Skip to content

Infrastructure Instances Tools


Apart from the EC2 instances that are part of Kubernetes, there are going to be other instances running tools for monitoring, logging centralization, builds/tests, deployment, among others. that are to be defined at this point. Some of them can be replaced by managed services, like: CircleCI, Snyk, etc, and this can have cons and pros that will need to be considered at the time of implementation. Any OS that is provisioned will be completely reproducible as code, in the event of migration to another vendor.

Other settings for all EC2 instances

  • Ubuntu 18.04 based (Latest AMI)
  • EBS volumes encrypted: Yes
  • EBS volume type: gp2 (SSD)
  • Termination protection: Yes

Infrastructure EC2 instances

  • VPN Server
    • Pritunl (
  • Monitoring & Alerting
    • Prometheus (
    • Grafana (
  • Centralized Logs
    • Elasticsearch + Kibana (
  • CI/CD
    • Jenkins (
    • Spinnaker (
    • Droneci (
    • Webhook (
  • Secret Mgmt
    • Hashicorp Vault (