🔐 IAM (Global)
IAM Compliance Findings
12
Total IAM Users
12
Users Without MFA
0
Access Keys >90 Days Old
1
Users with Admin Access
IAM Users
| User Name | MFA Enabled | Access Key ID | Key Status | Key Created |
|---|---|---|---|---|
| daniel_borg | No | - | - | - |
| github-actions-prod | No | AKIAYHXOWBWO3KXZT3LV | Active | 2025-11-13 |
| github-actions-prod | No | AKIAYHXOWBWO6SYXSHLS | Active | 2025-12-04 |
| loco | No | - | - | - |
| razed_prod_cms_nginx_s3_gateway | No | AKIAYHXOWBWO2W7WOGEN | Active | 2025-11-09 |
| razed_prod_devops | No | AKIAYHXOWBWO5C3OWOWV | Active | 2025-11-11 |
| razed_prod_ecs_deploy | No | AKIAYHXOWBWOVTZ6D3TW | Active | 2025-11-10 |
| razed_prod_ecs_deploy | No | AKIAYHXOWBWOTARF4EPO | Active | 2025-11-12 |
| razed_prod_grafana | No | - | - | - |
| razed_prod_infras_watcher | No | AKIAYHXOWBWO2ZBX4WFL | Active | 2025-11-13 |
| razed_prod_s3upload | No | AKIAYHXOWBWOVLLKIFZD | Active | 2025-11-09 |
| razed_prod_sqs | No | AKIAYHXOWBWO5R6OP4HQ | Active | 2025-11-09 |
| spintech_bi | No | - | - | - |
| test_can_le | No | - | - | - |
Users with AdministratorAccess Policy
| User Name |
|---|
| razed_prod_devops |
📍 Region: eu-west-2
VPCs & Subnets
| Name | VPC ID | CIDR Block | State | Tenancy | Tags |
|---|---|---|---|---|---|
| aws-controltower-VPC | vpc-04e2d350a363a45bc |
172.31.0.0/16 | available | default | aws:cloudformation:logical-id=VPCaws:cloudformation:stack-name=StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692aws:cloudformation:stack-id=arn:aws:cloudformation:eu-west-2:566362508701:stack/StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692/b3e6a460-2bd9-11f0-92ae-06e9a4b860a1 |
Subnets
| Name | Subnet ID | VPC ID | CIDR Block | AZ | Available IPs | Public IP on Launch | Tags |
|---|---|---|---|---|---|---|---|
| aws-controltower-PrivateSubnet1A | subnet-0fc17df6d1f8a54d3 |
vpc-04e2d350a363a45bc | 172.31.64.0/20 | eu-west-2a | 4091 | No | Network=Privateaws:cloudformation:logical-id=PrivateSubnet1Aaws:cloudformation:stack-name=StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692aws:cloudformation:stack-id=arn:aws:cloudformation:eu-west-2:566362508701:stack/StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692/b3e6a460-2bd9-11f0-92ae-06e9a4b860a1 |
| aws-controltower-PrivateSubnet2A | subnet-0c9e10dea9543b183 |
vpc-04e2d350a363a45bc | 172.31.32.0/20 | eu-west-2b | 4091 | No | Network=Privateaws:cloudformation:logical-id=PrivateSubnet2Aaws:cloudformation:stack-id=arn:aws:cloudformation:eu-west-2:566362508701:stack/StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692/b3e6a460-2bd9-11f0-92ae-06e9a4b860a1aws:cloudformation:stack-name=StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692 |
| aws-controltower-PrivateSubnet3A | subnet-0557c20655c5e120a |
vpc-04e2d350a363a45bc | 172.31.80.0/20 | eu-west-2c | 4091 | No | aws:cloudformation:logical-id=PrivateSubnet3Aaws:cloudformation:stack-name=StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692Network=Privateaws:cloudformation:stack-id=arn:aws:cloudformation:eu-west-2:566362508701:stack/StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692/b3e6a460-2bd9-11f0-92ae-06e9a4b860a1 |
Lambda Functions
| Function Name | Runtime | Memory | Timeout | VPC | Last Modified | Tags |
|---|---|---|---|---|---|---|
| aws-controltower-NotificationForwarder | python3.13 | 128 MB | 60s | No VPC | 2025-08-21 | aws:cloudformation:logical-id=ForwardSnsNotificationaws:cloudformation:stack-id=arn:aws:cloudformation:eu-west-2:566362508701:stack/StackSet-AWSControlTowerBP-BASELINE-CLOUDWATCH-3aa2cef9-23bb-4655-9479-1552cf1f64ae/39d40820-2bd9-11f0-b144-061e0cf54379aws:cloudformation:stack-name=StackSet-AWSControlTowerBP-BASELINE-CLOUDWATCH-3aa2cef9-23bb-4655-9479-1552cf1f64ae |
CloudWatch Log Groups
Total Log Groups: 2
Without Retention Policy: 0
| Log Group Name | Retention (Days) | Stored Size |
|---|---|---|
/aws/lambda/aws-controltower-NotificationForwarder |
14 | 0 B |
StackSet-AWSControlTowerBP-VPC-ACCOUNT-FACTORY-V1-4b5d019f-edd2-4def-a970-bfdb9bf5a692-VPCFlowLogsLogGroup-Pa2pkdc3h8Xo |
90 | 0 B |
Compliance Findings
Network & Security (Section 5.2)
0
Open Security Groups (0.0.0.0/0)
0
EC2 Without IMDSv2
Yes
CloudTrail Enabled
Data Protection (Section 5.4)
0
Unencrypted EBS Volumes
0
Unencrypted RDS
0
SQS Without Encryption
Logging & Monitoring (Section 5.3)
0
Log Groups (No Retention)
RDS Standards (Section 7)
0
Public RDS Instances
0
RDS Without Multi-AZ
0
RDS Without Backups
Lambda Standards (Section 7)
0
Lambda Default Timeout (3s)
1
Lambda Without DLQ
SQS Standards (Section 7)
0
SQS Without DLQ
ECS Standards (Section 7)
0
Plaintext Env Vars
0
Privileged Containers
📍 Region: eu-central-1
AWS Amplify Apps
| App Name | App ID | Platform | Repository | Default Domain | Production Branch | Branches | Created | Tags |
|---|---|---|---|---|---|---|---|---|
| razed-promotions-lp | d1imrl3ohaawwu |
WEB_COMPUTE | https://github.com/bwgservices/razed-promotions-lp | d1imrl3ohaawwu.amplifyapp.com | main | 2 | 2025-11-14 | - |
| razed-partners-site | d235eymn3yxs1q |
WEB_COMPUTE | https://github.com/bwgservices/razed-partners-site | d235eymn3yxs1q.amplifyapp.com | main | 1 | 2025-10-17 | - |
Amplify Branches
| App Name | Branch Name | Stage | Framework | Auto Build | Basic Auth | Total Jobs |
|---|---|---|---|---|---|---|
| razed-promotions-lp | main | PRODUCTION | Next.js - SSR | Yes | No | 0 |
| razed-promotions-lp | stage | NONE | - | Yes | No | 0 |
| razed-partners-site | main | PRODUCTION | Next.js - SSR | Yes | No | 0 |
CloudWatch Log Groups
Total Log Groups: 2
Without Retention Policy: 2
| Log Group Name | Retention (Days) | Stored Size |
|---|---|---|
/aws/amplify/d1imrl3ohaawwu |
Never Expire | 4.14 MB |
/aws/amplify/d235eymn3yxs1q |
Never Expire | 9.36 MB |
Compliance Findings
Network & Security (Section 5.2)
0
Open Security Groups (0.0.0.0/0)
0
EC2 Without IMDSv2
Yes
CloudTrail Enabled
Data Protection (Section 5.4)
0
Unencrypted EBS Volumes
0
Unencrypted RDS
0
SQS Without Encryption
Logging & Monitoring (Section 5.3)
2
Log Groups (No Retention)
RDS Standards (Section 7)
0
Public RDS Instances
0
RDS Without Multi-AZ
0
RDS Without Backups
Lambda Standards (Section 7)
0
Lambda Default Timeout (3s)
0
Lambda Without DLQ
SQS Standards (Section 7)
0
SQS Without DLQ
ECS Standards (Section 7)
0
Plaintext Env Vars
0
Privileged Containers
📍 Region: eu-central-2
VPCs & Subnets
| Name | VPC ID | CIDR Block | State | Tenancy | Tags |
|---|---|---|---|---|---|
| razed-prod-vpc | vpc-0a76db2b3c67c397d |
10.0.0.0/16 | available | default | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| signoz-integration-agent | vpc-0f17c61a2433c8e48 |
10.0.0.0/16 | available | default | Environment=devaws:cloudformation:stack-id=arn:aws:cloudformation:eu-central-2:566362508701:stack/signoz-integration/2eefcbd0-f22e-11f0-9554-062d74e09915aws:cloudformation:stack-name=signoz-integrationManagedBy=CloudFormationapp=signozaws:cloudformation:logical-id=VPCDataClassification=internalbrand=razedlocation=eu-central-2map-migrated=migS0EK6JMBZC |
| cloudnomads-cdk-builder | vpc-0e95ea1ca9e7f42f6 |
100.64.0.0/28 | available | default | aws:cloudformation:stack-id=arn:aws:cloudformation:eu-central-2:566362508701:stack/cloudnomads-cdk-builder/aab39b50-7f3f-11f0-90d1-06e33691b4b9aws:cloudformation:stack-name=cloudnomads-cdk-builderaws:cloudformation:logical-id=CdkBuilderVpc |
Subnets
| Name | Subnet ID | VPC ID | CIDR Block | AZ | Available IPs | Public IP on Launch | Tags |
|---|---|---|---|---|---|---|---|
| razed-prod-private-subnet-1 | subnet-0024400abb20c68e7 |
vpc-0a76db2b3c67c397d | 10.0.1.0/24 | eu-central-2a | 195 | No | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| razed-prod-public-subnet-1 | subnet-0a18179d35f6d7960 |
vpc-0a76db2b3c67c397d | 10.0.2.0/24 | eu-central-2a | 234 | No | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| razed-prod-private-subnet-2 | subnet-04bba2aae7e23e191 |
vpc-0a76db2b3c67c397d | 10.0.3.0/24 | eu-central-2b | 208 | No | Environment=prodmap-migrated=migS0EK6JMBZCCustomer=razed |
| razed-prod-public-subnet-2 | subnet-0ec9cdc34e5acf3ba |
vpc-0a76db2b3c67c397d | 10.0.4.0/24 | eu-central-2b | 244 | No | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| signoz-integration-1 | subnet-03f62055972c4b375 |
vpc-0f17c61a2433c8e48 | 10.0.1.0/24 | eu-central-2a | 250 | Yes | DataClassification=internalbrand=razedlocation=eu-central-2aws:cloudformation:stack-id=arn:aws:cloudformation:eu-central-2:566362508701:stack/signoz-integration/2eefcbd0-f22e-11f0-9554-062d74e09915map-migrated=migS0EK6JMBZCapp=signozaws:cloudformation:logical-id=Subnet1Environment=devaws:cloudformation:stack-name=signoz-integrationManagedBy=CloudFormation |
| PubSub | subnet-09f702fc76eee5e74 |
vpc-0e95ea1ca9e7f42f6 | 100.64.0.0/28 | eu-central-2c | 10 | Yes | aws:cloudformation:stack-id=arn:aws:cloudformation:eu-central-2:566362508701:stack/cloudnomads-cdk-builder/aab39b50-7f3f-11f0-90d1-06e33691b4b9aws:cloudformation:logical-id=PublicSubnetaws:cloudformation:stack-name=cloudnomads-cdk-builder |
| signoz-integration-2 | subnet-077579f0d67c5f640 |
vpc-0f17c61a2433c8e48 | 10.0.2.0/24 | eu-central-2b | 251 | Yes | app=signozaws:cloudformation:logical-id=Subnet2map-migrated=migS0EK6JMBZCDataClassification=internalbrand=razedlocation=eu-central-2ManagedBy=CloudFormationaws:cloudformation:stack-id=arn:aws:cloudformation:eu-central-2:566362508701:stack/signoz-integration/2eefcbd0-f22e-11f0-9554-062d74e09915Environment=devaws:cloudformation:stack-name=signoz-integration |
EC2 Instances
| Name | Instance ID | Type | State | Public IP | Private IP | VPC | Security Groups | AMI | Key Pair | IAM Profile | EBS Volumes | IMDSv2 | Tags |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-08f4e1d429a40220f |
c5.4xlarge | running | - | 10.0.3.145 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | map-migrated=migS0EK6JMBZCAmazonECSManaged=ECS Cluster managed by AmazonCustomer=razedEnvironment=prodaws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clusteraws:ec2launchtemplate:id=lt-09c900db0a2f85a98aws:ec2launchtemplate:version=2 |
| ECS Instance - EC2ContainerService-razed-prod-bo-agent-ecs-cluster | i-05c96f32095d59c13 |
c5.2xlarge | running | - | 10.0.3.98 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | aws:ec2launchtemplate:id=lt-02ef358938c400323map-migrated=migS0EK6JMBZCEnvironment=prodaws:ec2launchtemplate:version=2Customer=razedAmazonECSManaged=ECS Cluster managed by Amazonaws:autoscaling:groupName=razed-prod-Asg-bo-agent-ecs-cluster |
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-0985c64118d08c43e |
c5.4xlarge | running | - | 10.0.3.228 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | Customer=razedaws:ec2launchtemplate:id=lt-09c900db0a2f85a98aws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clusteraws:ec2launchtemplate:version=2map-migrated=migS0EK6JMBZCAmazonECSManaged=ECS Cluster managed by AmazonEnvironment=prod |
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-0fa9f06a2a4e17ce6 |
c5.4xlarge | running | - | 10.0.3.41 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | map-migrated=migS0EK6JMBZCAmazonECSManaged=ECS Cluster managed by Amazonaws:ec2launchtemplate:id=lt-09c900db0a2f85a98Customer=razedEnvironment=prodaws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clusteraws:ec2launchtemplate:version=2 |
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-0be0a3584c6d431e2 |
c5.4xlarge | running | - | 10.0.3.204 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | aws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clusteraws:ec2launchtemplate:version=2Environment=prodCustomer=razedaws:ec2launchtemplate:id=lt-09c900db0a2f85a98AmazonECSManaged=ECS Cluster managed by Amazonmap-migrated=migS0EK6JMBZC |
| cloudnomads-cdk-builder | i-032fce87822394044 |
t3.medium | stopped | - | 100.64.0.13 | vpc-0e95ea1ca9e7f42f6 | sg-0a29f5492dd6dd632 | ami-00b6f98cae1e6d59c | - | cloudnomads-cdk-builder-CdkBuilderInstanceProfile-fMQTnh98jn81 | 1 | required | aws:cloudformation:stack-name=cloudnomads-cdk-buildermap-migrated=migS0EK6JMBZCaws:cloudformation:stack-id=arn:aws:cloudformation:eu-central-2:566362508701:stack/cloudnomads-cdk-builder/aab39b50-7f3f-11f0-90d1-06e33691b4b9aws:cloudformation:logical-id=CdkBuilderEc2Instance |
| razed_prod_monitoring | i-0dd4edd4d09d6e18e |
t3.medium | running | - | 10.0.1.37 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-08b0336c66e876ba6 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | required | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| razed_prod_bastion_host | i-06c3ae504049c22be |
t3.medium | running | 51.34.34.16 | 10.0.2.207 | vpc-0a76db2b3c67c397d | sg-04d6665e44493af92 | ami-08b0336c66e876ba6 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | required | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| Temporary_for_migrations | i-0431fafc724fafc38 |
t3.medium | running | 16.62.48.136 | 10.0.2.178 | vpc-0a76db2b3c67c397d | sg-04d6665e44493af92, sg-0b51582c8ff474502 | ami-075ba1075ae54f0b1 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | required | - |
| razed_prod_mongodb_cms | i-0f790971a6a7ca52f |
c5.2xlarge | running | - | 10.0.1.94 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-07ac023c37f93098f | razed_prod_Feb2024 | SSMInstanceProfile | 1 | optional | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| temporary_bitbucket_runner | i-06fdd993c4273e700 |
t3.large | running | - | 10.0.1.50 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-075ba1075ae54f0b1 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | required | - |
| razed_prod_integration_graylog | i-0af9fe5f3d99ded88 |
t3.xlarge | running | 16.62.126.11 | 10.0.2.31 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-0a694bc80cf7bad83 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | optional | Environment=prodmap-migrated=migS0EK6JMBZCCustomer=razed |
| razed_prod_graylog | i-066180850d3a566f3 |
r5.xlarge | running | 16.62.169.27 | 10.0.2.168 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-0d7ea80a571195232 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | optional | Customer=razedmap-migrated=migS0EK6JMBZCEnvironment=prod |
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-097a1acae04dd1576 |
c5.4xlarge | running | - | 10.0.1.107 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | Customer=razedaws:ec2launchtemplate:version=2aws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clusteraws:ec2launchtemplate:id=lt-09c900db0a2f85a98Environment=prodmap-migrated=migS0EK6JMBZCAmazonECSManaged=ECS Cluster managed by Amazon |
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-0d290d0c4facba7f0 |
c5.4xlarge | running | - | 10.0.1.251 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | Customer=razedaws:ec2launchtemplate:id=lt-09c900db0a2f85a98Environment=prodaws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clusteraws:ec2launchtemplate:version=2map-migrated=migS0EK6JMBZCAmazonECSManaged=ECS Cluster managed by Amazon |
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-06d936aded3eec236 |
c5.4xlarge | running | - | 10.0.1.179 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | AmazonECSManaged=ECS Cluster managed by Amazonmap-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prodaws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clusteraws:ec2launchtemplate:id=lt-09c900db0a2f85a98aws:ec2launchtemplate:version=2 |
| ECS Instance - EC2ContainerService-razed-prod-fe-cms-cdn-websocket-ecs-cluster | i-0aa14f0a36a1850de |
c5.4xlarge | running | - | 10.0.1.8 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | AmazonECSManaged=ECS Cluster managed by Amazonaws:ec2launchtemplate:version=2aws:autoscaling:groupName=razed-prod-Asg-fe-cms-cdn-websocket-ecs-clustermap-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prodaws:ec2launchtemplate:id=lt-09c900db0a2f85a98 |
| razed_prod_elk | i-0b98a090f9b97a8d0 |
c5.2xlarge | running | 16.63.223.29 | 10.0.2.123 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-0571ab41a8708ee93 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | optional | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| razed_prod_metabase | i-0af2770fcb3adfa3d |
t3.xlarge | running | - | 10.0.1.205 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-012a211e74abc4111 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | optional | Environment=prodCustomer=razedmap-migrated=migS0EK6JMBZC |
| ECS Instance - EC2ContainerService-razed-prod-bo-agent-ecs-cluster | i-04c99825acabc41eb |
c5.2xlarge | running | - | 10.0.1.233 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | Customer=razedAmazonECSManaged=ECS Cluster managed by Amazonaws:autoscaling:groupName=razed-prod-Asg-bo-agent-ecs-clusteraws:ec2launchtemplate:id=lt-02ef358938c400323Environment=prodaws:ec2launchtemplate:version=2map-migrated=migS0EK6JMBZC |
| ECS Instance - EC2ContainerService-razed-prod-cronjob-ecs-cluster | i-07c48e3c57e56647c |
c5.2xlarge | running | - | 10.0.1.166 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02bc0fbabbf6f7602 | razed_prod_Feb2024 | SSM_EcsInstanceProfile | 1 | required | aws:ec2launchtemplate:version=3AmazonECSManaged=ECS Cluster managed by Amazonaws:autoscaling:groupName=razed-prod-Asg-cronjob-ecs-clusterCustomer=razedEnvironment=prodaws:ec2launchtemplate:id=lt-07c54aaa1bd4baa3fmap-migrated=migS0EK6JMBZC |
| razed_prod_nats_1 | i-06ea058d6510eb1c8 |
t3.small | running | - | 10.0.1.167 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02beb7aac9a9a82a1 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | required | Environment=prodCustomer=razedmap-migrated=migS0EK6JMBZC |
| razed_prod_nats_2 | i-00ba885b35f633cc8 |
t3.small | running | - | 10.0.1.86 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02beb7aac9a9a82a1 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | required | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| razed_prod_nats_0 | i-0527ca5ccb66ee7f3 |
t3.small | running | - | 10.0.1.189 | vpc-0a76db2b3c67c397d | sg-074721e7caa18b535 | ami-02beb7aac9a9a82a1 | razed_prod_Feb2024 | SSMInstanceProfile | 1 | required | Environment=prodmap-migrated=migS0EK6JMBZCCustomer=razed |
| razed_prod_airflow_dwhdocs | i-0bdfb965835e0ece2 |
t3.xlarge | running | 51.34.157.7 | 10.0.2.167 | vpc-0a76db2b3c67c397d | sg-04d6665e44493af92, sg-074721e7caa18b535 | ami-0eca652055ca2e595 | razed_prod_Feb2024 | SSMInstanceProfile | 2 | optional | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
EBS Volumes
| Name | Volume ID | Size (GiB) | Type | State | Encrypted | IOPS | Attached Instance | Device | AZ | Tags |
|---|---|---|---|---|---|---|---|---|---|---|
| razed_prod_monitoring_volume | vol-0e4d86e599dc2993f |
80 | gp3 | in-use | No | 3000 | i-0dd4edd4d09d6e18e | /dev/sda1 | eu-central-2a | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| razed_prod_airflow_dwhdocs_volume | vol-0d5629e8d6335c93c |
200 | gp3 | in-use | No | 3000 | i-0bdfb965835e0ece2 | /dev/sda1 | eu-central-2a | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| - | vol-09988f274eab3dab5 |
50 | gp3 | in-use | No | 3000 | i-05c96f32095d59c13 | /dev/xvda | eu-central-2b | - |
| - | vol-0eaac7f1c55449755 |
100 | gp3 | in-use | No | 3000 | i-0be0a3584c6d431e2 | /dev/xvda | eu-central-2b | - |
| - | vol-0333c0e84565f1a41 |
100 | gp3 | in-use | No | 3000 | i-097a1acae04dd1576 | /dev/xvda | eu-central-2a | - |
| terragon-core-server-for-bi-report-airflow-18Dec2025-data-volume | vol-03e274427012f764e |
300 | gp3 | in-use | No | 3000 | i-0bdfb965835e0ece2 | /dev/xvdbb | eu-central-2a | - |
| - | vol-0e5442cdfcaa66e0e |
50 | gp3 | in-use | No | 3000 | i-06fdd993c4273e700 | /dev/sda1 | eu-central-2a | - |
| razed_prod_mongodb_cms_volume | vol-007705f2a37510a90 |
50 | gp3 | in-use | No | 3000 | i-0f790971a6a7ca52f | /dev/sda1 | eu-central-2a | map-migrated=migS0EK6JMBZCEnvironment=prodCustomer=razed |
| - | vol-08dee65160a9beb57 |
50 | gp3 | in-use | No | 3000 | i-04c99825acabc41eb | /dev/xvda | eu-central-2a | - |
| - | vol-041acb7f8c6b8e095 |
100 | gp3 | in-use | No | 3000 | i-0d290d0c4facba7f0 | /dev/xvda | eu-central-2a | - |
| - | vol-0de22004716d36ad7 |
100 | gp3 | in-use | No | 3000 | i-08f4e1d429a40220f | /dev/xvda | eu-central-2b | - |
| razed_prod_nats_2_volume | vol-04c60a1e28e49ce5d |
50 | gp3 | in-use | No | 3000 | i-00ba885b35f633cc8 | /dev/sda1 | eu-central-2a | Environment=prodCustomer=razedmap-migrated=migS0EK6JMBZC |
| - | vol-042e442aaae54c62a |
500 | gp3 | in-use | No | 3000 | i-0431fafc724fafc38 | /dev/sda1 | eu-central-2a | - |
| razed_prod_metabase_volume | vol-00fe037a79f971971 |
50 | gp3 | in-use | No | 3000 | i-0af2770fcb3adfa3d | /dev/sda1 | eu-central-2a | Customer=razedmap-migrated=migS0EK6JMBZCEnvironment=prod |
| razed_prod_integration_graylog_volume | vol-00acd85f90f84b42f |
3000 | gp3 | in-use | No | 3000 | i-0af9fe5f3d99ded88 | /dev/sda1 | eu-central-2a | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| razed_prod_nats_0_volume | vol-0f1049304bba7193a |
50 | gp3 | in-use | No | 3000 | i-0527ca5ccb66ee7f3 | /dev/sda1 | eu-central-2a | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| - | vol-01b8df59083b42e54 |
100 | gp3 | in-use | No | 3000 | i-0aa14f0a36a1850de | /dev/xvda | eu-central-2a | - |
| - | vol-0d7106119d54084b3 |
100 | gp3 | in-use | No | 3000 | i-0fa9f06a2a4e17ce6 | /dev/xvda | eu-central-2b | - |
| - | vol-03a0696c92f1d3c0b |
100 | gp3 | in-use | No | 3000 | i-0985c64118d08c43e | /dev/xvda | eu-central-2b | - |
| razed_prod_graylog_volume | vol-0b4a33fa0019d7e07 |
3500 | gp3 | in-use | No | 3000 | i-066180850d3a566f3 | /dev/sda1 | eu-central-2a | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| razed_prod_elk_volume | vol-01c37671ead1e5c39 |
50 | gp3 | in-use | No | 3000 | i-0b98a090f9b97a8d0 | /dev/sda1 | eu-central-2a | Environment=prodmap-migrated=migS0EK6JMBZCCustomer=razed |
| - | vol-0ac63635e43ca2fdc |
50 | gp3 | in-use | No | 3000 | i-032fce87822394044 | /dev/sda1 | eu-central-2c | - |
| - | vol-027cb72b7e98e8143 |
100 | gp3 | in-use | No | 3000 | i-06d936aded3eec236 | /dev/xvda | eu-central-2a | - |
| - | vol-05367eec62e37ba38 |
50 | gp3 | in-use | No | 3000 | i-07c48e3c57e56647c | /dev/xvda | eu-central-2a | - |
| razed_prod_bastion_host_volume | vol-072ee9f901b84710d |
30 | gp3 | in-use | No | 3000 | i-06c3ae504049c22be | /dev/sda1 | eu-central-2a | Environment=prodmap-migrated=migS0EK6JMBZCCustomer=razed |
| razed_prod_nats_1_volume | vol-0886e73e00e2b5460 |
50 | gp3 | in-use | No | 3000 | i-06ea058d6510eb1c8 | /dev/sda1 | eu-central-2a | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
ECS Clusters
| Cluster Name | Status | Running Tasks | Pending Tasks | Active Services | Container Instances |
|---|---|---|---|---|---|
| razed-house-games-prod-cluster | ACTIVE | 5 | 0 | 5 | 0 |
| razed-prod-bo-agent-ecs-cluster | ACTIVE | 2 | 0 | 1 | 2 |
| razed-prod-api-fargate-ecs-cluster | ACTIVE | 35 | 0 | 1 | 0 |
| razed-prod-queue-worker-fargate-ecs-cluster | ACTIVE | 4 | 0 | 2 | 0 |
| signoz-integration | ACTIVE | 1 | 0 | 1 | 0 |
| razed-prod-callback-fargate-ecs-cluster | ACTIVE | 18 | 0 | 2 | 0 |
| prod-zurich-bo-house-games-api-cluster | ACTIVE | 1 | 0 | 1 | 0 |
| razed-prod-game-proxy-fargate-ecs-cluster | ACTIVE | 3 | 0 | 1 | 0 |
| razed-prod-fe-cms-cdn-websocket-ecs-cluster | ACTIVE | 29 | 0 | 5 | 8 |
| razed-prod-cronjob-ecs-cluster | ACTIVE | 1 | 0 | 1 | 1 |
ECS Services
| Service Name | Status | Desired | Running | Launch Type | Task Definition | Load Balancers | Security Groups |
|---|---|---|---|---|---|---|---|
| signoz-integration-SignozIntegrationAgentECSService-tsGFESLL89xm | ACTIVE | 1 | 1 | FARGATE | signoz-integration-agent:2 | 0 target groups | |
| razed-prod-golang-queue-consumer-service | ACTIVE | 2 | 2 | FARGATE | razed-prod-golang-queue-consumer-task-definitions:4 | 0 target groups | sg-074721e7caa18b535 |
| razed-prod-queue-worker-service | ACTIVE | 2 | 2 | FARGATE | razed-prod-queue-worker-task-definitions:44 | 0 target groups | sg-074721e7caa18b535 |
| razed-house-games-prod-common-svc | ACTIVE | 1 | 1 | FARGATE | razed-house-games-prod-common:7 | 1 target groups | sg-0b580b176ba2cd4ec |
| razed-house-games-prod-blackjack-svc | ACTIVE | 1 | 1 | FARGATE | razed-house-games-prod-blackjack:18 | 1 target groups | sg-0b580b176ba2cd4ec |
| razed-house-games-prod-service | ACTIVE | 1 | 1 | FARGATE | razed-house-games-prod-task-definition:13 | 1 target groups | sg-0b580b176ba2cd4ec |
| razed-house-games-prod-plinko-svc | ACTIVE | 1 | 1 | FARGATE | razed-house-games-prod-plinko:10 | 1 target groups | sg-0b580b176ba2cd4ec |
| prod-london-razed-housegames-redis-svc | ACTIVE | 1 | 1 | FARGATE | prod-london-razed-housegames-redis:2 | 0 target groups | sg-0b580b176ba2cd4ec |
| razed-prod-bo-service | ACTIVE | 2 | 2 | EC2 | razed-prod-bo-task-definitions:45 | 1 target groups | |
| razed-prod-api-service | ACTIVE | 35 | 35 | FARGATE | razed-prod-api-task-definitions:45 | 1 target groups | sg-074721e7caa18b535 |
| razed-prod-websocket-services | ACTIVE | 5 | 5 | EC2 | razed-prod-websocket-task-definitions:2 | 2 target groups | |
| razed-prod-cdn-cms-service | ACTIVE | 2 | 2 | EC2 | razed-prod-cdn-cms-task-definitions:4 | 1 target groups | |
| razed-prod-fe-service | ACTIVE | 12 | 12 | EC2 | razed-prod-fe-task-definitions:35 | 1 target groups | |
| razed-prod-new-fe-service | ACTIVE | 2 | 2 | EC2 | razed-prod-new-fe-task-definitions:6 | 1 target groups | |
| razed-prod-cms-service | ACTIVE | 8 | 8 | EC2 | razed-prod-cms-task-definitions:2 | 2 target groups | |
| razed-prod-golang-callback-service | ACTIVE | 2 | 2 | FARGATE | razed-prod-golang-callback-task-definitions:4 | 2 target groups | sg-074721e7caa18b535 |
| razed-prod-callback-service | ACTIVE | 16 | 16 | FARGATE | razed-prod-callback-task-definitions:45 | 2 target groups | sg-074721e7caa18b535 |
| razed-prod-cronjob-service | ACTIVE | 1 | 1 | EC2 | razed-prod-cronjob-task-definitions:44 | 0 target groups | |
| prod-zurich-bo-house-games-api-service | ACTIVE | 1 | 1 | FARGATE | prod-zurich-bo-house-games-api-task-def:2 | 1 target groups | sg-0fcaddb72e6512905 |
| razed-prod-game-proxy-service | ACTIVE | 3 | 3 | FARGATE | razed-prod-game-proxy-fargate-task-definitions:2 | 1 target groups | sg-074721e7caa18b535 |
ECS Task Definitions (Active)
| Family | Rev | CPU | Memory | Containers | Task Role | Privileged | Env Vars | Secrets | Log Config |
|---|---|---|---|---|---|---|---|---|---|
| prod-london-razed-housegames-redis | 2 | 256 | 512 | 1 | Yes | No | 0 | 0 | awslogs:/ecs/razed-house-games-prod |
| prod-zurich-bo-house-games-api-task-def | 2 | 4096 | 8192 | 1 <small class="text-muted">(+router)</small> | No | No | 10 | 6 | grafana-loki |
| razed-house-games-prod-blackjack | 18 | 2048 | 4096 | 3 <small class="text-muted">(+router)</small> | Yes | No | 4 | 15 | grafana-loki |
| razed-house-games-prod-common | 7 | 2048 | 4096 | 3 <small class="text-muted">(+router)</small> | Yes | No | 2 | 9 | awslogs:/ecs/razed-house-games-prod, grafana-loki |
| razed-house-games-prod-plinko | 10 | 2048 | 4096 | 3 <small class="text-muted">(+router)</small> | Yes | No | 4 | 15 | awslogs:/ecs/razed-house-games-prod, grafana-loki |
| razed-house-games-prod-task-definition | 13 | 2048 | 8192 | 1 <small class="text-muted">(+router)</small> | Yes | No | 17 | 0 | grafana-loki |
| razed-prod-api-task-definitions | 45 | 4096 | 8192 | 3 | Yes | No | 11 | 0 | No logs, awslogs:/ecs/razed-prod-api |
| razed-prod-bo-task-definitions | 45 | - | - | 3 | No | No | 11 | 0 | No logs, awslogs:/ecs/razed-prod-bo |
| razed-prod-callback-task-definitions | 45 | 4096 | 8192 | 3 | Yes | No | 11 | 0 | No logs, awslogs:/ecs/razed-prod-callback |
| razed-prod-cdn-cms-task-definitions | 4 | - | - | 1 | No | No | 0 | 0 | json-file |
| razed-prod-cms-task-definitions | 2 | - | - | 2 | No | No | 1 | 0 | No logs, json-file |
| razed-prod-cronjob-task-definitions | 44 | - | - | 3 | No | No | 5 | 0 | No logs |
| razed-prod-fe-task-definitions | 35 | - | - | 2 | No | No | 1 | 0 | json-file |
| razed-prod-game-proxy-fargate-task-definitions | 2 | 2048 | 4096 | 2 | Yes | No | 1 | 0 | No logs |
| razed-prod-golang-callback-task-definitions | 4 | 4096 | 8192 | 2 | Yes | No | 4 | 0 | No logs, firelens:unknown |
| razed-prod-golang-queue-consumer-task-definitions | 4 | 4096 | 8192 | 2 | Yes | No | 4 | 0 | No logs, firelens:unknown |
| razed-prod-new-fe-task-definitions | 6 | - | - | 2 | No | No | 1 | 0 | json-file |
| razed-prod-queue-worker-task-definitions | 44 | 16384 | 40960 | 3 | Yes | No | 5 | 0 | No logs |
| razed-prod-websocket-task-definitions | 2 | - | - | 2 | No | No | 0 | 0 | json-file |
| signoz-integration-agent | 2 | 256 | 512 | 1 | Yes | No | 12 | 0 | awslogs:/ecs/signoz-integration/agent |
Container Configuration Detail
⚠️ Plaintext environment variables should be avoided for sensitive data. Use Secrets Manager or SSM Parameter Store. log_router containers are excluded.
| Task Definition | Container | Image | Log Config | Plaintext Env Vars | Secrets (SSM/SM) |
|---|---|---|---|---|---|
| prod-london-razed-housegames-redis:2 | redis | redis:latest | awslogs:/ecs/razed-house-games-prod | None | - |
| prod-zurich-bo-house-games-api-task-def:2 | prod-bo-house-games-api | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-bo-house-games-api:latest | grafana-loki | AWS_REGIONSIGNUP_KEYPORTJWT_SECRETSTAGEJWT_REFRESH_EXPIRES_INSALT_OR_ROUNDSAWS_S3_BUCKET_NAMEJWT_EXPIRES_INLOG_LEVEL | AWS_ACCESS_KEY_IDAWS_SECRET_ACCESS_KEYDATABASE_URLJWT_REFRESH_SECRETADMIN_EMAILADMIN_PASSWORD |
| razed-house-games-prod-blackjack:18 | razed-house-games-prod-blackjack | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-house-games-blackjack:d06be691bbba471d97da282ad8ad691c84af7642 | grafana-loki | COMMON_MS_HOSTREDIS_HOSTREDIS_PORTCOMMON_MS_PORT | POSTGRES_USERPOSTGRES_PASSWORDPOSTGRES_PORTPOSTGRES_DBPOSTGRES_HOSTTERRAGON_URLTERRAGON_API_KEYPRIVATE_JWT_SECRETKENO_GAME_IDMINES_GAME_IDDICES_GAME_IDPLINKO_GAME_IDWHEEL_GAME_IDLIMBO_GAME_IDNODE_EXTRA_CA_CERTS |
| razed-house-games-prod-blackjack:18 | razed-house-games-prod-blackjack-nginx | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-house-games-blackjack-nginx:latest | grafana-loki | None | - |
| razed-house-games-prod-blackjack:18 | xray-daemon | public.ecr.aws/xray/aws-xray-daemon:latest | grafana-loki | None | - |
| razed-house-games-prod-common:7 | razed-house-games-prod-common | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-house-games-common:5bd9dab71db384dc8e9b62ffec26aebfbcf85ff6 | grafana-loki | REDIS_PORTREDIS_HOST | POSTGRES_DBPOSTGRES_HOSTPOSTGRES_PASSWORDPOSTGRES_PORTPOSTGRES_USERPRIVATE_JWT_SECRETTERRAGON_API_KEYTERRAGON_URLNODE_EXTRA_CA_CERTS |
| razed-house-games-prod-common:7 | razed-house-games-prod-common-nginx | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-house-games-common-nginx:latest | grafana-loki | None | - |
| razed-house-games-prod-common:7 | xray-daemon | public.ecr.aws/xray/aws-xray-daemon:latest | awslogs:/ecs/razed-house-games-prod | None | - |
| razed-house-games-prod-plinko:10 | razed-house-games-prod-plinko | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-house-games-plinko:5bd9dab71db384dc8e9b62ffec26aebfbcf85ff6 | grafana-loki | COMMON_MS_HOSTREDIS_HOSTREDIS_PORTCOMMON_MS_PORT | POSTGRES_USERPOSTGRES_PASSWORDPOSTGRES_PORTPOSTGRES_DBPOSTGRES_HOSTTERRAGON_URLTERRAGON_API_KEYPRIVATE_JWT_SECRETKENO_GAME_IDMINES_GAME_IDDICES_GAME_IDPLINKO_GAME_IDWHEEL_GAME_IDLIMBO_GAME_IDNODE_EXTRA_CA_CERTS |
| razed-house-games-prod-plinko:10 | razed-house-games-prod-plinko-nginx | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-house-games-plinko-nginx:latest | grafana-loki | None | - |
| razed-house-games-prod-plinko:10 | xray-daemon | public.ecr.aws/xray/aws-xray-daemon:latest | awslogs:/ecs/razed-house-games-prod | None | - |
| razed-house-games-prod-task-definition:13 | games-prod-app | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-house-games-main:35b8f2b7e9f21f4dc52523f623a31d191f0cf02d | grafana-loki | POSTGRES_USERREDIS_HOSTKENO_GAME_IDPOSTGRES_HOSTMINES_GAME_IDPOSTGRES_PASSWORDPOSTGRES_PORTDICES_GAME_IDPOSTGRES_DBTERRAGON_URLPLINKO_GAME_IDREDIS_PORTWHEEL_GAME_IDNODE_EXTRA_CA_CERTSTERRAGON_API_KEYPRIVATE_JWT_SECRETLIMBO_GAME_ID | - |
| razed-prod-api-task-definitions:45 | terragon-api | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-api:2f8f187-1886-master-upgraded | awslogs:/ecs/razed-prod-api | SERVER_PORTSERVICE_NAMESERVER_NAMECADDY_SERVER_WORKER_COUNTFRANKENPHP_WORKER_PATHPROMETHEUS_BCRYPT_PASSWORD | - |
| razed-prod-api-task-definitions:45 | filebeat | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:3.0-addfield | No logs | GRAYLOG_HOSTFILEBEAT_CONTAINER_NAMEGRAYLOG_LISTEN_PORT | - |
| razed-prod-api-task-definitions:45 | filebeat-integration | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:4.0-integration | No logs | GRAYLOG_HOSTGRAYLOG_LISTEN_PORT | - |
| razed-prod-bo-task-definitions:45 | terragon-bo | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-bo:2f8f187-1886-master-upgraded | awslogs:/ecs/razed-prod-bo | SERVER_PORTSERVICE_NAMESERVER_NAMECADDY_SERVER_WORKER_COUNTFRANKENPHP_WORKER_PATHPROMETHEUS_BCRYPT_PASSWORD | - |
| razed-prod-bo-task-definitions:45 | filebeat | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:3.0-addfield | No logs | GRAYLOG_HOSTFILEBEAT_CONTAINER_NAMEGRAYLOG_LISTEN_PORT | - |
| razed-prod-bo-task-definitions:45 | filebeat-integration | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:4.0-integration | No logs | GRAYLOG_HOSTGRAYLOG_LISTEN_PORT | - |
| razed-prod-callback-task-definitions:45 | terragon-callback | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-callback:2f8f187-1886-master-upgraded | awslogs:/ecs/razed-prod-callback | SERVER_PORTSERVICE_NAMESERVER_NAMECADDY_SERVER_WORKER_COUNTFRANKENPHP_WORKER_PATHPROMETHEUS_BCRYPT_PASSWORD | - |
| razed-prod-callback-task-definitions:45 | filebeat | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:3.0-addfield | No logs | GRAYLOG_HOSTFILEBEAT_CONTAINER_NAMEGRAYLOG_LISTEN_PORT | - |
| razed-prod-callback-task-definitions:45 | filebeat-integration | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:4.0-integration | No logs | GRAYLOG_HOSTGRAYLOG_LISTEN_PORT | - |
| razed-prod-cdn-cms-task-definitions:4 | nginx-s3-gateway | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-nginx-base:s3-gateway-1.0 | json-file | None | - |
| razed-prod-cms-task-definitions:2 | nginx-cms | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-nginx-base:3.0 | json-file | NGINX_DEFAULT_CONF_FILE | - |
| razed-prod-cms-task-definitions:2 | terragon-cms | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-cms:afff6b7-78-devops-test-deploy-new-prod-aws | No logs | None | - |
| razed-prod-cronjob-task-definitions:44 | cronjob | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-cronjob:2f8f187-1886-master-upgraded | No logs | None | - |
| razed-prod-cronjob-task-definitions:44 | filebeat | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:3.0-addfield | No logs | GRAYLOG_HOSTFILEBEAT_CONTAINER_NAMEGRAYLOG_LISTEN_PORT | - |
| razed-prod-cronjob-task-definitions:44 | filebeat-integration | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:4.0-integration | No logs | GRAYLOG_HOSTGRAYLOG_LISTEN_PORT | - |
| razed-prod-fe-task-definitions:35 | nginx-fe | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-nginx-base:3.0 | json-file | NGINX_DEFAULT_CONF_FILE | - |
| razed-prod-fe-task-definitions:35 | app | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-fe:46faf09-21022491023-master | json-file | None | - |
| razed-prod-game-proxy-fargate-task-definitions:2 | nginx | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-nginx-base:3.0-game-proxy | No logs | NGINX_DEFAULT_CONF_FILE | - |
| razed-prod-game-proxy-fargate-task-definitions:2 | middleware-proxy | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-game-proxy:d6fe321-23-main | No logs | None | - |
| razed-prod-golang-callback-task-definitions:4 | terragon-golang-callback | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-golang-callback:7d92b0d-20-main | firelens:unknown | None | - |
| razed-prod-golang-callback-task-definitions:4 | fluent-bit | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-fluent-bit:output-graylog | No logs | APP_CONTAINER_NAMELOG_GROUP_NAMEGRAYLOG_HOSTGRAYLOG_LISTEN_PORT | - |
| razed-prod-golang-queue-consumer-task-definitions:4 | terragon-golang-queue-consumer | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-golang-queue-consumer:7d92b0d-20-main | firelens:unknown | None | - |
| razed-prod-golang-queue-consumer-task-definitions:4 | fluent-bit | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-fluent-bit:output-graylog | No logs | APP_CONTAINER_NAMELOG_GROUP_NAMEGRAYLOG_HOSTGRAYLOG_LISTEN_PORT | - |
| razed-prod-new-fe-task-definitions:6 | nginx-fe | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-nginx-base:3.0 | json-file | NGINX_DEFAULT_CONF_FILE | - |
| razed-prod-new-fe-task-definitions:6 | app | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-new-fe:3fcfa50-20953307496-implement-shadcn | json-file | None | - |
| razed-prod-queue-worker-task-definitions:44 | queue-worker | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-queue-worker:2f8f187-1886-master-upgraded | No logs | None | - |
| razed-prod-queue-worker-task-definitions:44 | filebeat | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:3.0-addfield | No logs | GRAYLOG_HOSTFILEBEAT_CONTAINER_NAMEGRAYLOG_LISTEN_PORT | - |
| razed-prod-queue-worker-task-definitions:44 | filebeat-integration | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-filebeat:4.0-integration | No logs | GRAYLOG_HOSTGRAYLOG_LISTEN_PORT | - |
| razed-prod-websocket-task-definitions:2 | nginx-websocket | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-nginx-base:3.0 | json-file | None | - |
| razed-prod-websocket-task-definitions:2 | app | 566362508701.dkr.ecr.eu-central-2.amazonaws.com/razed-prod-soketi:1.6-16-debian | json-file | None | - |
| signoz-integration-agent:2 | agent | docker.io/signoz/cloud-integration-agent:v0.0.8 | awslogs:/ecs/signoz-integration/age... | INGESTION_URLINGESTION_KEYFIREHOSE_STREAM_ROLE_ARNSIGNOZ_CLOUD_INTEGRATION_ACCOUNT_IDFORWARDER_ROLE_ARNSIGNOZ_API_URLFIREHOSE_WRITER_ROLE_ARNSIGNOZ_API_KEYINTEGRATION_AGENT_STACK_REGIONINTEGRATION_AGENT_STACK_NAMEINTEGRATION_CONFIG_SYNC_PERIOD_SECONDSCLOUD_PROVIDER | - |
RDS Instances
| DB Identifier | Engine | Class | Status | Storage | Encrypted | Multi-AZ | Public | Backup | Delete Prot. | Tags |
|---|---|---|---|---|---|---|---|---|---|---|
| prod-zurich-bo-house-games-api-db | postgres 17.5 | db.t4g.micro | available | 20 GiB | Yes | No | No | 7d | Yes | app=bo-house-games-apimap-migrated=migS0EK6JMBZCenvironment=prodlocation=eu-central-2terraform=truebrand=razedName=prod-zurich-bo-house-games-api-db |
| razed-house-games-prod-db | postgres 15.12 | db.t3.large | available | 200 GiB | Yes | No | No | 30d | Yes | app=house-gamesmap-migrated=migS0EK6JMBZCenvironment=prodlocation=zurichbrand=razedName=razed-house-games-prod-db |
| razed-prod-new-primary | aurora-mysql 8.0.mysql_aurora.3.08.2 | db.r7g.16xlarge | available | 1 GiB | Yes | No | No | 7d | No | - |
| razed-prod-new-primary-0 | aurora-mysql 8.0.mysql_aurora.3.08.2 | db.r7g.16xlarge | available | 1 GiB | Yes | No | No | 7d | No | - |
Lambda Functions
| Function Name | Runtime | Memory | Timeout | VPC | Last Modified | Tags |
|---|---|---|---|---|---|---|
| razed-prod-upload-s3-objects-to-sftp | python3.13 | 128 MB | 30s | No VPC | 2025-11-12 | Customer=razedEnvironment=prodmap-migrated=migS0EK6JMBZC |
| spintech-sync-images-to-spintech-global-imgix-assets-bucket | python3.13 | 128 MB | 30s | vpc-0a76db2b3c67c397d | 2025-11-12 | map-migrated=migS0EK6JMBZC |
SQS Queues
Total Queues: 61
Without Encryption: 60
Without DLQ: 61
| Queue Name | Type | Encrypted | DLQ Configured | Visibility Timeout | Messages | Tags |
|---|---|---|---|---|---|---|
| accumulate_bonus_programs | Standard | No | No | 3000s | 4 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| accumulate_bonus_programs.fifo | FIFO | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| accumulate_bonus_programs_ref | Standard | No | No | 300s | 39 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| accumulate_bonus_programs_referral | Standard | No | No | 300s | 1 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| accumulate_bonus_programs_settle | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| accumulate_bonus_programs_summary | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| ad_checks | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| assign_new_game_to_bonus | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| assign_new_game_to_game_segment | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| assign_new_game_to_game_tag | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| audit_logs | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| automatic_withdrawal | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| betting_limit | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| bonuses | Standard | No | No | 3010s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| broadcast | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| broadcast_balance | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| campaign_message | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| cash_drops | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| casino_bet_detail | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| challenges | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| crm | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| crm_high | Standard | No | No | 300s | 19 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| default | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| emails | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| export | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| forward_game_log_processed | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| forward_player_wr_processed | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| game_log_locks | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| game_logs | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| game_logs.fifo | FIFO | No | No | 300s | 61 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| import_batches | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| loyalty_programs | Standard | No | No | 300s | 27 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| notifications | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| payment_integration_logs | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| player_activities | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| player_flagged_computing | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| player_tips | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| player_transactional_summary | Standard | No | No | 300s | 5 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| player_vip | Standard | No | No | 300s | 1 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| post_wagered_bonus_programs | Standard | No | No | 300s | 2 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| prune_open_bets | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| quests | Standard | No | No | 300s | 46 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| raffles | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| rebate_programs | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| recent_games | Standard | No | No | 300s | 4 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| referral_plans | Standard | No | No | 3010s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| risk_fraud | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| segments | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| segments.fifo | FIFO | No | No | 300s | 3 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| segments_computing.fifo | FIFO | No | No | 300s | 12 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| sms | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| sportbook_bet_detail | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| spotlight-search | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| sync_game_to_ec | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| telescope | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| test_canle_schedule | Standard | SSE-SQS | No | 30s | 0 | - |
| tournaments | Standard | No | No | 300s | 22 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| tournaments.fifo | FIFO | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| trigger_scheduled_programs | Standard | No | No | 3000s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| wagering_requirements | Standard | No | No | 300s | 8 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| webhook_call | Standard | No | No | 300s | 0 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
Secrets Manager
Total Secrets: 7
Without Rotation: 7
| Secret Name | Description | KMS Key | Rotation | Last Rotated | Last Accessed | Tags |
|---|---|---|---|---|---|---|
| razed-prod-rds-admin-password | - | secretsmanager |
Disabled | - | 2026-01-15 | map-migrated=migS0EK6JMBZC |
| razed-prod-redshift-admin-password | - | secretsmanager |
Disabled | - | 2026-01-15 | map-migrated=migS0EK6JMBZC |
| razed-prod-other-credentials | - | secretsmanager |
Disabled | - | 2026-01-16 | - |
| sqlworkbench!4c38db6e-dfd4-4028-bd2f-764900d31d46 | Secret created for an AWS SQL Workbench connection | secretsmanager |
Disabled | - | 2026-01-09 | aws:secretsmanager:owningService=sqlworkbenchsqlworkbench-resource-owner=AIDAYHXOWBWOXXBOJWX3D |
| sqlworkbench!da267689-daa8-4c26-96a8-7072e78da751 | Secret created for an AWS SQL Workbench connection | secretsmanager |
Disabled | - | 2026-01-09 | aws:secretsmanager:owningService=sqlworkbenchsqlworkbench-resource-owner=AIDAYHXOWBWOXXBOJWX3D |
| sqlworkbench!36587d6b-d20c-439c-b752-dc22bbee42e0 | Secret created for an AWS SQL Workbench connection | secretsmanager |
Disabled | - | 2026-01-08 | aws:secretsmanager:owningService=sqlworkbenchsqlworkbench-resource-owner=AROAYHXOWBWOZ7VOUNAFU:can.le |
| sqlworkbench!b8688bf3-4d9f-4adf-b0fc-6c7f85020f2e | Secret created for an AWS SQL Workbench connection | secretsmanager |
Disabled | - | 2026-01-08 | aws:secretsmanager:owningService=sqlworkbenchsqlworkbench-resource-owner=AROAYHXOWBWOZ7VOUNAFU:can.le |
CloudWatch Log Groups
Total Log Groups: 24
Without Retention Policy: 11
| Log Group Name | Retention (Days) | Stored Size |
|---|---|---|
/aws/ecs/containerinsights/razed-house-games-prod-cluster/performance |
1 | 10.66 MB |
/aws/ecs/containerinsights/razed-housegames-cluster/performance |
1 | 0 B |
/aws/ecs/exec/razed-housegame-prod |
Never Expire | 0 B |
/aws/lambda/razed-prod-upload-s3-objects-to-sftp |
30 | 33.74 MB |
/aws/lambda/spintech-sync-images-to-spintech-global-imgix-assets-bucket |
Never Expire | 2.49 MB |
/aws/rds/cluster/razed-prod-new-primary-cluster/error |
Never Expire | 86.05 MB |
/aws/rds/cluster/razed-prod-primary-cluster/error |
Never Expire | 2.91 MB |
/aws/rds/instance/razed-house-games-prod-db/postgresql |
Never Expire | 24.58 MB |
/aws/rds/instance/razed-prod-db-master/error |
Never Expire | 3.02 KB |
/aws/rds/instance/razed-prod-db-replication/error |
Never Expire | 10.5 KB |
/ecs/razed-house-games-prod |
90 | 10.77 GB |
/ecs/razed-house-games-prod-common-svc |
Never Expire | 52.01 KB |
/ecs/razed-prod-api |
365 | 1.87 MB |
/ecs/razed-prod-bo |
365 | 339.71 KB |
/ecs/razed-prod-callback |
365 | 905.33 KB |
/ecs/razed-prod-game-proxy |
365 | 0 B |
/ecs/razed-prod-golang-callback |
365 | 0 B |
/ecs/signoz-integration/agent |
Never Expire | 0 B |
RDSOSMetrics |
30 | 72.33 MB |
dms-tasks-migrations-razed-prod-replication-instance |
Never Expire | 1.49 MB |
firelens-container |
Never Expire | 88.98 KB |
razed-prod-backend-redis-slowlog |
365 | 59.69 KB |
razed-prod-broadcast-balance-slowlog |
365 | 11.08 MB |
razed-prod-websocket-valkey-slowlog |
365 | 592.49 KB |
Application & Network Load Balancers
| Name | Type | Scheme | State | DNS Name | VPC | AZs | Listeners | Target Groups | Tags |
|---|---|---|---|---|---|---|---|---|---|
| razed-prod-api-callbck-ecs-alb | APPLICATION | internet-facing | active | razed-prod-api-callbck-ecs-alb-1748649793.eu-central-2.elb.amazonaws.com | vpc-0a76db2b3c67c397d | 2 | HTTPS:443, HTTP:80 | 5 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| razed-prod-other-ecs-alb | APPLICATION | internet-facing | active | razed-prod-other-ecs-alb-2116483640.eu-central-2.elb.amazonaws.com | vpc-0a76db2b3c67c397d | 2 | HTTP:80, HTTPS:443 | 10 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| razed-prod-ecs-internal-alb | APPLICATION | internal | active | internal-razed-prod-ecs-internal-alb-1188046305.eu-central-2.elb.amazonaws.com | vpc-0a76db2b3c67c397d | 2 | HTTP:80, HTTPS:443 | 4 | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| razed-house-games-prod-alb | APPLICATION | internet-facing | active | razed-house-games-prod-alb-804966737.eu-central-2.elb.amazonaws.com | vpc-0a76db2b3c67c397d | 2 | HTTPS:443, HTTP:80 | 4 | app=house-gamesmap-migrated=migS0EK6JMBZCenvironment=prodlocation=zurichbrand=razed |
| prod-bo-house-games-api-alb | APPLICATION | internet-facing | active | prod-bo-house-games-api-alb-1852451400.eu-central-2.elb.amazonaws.com | vpc-0a76db2b3c67c397d | 2 | HTTPS:443, HTTP:80 | 1 | app=bo-house-games-apimap-migrated=migS0EK6JMBZCenvironment=prodname=prod-bo-house-games-api-alblocation=eu-central-2terraform=truebrand=razed |
Target Groups
| Load Balancer | Target Group Name | Protocol | Port | Target Type | Health Check |
|---|---|---|---|---|---|
| razed-prod-api-callbck-ecs-alb | razed-prod-api-tg-441 | HTTPS | 441 | ip | HTTPS:/robots.txt |
| razed-prod-api-callbck-ecs-alb | razed-prod-callbck-tg-442 | HTTPS | 442 | ip | HTTPS:/player/api/v1/ping |
| razed-prod-api-callbck-ecs-alb | razed-prod-cms-tg-444 | HTTPS | 444 | instance | HTTPS:/ |
| razed-prod-api-callbck-ecs-alb | razed-prod-golcalbk-9442 | HTTP | 9442 | ip | HTTP:/api/v2/callback/game-service/ping |
| razed-prod-api-callbck-ecs-alb | razed-prod-new-fe-tg-443 | HTTPS | 443 | instance | HTTPS:/ |
| razed-prod-other-ecs-alb | razed-prod-airflow-dwhdocs-tg443 | HTTPS | 443 | instance | HTTPS:/ |
| razed-prod-other-ecs-alb | razed-prod-bo-tg-440 | HTTPS | 440 | instance | HTTPS:/player/api/v1/ping |
| razed-prod-other-ecs-alb | razed-prod-cdn-cms-tg-449 | HTTPS | 449 | instance | HTTPS:/health |
| razed-prod-other-ecs-alb | razed-prod-elk-tg-443 | HTTPS | 443 | instance | HTTPS:/ |
| razed-prod-other-ecs-alb | razed-prod-fe-tg-443 | HTTPS | 443 | instance | HTTPS:/robots.txt |
| razed-prod-other-ecs-alb | razed-prod-game-proxy-tg-443 | HTTPS | 443 | ip | HTTPS:/health |
| razed-prod-other-ecs-alb | razed-prod-graylog-tg-443 | HTTPS | 443 | instance | HTTPS:/ |
| razed-prod-other-ecs-alb | razed-prod-intglog-tg-443 | HTTPS | 443 | instance | HTTPS:/ |
| razed-prod-other-ecs-alb | razed-prod-metbase-tg-443 | HTTPS | 443 | instance | HTTPS:/ |
| razed-prod-other-ecs-alb | razed-prod-ws-tg-6002 | HTTPS | 6002 | instance | HTTPS:/ |
| razed-prod-ecs-internal-alb | razed-prod-callbck-int-442 | HTTPS | 442 | ip | HTTPS:/player/api/v1/ping |
| razed-prod-ecs-internal-alb | razed-prod-cms-internal-444 | HTTPS | 444 | instance | HTTPS:/ |
| razed-prod-ecs-internal-alb | razed-prod-golcalbk-int-9442 | HTTP | 9442 | ip | HTTP:/api/v2/callback/game-service/ping |
| razed-prod-ecs-internal-alb | razed-prod-ws-int-6002 | HTTPS | 6002 | instance | HTTPS:/ |
| razed-house-games-prod-alb | razed-house-games-prod-common-tg | HTTP | 80 | ip | HTTP:/api/common/health |
| razed-house-games-prod-alb | razed-house-games-prod-plinko-tg | HTTP | 80 | ip | HTTP:/api/plinko/health |
| razed-house-games-prod-alb | razed-house-games-prod-tg | HTTP | 80 | ip | HTTP:/health |
| razed-house-games-prod-alb | razed-prod-blackjack-tg | HTTP | 80 | ip | HTTP:/api/blackjack/health |
| prod-bo-house-games-api-alb | prod-bo-house-games-api-tg | HTTP | 80 | ip | HTTP:/api |
Security Groups (In Use)
| Name | Group ID | VPC | Used By | Inbound Ports | Outbound Ports | Open to Internet | Tags |
|---|---|---|---|---|---|---|---|
| razed-house-games-prod-rds | sg-0b580b176ba2cd4ec |
vpc-0a76db2b3c67c397d | ECS(5), RDS(1) | All, tcp:5432 | All, tcp:443, tcp:80 | No | location=zurichbrand=razedapp=house-gamesenvironment=prodmap-migrated=migS0EK6JMBZC |
| migrations-allow-access-from-old-account | sg-0b51582c8ff474502 |
vpc-0a76db2b3c67c397d | EC2(1) | tcp:22 | All | No | - |
| razed-prod-allow-local | sg-074721e7caa18b535 |
vpc-0a76db2b3c67c397d | APPLICATION(1), EC2(22), ECS(6), Lambda(1) | All, tcp:0-65535, tcp:5439 | All | No | Environment=prodmap-migrated=migS0EK6JMBZCCustomer=razed |
| prod-zurich-bo-house-games-api-alb-sg | sg-0a9aa7c4ceed79b57 |
vpc-0a76db2b3c67c397d | APPLICATION(1) | All, tcp:443, tcp:80 | All | Yes | map-migrated=migS0EK6JMBZCbrand=razedlocation=eu-central-2terraform=trueenvironment=prodapp=bo-house-games-apiname=prod-zurich-bo-house-games-api-alb-sg |
| razed-house-games-prod-alb | sg-06507713d026ed654 |
vpc-0a76db2b3c67c397d | APPLICATION(1) | tcp:443, tcp:80 | All | Yes | location=zurichapp=house-gamesenvironment=prodmap-migrated=migS0EK6JMBZCbrand=razed |
| prod-zurich-bo-house-games-api-db-sg | sg-0b40dd8998c9d5887 |
vpc-0a76db2b3c67c397d | RDS(1) | tcp:5432 | All | No | terraform=trueapp=bo-house-games-apienvironment=prodmap-migrated=migS0EK6JMBZClocation=eu-central-2brand=razed |
| razed-prod-allow-local-port-3306 | sg-03d1c319044824d90 |
vpc-0a76db2b3c67c397d | RDS(2) | tcp:0-65535, tcp:3306 | All | No | map-migrated=migS0EK6JMBZCCustomer=razedEnvironment=prod |
| cloudnomads-cdk-builder | sg-0a29f5492dd6dd632 |
vpc-0e95ea1ca9e7f42f6 | EC2(1) | tcp:3389 | All | No | aws:cloudformation:stack-name=cloudnomads-cdk-builderaws:cloudformation:logical-id=CdkBuilderSgaws:cloudformation:stack-id=arn:aws:cloudformation:eu-central-2:566362508701:stack/cloudnomads-cdk-builder/aab39b50-7f3f-11f0-90d1-06e33691b4b9 |
| razed-prod-allow-http-https | sg-005a56f4eb38d4145 |
vpc-0a76db2b3c67c397d | APPLICATION(2) | tcp:443, tcp:80 | All | Yes | Customer=razedmap-migrated=migS0EK6JMBZCEnvironment=prod |
| prod-zurich-bo-house-games-api-ecs-sg | sg-0fcaddb72e6512905 |
vpc-0a76db2b3c67c397d | ECS(1) | All | All | No | app=bo-house-games-apienvironment=prodmap-migrated=migS0EK6JMBZCname=prod-zurich-bo-house-games-api-ecs-sglocation=eu-central-2brand=razedterraform=true |
| razed-prod-allow-ssh | sg-04d6665e44493af92 |
vpc-0a76db2b3c67c397d | EC2(3) | tcp:22 | All | No | Customer=razedmap-migrated=migS0EK6JMBZCEnvironment=prod |
Security Group Rules Detail
| Security Group | Direction | Protocol | Port Range | Source/Destination |
|---|---|---|---|---|
razed-house-games-prod-rds sg-0b580b176ba2cd4ec |
Inbound | tcp | 5432 | sg: sg-0b1fab5da138fa26c, sg: sg-04d6665e44493af92, sg: sg-0b580b176ba2cd4ec |
razed-house-games-prod-rds sg-0b580b176ba2cd4ec |
Inbound | All | All | 10.0.0.0/16 |
migrations-allow-access-from-old-account sg-0b51582c8ff474502 |
Inbound | tcp | 22 | 3.8.55.79/32, 35.177.8.139/32 |
razed-prod-allow-local sg-074721e7caa18b535 |
Inbound | tcp | 5439 | 11.0.0.0/16 |
razed-prod-allow-local sg-074721e7caa18b535 |
Inbound | tcp | 0-65535 | sg: sg-074721e7caa18b535 |
razed-prod-allow-local sg-074721e7caa18b535 |
Inbound | All | All | 10.0.3.0/24, 10.0.4.0/24, 10.0.2.0/24, 10.0.1.0/24 |
prod-zurich-bo-house-games-api-alb-sg sg-0a9aa7c4ceed79b57 |
Inbound | tcp | 80 | 0.0.0.0/0 |
prod-zurich-bo-house-games-api-alb-sg sg-0a9aa7c4ceed79b57 |
Inbound | All | All | 10.0.0.0/16 |
prod-zurich-bo-house-games-api-alb-sg sg-0a9aa7c4ceed79b57 |
Inbound | tcp | 443 | 0.0.0.0/0 |
razed-house-games-prod-alb sg-06507713d026ed654 |
Inbound | tcp | 80 | 0.0.0.0/0 |
razed-house-games-prod-alb sg-06507713d026ed654 |
Inbound | tcp | 443 | 0.0.0.0/0 |
prod-zurich-bo-house-games-api-db-sg sg-0b40dd8998c9d5887 |
Inbound | tcp | 5432 | 10.0.0.0/16 |
razed-prod-allow-local-port-3306 sg-03d1c319044824d90 |
Inbound | tcp | 0-65535 | sg: sg-03d1c319044824d90 |
razed-prod-allow-local-port-3306 sg-03d1c319044824d90 |
Inbound | tcp | 3306 | 11.0.0.0/16, 10.0.3.0/24, 10.0.1.0/24, 10.0.2.207/32 |
cloudnomads-cdk-builder sg-0a29f5492dd6dd632 |
Inbound | tcp | 3389 | 84.254.23.220/32 |
razed-prod-allow-http-https sg-005a56f4eb38d4145 |
Inbound | tcp | 80 | 0.0.0.0/0 |
razed-prod-allow-http-https sg-005a56f4eb38d4145 |
Inbound | tcp | 443 | 0.0.0.0/0 |
prod-zurich-bo-house-games-api-ecs-sg sg-0fcaddb72e6512905 |
Inbound | All | All | 10.0.0.0/16 |
razed-prod-allow-ssh sg-04d6665e44493af92 |
Inbound | tcp | 22 | 119.93.179.143/32, 118.69.133.85/32, 14.161.16.211/32, 18.185.233.97/32, 27.49.8.26/32 |
razed-house-games-prod-rds sg-0b580b176ba2cd4ec |
Outbound | tcp | 80 | 0.0.0.0/0 |
razed-house-games-prod-rds sg-0b580b176ba2cd4ec |
Outbound | All | All | 0.0.0.0/0 |
razed-house-games-prod-rds sg-0b580b176ba2cd4ec |
Outbound | tcp | 443 | 0.0.0.0/0 |
migrations-allow-access-from-old-account sg-0b51582c8ff474502 |
Outbound | All | All | 0.0.0.0/0 |
razed-prod-allow-local sg-074721e7caa18b535 |
Outbound | All | All | 0.0.0.0/0 |
prod-zurich-bo-house-games-api-alb-sg sg-0a9aa7c4ceed79b57 |
Outbound | All | All | 0.0.0.0/0 |
razed-house-games-prod-alb sg-06507713d026ed654 |
Outbound | All | All | 0.0.0.0/0 |
prod-zurich-bo-house-games-api-db-sg sg-0b40dd8998c9d5887 |
Outbound | All | All | 0.0.0.0/0 |
razed-prod-allow-local-port-3306 sg-03d1c319044824d90 |
Outbound | All | All | 0.0.0.0/0 |
cloudnomads-cdk-builder sg-0a29f5492dd6dd632 |
Outbound | All | All | 0.0.0.0/0 |
razed-prod-allow-http-https sg-005a56f4eb38d4145 |
Outbound | All | All | 0.0.0.0/0 |
prod-zurich-bo-house-games-api-ecs-sg sg-0fcaddb72e6512905 |
Outbound | All | All | 0.0.0.0/0 |
razed-prod-allow-ssh sg-04d6665e44493af92 |
Outbound | All | All | 0.0.0.0/0 |
Compliance Findings
Network & Security (Section 5.2)
4
Open Security Groups (0.0.0.0/0)
6
EC2 Without IMDSv2
Yes
CloudTrail Enabled
Data Protection (Section 5.4)
26
Unencrypted EBS Volumes
0
Unencrypted RDS
60
SQS Without Encryption
Logging & Monitoring (Section 5.3)
11
Log Groups (No Retention)
RDS Standards (Section 7)
0
Public RDS Instances
4
RDS Without Multi-AZ
0
RDS Without Backups
Lambda Standards (Section 7)
0
Lambda Default Timeout (3s)
2
Lambda Without DLQ
SQS Standards (Section 7)
61
SQS Without DLQ
ECS Standards (Section 7)
104
Plaintext Env Vars
0
Privileged Containers