambda app to your bucket

copy example/config.json to the root
edit it accordingly
configure your aws client
run the following to build, izp and push the app to your bucket

make compile

Deploy the lambda -> alarm pipeline

copy example/deploy.tf to the root
edit it accordingly
configure your aws client and make sure you have terraform installed

NOTE: You need to get the OpsGenie endpoint from the opsgenie cloudwatch integration

run the following to create the lambda, logs, metrics, filters,alarms, SNS

terraform int && terraform plan
terraform apply

Future

use KMS/Parameter store instead of env vars

The function is configured by injecting environment variables using terraform.

NOTE: There is a limit on the total size of al environment variable data. If the test request has to exceed that, the project should be extended to get the data from parameter store

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL