CloudFront in Front of ALB: Receiving Traffic Only from the CDN
· Sanjeev Pandey
Bots hit our ALB directly while we thought CloudFront was 'the front door'. Locking the ALB to the CDN origin was the fix we should've done earlier.
Blog
DevOps and related articles.
-
-
Why AWS SCPs Matter: Managing Compliance Across Multiple Child Accounts
· Sanjeev Pandey
Someone turned on a public S3 bucket from a sandbox account tied to prod data paths. SCPs became the boundary we couldn't skip anymore.
-
Atlantis: Running Terraform on GitHub as Infra GitOps
· Sanjeev Pandey
Four or five DevOps engineers, all running Terraform from laptops and sure we owned the stack — until state locks, version drift, and silent applies collided with what we said we wanted from platform engineering.
-
Why 8.8.8.8 Is Fast Everywhere: Anycast in Plain English
· Sanjeev Pandey
Why public DNS like 8.8.8.8 feels fast and stable — a walk through Anycast, routing, and how the same IP can live in multiple places.
-
Service, Ingress, and Service Mesh: When Kube-Proxy Isn’t Enough
· Sanjeev Pandey
A closer look at when Kube-proxy (Service) is no longer used for service communication — with Ingress Controller and Service Mesh.
-
DNS vs Nameservers: What’s the Difference?
· Sanjeev Pandey
DNS vs Name Server — they're often used interchangeably, but there's a small, important difference. Here's a clear explanation with a real-world example (GoDaddy + Route53).
-
CI & CD: Concepts First, Tools Second
· Sanjeev Pandey
There is a lot fuss about the term called CI/CD in DevOps world — here’s a clear breakdown of CI, CD (delivery), and CD (deployment) as concepts, not just tools.
-
Hello, DevOps
· Sanjeev Pandey
First post on Back to Basics — a blog about understanding DevOps fundamentals, not just copying commands.