Skip to main content

Apache Kafka

Overview

The AWS Apache Kafka Module provides a reusable and scalable way to provision and manage Amazon Managed Streaming for Apache Kafka (MSK) clusters using Terraform.
It abstracts the complexity of configuring Kafka clusters, brokers, and related networking resources, enabling developers to define infrastructure with minimal effort while following AWS best practices.

This module supports both resource creation and data sources for managing MSK clusters, configurations, and monitoring in a consistent and modular way.

Features

  • 🚀 Reusable & Modular – Predefined structure for resources and data modules.
  • 🔐 Security Best Practices – Supports encryption (at rest & in-transit), IAM authentication, and fine-grained access control.
  • 📡 Scalable Clusters – Configure broker nodes, storage, and networking with auto-scaling capabilities.
  • 📜 Monitoring & Logging – Integrated with CloudWatch metrics, enhanced monitoring, and broker logging.
  • 🌐 VPC Integration – Deploy Kafka clusters in private subnets with customizable networking.
  • 🧩 Extensible – Easily integrates with producers, consumers, and other AWS services like Lambda, Kinesis, and S3.

Core Concepts

  1. Resources Module

    • Creates and manages MSK clusters and configurations.
    • Includes support for:
      • Broker nodes and instance types
      • Encryption (KMS, TLS)
      • Authentication (IAM, SASL, SCRAM)
      • Storage scaling
      • Monitoring & logging

  2. Data Module

    • Fetches details of existing MSK clusters and configurations.
    • Useful for referencing cluster attributes, networking details, and integrating with other infrastructure components.

  3. Cluster Configuration Management

    • Supports defining and updating Kafka configurations.
    • Provides flexibility to manage broker settings (topics, replication, partitions, etc.).

  4. Separation of Concerns

    • resources/ handles cluster creation and configuration.
    • data/ is focused on reading and referencing existing MSK clusters.
    • This separation ensures clarity, reusability, and modular design.

Sample Usage

# DEPLOY ANANTA CLOUD'S APACHE KAFKA MODULE

module "msk_cluster" {
  source = "github.com/anantacloud/terraform-aws-kafka-module/modules/resources"

  # ==========================
  # REQUIRED VARIABLES
  # ==========================
  cluster_name = "my-kafka-cluster"
  kafka_version = "3.6.0"
  number_of_broker_nodes = 3

  # ==========================
  # OPTIONAL VARIABLES
  # ==========================
  broker_node_group_info = {
    instance_type  = "kafka.m5.large"
    ebs_volume_size = 100
    client_subnets  = ["subnet-12345", "subnet-67890"]
    security_groups = ["sg-12345678"]
  }

  encryption_info = {
    encryption_in_transit = {
      client_broker = "TLS"
      in_cluster    = true
    }
    encryption_at_rest_kms_key_arn = "arn:aws:kms:us-east-1:123456789012:key/abcd-1234"
  }

  logging_info = {
    broker_logs = {
      cloudwatch_logs = {
        enabled   = true
        log_group = "/aws/msk/my-kafka-cluster"
      }
    }
  }

  tags = {
    Environment = "dev"
    Project     = "streaming-app"
  }
}

Required

NameDescriptionTypeExample
cluster_nameName of the Kafka clusterstring"my-kafka-cluster"
kafka_versionVersion of Apache Kafkastring"3.6.0"
number_of_broker_nodesNumber of broker nodes in the clusternumber3

Optional

NameDescriptionTypeDefault
broker_node_group_infoBroker node configuration (instance type, subnets, etc.)objectnull
encryption_infoEncryption settings (in-transit, at-rest)objectnull
logging_infoLogging configuration (CloudWatch, S3)objectnull
tagsCustom tags for the clustermap{}