Driving Growth and Security with the AWS Well-Architected Framework for Netdata

Netdata sought to co-sell its product on the AWS Marketplace through best practices based on the AWS Well-Architected Framework. Ibexlabs helped Netdata streamline co-selling on the AWS Marketplace through security upgrades and compliance management.
  • About

  • Challenge

  • Solution

  • Results

About Netdata

Netdata offers a monitoring solution that collects metrics per second for teams that struggle to troubleshoot infrastructures. Netdata is designed to run on all physical and virtual servers and comes with zero configuration, zero maintenance, and auto-detection. Netdata presents all insights and alerts through visual, high-performing dashboards. Netdata’s primary target is to democratize monitoring and install the Netdata agent on every computer node.

The Challenge

Netdata wanted to enhance its market visibility and reach new customers globally. They realized their best bet was leveraging the AWS ecosystem and co-selling on the AWS Marketplace. Co-selling on the AWS Marketplace would allow Netdata to expand its market presence while simplifying procurement and building customer trust.

However, to co-sell their product on the AWS Marketplace, compliance with recognized industry standards and the AWS Well-Architected Framework was crucial. Netdata sought a reliable partner with a deep understanding of the AWS Well-Architected Framework to assess its infrastructure and offer a tailored suite of recommendations and solutions. 


Onboarding Netdata

Netdata went with Ibexlabs as its partner of choice for two primary reasons:

Ibexlabs started the project by thoroughly assessing Netdata’s AWS infrastructure based on the AWS Well-Architected Framework and gathering data about workloads, configuration settings, usage patterns, and performance metrics. Out of the six pillars in the AWS Well-Architected Framework, Ibexlabs focused on two: Security and Reliability. The pillar evaluation helped Ibexlabs identify gaps in best practices and areas of improvement outlined in the AWS Well-Architected Framework. 

Based on the analysis, Ibexlabs provided a detailed remediation plan aligned with impact and feasibility

The Solution

Here is a list of complete security tools and AWS services suggested by Ibexlabs to target Netdata’s challenges.

The Solutions Netdata

1. Security Enhancements

Ibexlabs suggested using AWS GuardDuty, AWS Config, CloudTrail, IAM Access Analyzer, and AWS Security Hub for proactive threat detection.

2. Updated Password Policy

To counter challenges such as compromised accounts due to password reuse or short passwords, Ibexlabs updated Netdata’s AWS Identity and Access Management policies to reduce the risk of data and compliance breaches. 

3. Restrictive Security Groups

Ibexlabs tightened security group and Network Access Control Lists (NACL) rules to restrict traffic on administrative ports. The step implemented strict security group rules, allowing only necessary traffic from trusted IP ranges, reducing unauthorized access, and improving network control. 

4. Data Encryption

Ibexlabs updated Netdata’s bucket policies to enforce HTTPS-only access. This measure ensures that all data in transit to and from Amazon S3 buckets is encrypted, thereby protecting the integrity and confidentiality of the data from potential interception or tampering.

5. Network Monitoring and Troubleshooting

Ibexlabs enabled VPC Flow Logs to capture detailed information about the IP traffic to and from Netdata’s Amazon Virtual Private Cloud (VPC) network interfaces. By doing so, Netdata gained valuable insights into network traffic patterns, aiding network monitoring, troubleshooting connectivity issues, and performing in-depth security analysis.

The Results

Ibexlabs ultimately helped Netdata achieve a highly secure AWS environment through targeted remedial operations. The proactive measures based on the AWS Well-Architected Framework ensured ongoing compliance and vigilance, contributing to a robust and resilient cloud infrastructure. The results are as follows.

  • Netdata’s data is now protected from unauthorized access and meets all relevant regulatory standards.
  • They have a unified view of security alerts and compliance status across the AWS environment for effective incidence response. 
  • Netdata has fortified its infrastructure against potential threats through granular traffic management. 
  • Netdata has now integrated routine inspections and audits into its operational procedures, further maintaining the security and integrity of its AWS environment. 

 

Whether you are just starting or looking to accelerate your cloud journey, Ibexlabs could be your trusted partner. We offer expert cloud consulting, managed services, cloud-native development, cloud security solutions, and more tailored to your needs. Contact us here today.      

We offer customized solutions to accelerate your cloud outcomes.

Contact us arrow

Customer Feedback

Ibexlabs are highly professional, always available, and are extremely efficient in resolving issues and implementing new infrastructure.
Asaf Lahav

VP , R&D

ByondXR
Ibexlabs play a very crucial role in our organization. They have helped us achieve great success over the last couple of years. Things we achieved through their knowledge and expertise are humongous. Their support team is really fantastic no matter whatever the problem you faced they will try to provide you with the solutions asap.
Abdul Rahim Shaikh

Senior Software Engineer

Delivery Solutions
They have been awesome support and helped us set up our infrastructure with no or minimum efforts from our side. They are always available to support any critical issues and we have had none or very little downtime overall.
Bhavik Bansal
The Simple Vue
Ibexlabs engineers demonstrate exceptional knowledge of AWS systems. Their commitment, responsiveness and excellent communication skills make them a highly valuable team to work with. I wholeheartedly endorse collaborating with them.
Daniel Lázaro

BI & Analytics Engineer

Bluepes
Always professional to meet my needs and is constantly looking for ways to help improve my business. We appreciate the partnership with Ibexlabs, thanks!
Derrick Guneratne
Mapclickmarketing