Skip to content
/ lambda-in-private-vpc Public
generated from Hack23/templateopensource

A highly available system that runs in multiple AWS regions at the same time. It uses AWS Resilience Hub to ensure compliance with policies for Recovery Time Objective (RTO) and Recovery Point Objective (RPO)

License

Apache-2.0 license
3 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Hack23/lambda-in-private-vpc

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

181 Commits
.github
.github
 
 
AlarmRecommendation-apigateway
AlarmRecommendation-apigateway
 
 
SopRecommendation-apigateway
SopRecommendation-apigateway
 
 
cloudformation
cloudformation
 
 
CHANGELOG.md
CHANGELOG.md
 
 
CODEOWNERS
CODEOWNERS
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE.md
LICENSE.md
 
 
PULL_REQUEST_TEMPLATE.md
PULL_REQUEST_TEMPLATE.md
 
 
README.md
README.md
 
 
ResHub-AZ.png
ResHub-AZ.png
 
 
ResHub-Api.png
ResHub-Api.png
 
 
ResHub-app.png
ResHub-app.png
 
 
ResHub-globalTable.png
ResHub-globalTable.png
 
 
ResHub-infra.png
ResHub-infra.png
 
 
ResHub-region.png
ResHub-region.png
 
 
ResilienceHubPolicy.png
ResilienceHubPolicy.png
 
 
ResiliencyHub-App-rec1.png
ResiliencyHub-App-rec1.png
 
 
ResiliencyHub-App-rec2.png
ResiliencyHub-App-rec2.png
 
 
ResiliencyHub-App.png
ResiliencyHub-App.png
 
 
SECURITY.md
SECURITY.md
 
 
route53-policy.png
route53-policy.png
 
 
standardlint.json
standardlint.json
 
 

Repository files navigation

lambda-in-private-vpc

status : WIP

POC of multi region active/active site with resilience hub policy compliance with RTO/RPO 5 Min for Application/AZ/Region failures with setup SOP and fault injections(proof of executions of SOP) Zero trust example

Api gateway with schema request validation and cross region replicated dynamodb. Route53 geolocation dns setup. Using https://github.com/aws-samples/amazon-cloudfront-secure-static-site with Cloudfront failover S3 bucket in different region for frontend.

https://api.hack23.com/v1/healthcheck

Badges license OpenSSF Scorecard

Concepts

https://docs.aws.amazon.com/resilience-hub/latest/userguide/concepts-terms.html

Policy

Route53 Policy

App

Infrastructure

App recommendation

App recommendation2

https://aws.amazon.com/route53/application-recovery-controller/ https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/resolver-dns-firewall.html

https://github.com/mikaelvesavuori/slamax / https://github.com/mikaelvesavuori/cloud-sla

Please refer to https://aws.amazon.com/legal/service-level-agreements/ for more information.

Service Key SLA
Amazon API Gateway amazon-api-gateway 99.95%
Amazon CloudWatch (including Metrics API, Logs Data Ingestion API and Alarms) amazon-cloudwatch 99.9%
Amazon DynamoDB (Global Tables SLA) amazon-dynamodb-globaltables 99.999%
Amazon Messaging (SQS, SNS) amazon-messaging 99.9%
Amazon Route 53 amazon-route53 100%
AWS Certificate Manager Private Certificate Authority aws-certificate-manager-privateca 99.9%
AWS Key Management Service (KMS) aws-kms 99.999%
AWS Lambda aws-lambda 99.95%
AWS WAF aws-waf 99.95%
AWS X-Ray aws-xray 99.9%

SLA MAX = 0.994592393 (0.9995 * 0.999 * 0.99999 * 0.999 1* 0.999 * 0.99999 * 0.9995 * 0.9995 * 0.999)

SLO = 99.45%

SLA level of 99.45 % uptime/availability results in the following periods of allowed downtime/unavailability:

Daily: 7m 55s Weekly: 55m 26s Monthly: 3h 59m 4.8s Quarterly: 11h 57m 14s Yearly: 1d 23h 48m 58s Direct link to the page with these results: https://uptime.is/99.45

Multi region active/active is more resilient to regional failures and dynamodb global tables (99.999%)

Region

https://aws.amazon.com/premiumsupport/technology/pes/

About

A highly available system that runs in multiple AWS regions at the same time. It uses AWS Resilience Hub to ensure compliance with policies for Recovery Time Objective (RTO) and Recovery Point Objective (RPO)

Topics

route53 aws lambda dynamodb vpc compliance high-availability cyber-security disaster-recovery chaos-engineering dns-firewall resilience-hub fault-injection-service

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

3 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases 25

Release v0.0.24 Latest
Feb 5, 2025
+ 24 releases

Contributors 5