Coding Cloud

AWS Technical Essentials Lab

MD
R
Markdown

Hands-on lab introducing core AWS services and concepts. Supports AWS certification preparation and practical cloud computing skills development.

AWS - Build a VPC (Virtual Private Cloud) and Launch a Web Server`

  1. Create a VPC (customized network)
  2. Create a Subnet on a availability zone
  3. Configure a Security Group for the EC2 instance *firewall for traffic control
  4. Launch EC2 instance into a VPC

SECURITY:

When launching an EC2 instance we need to associate at least one security group

NETWORK:

  • IGW (Internet Gateway) VPC <--> Internet
  • Route table
  • Each Subnet is associated with a route table
  • Subnets can be added to the VPC (subnets are per availability zone)
  • Subnet cannot span to different Availability Zones
  • Subnet can be private or public (depending on the route table configuration *if it routes to the IGW)

DIAGRAM:

  • IGW > VPC (10.0.0.0/16) [ (Availability Zone A, Availability Zone B) ]

  • Availability Zone A NAT SERVER (security group) Public Subnet 1(10.0.1.0/24) Privat Subnet 1(10.0.3.0/24)

  • Availability Zone B WEB SERVER (security group) Public Subnet 1(10.0.2.0/24) Privat Subnet 1(10.0.4.0/24)

Lab Hands-On

  1. VPC Wizard 1.1 VPC with Public and Private Subnets -- PUBLIC SUBNET 1 -- 1.2 IPV4 CIDR Block 10.0.0.0/24 My Lab VPC 1.3 Public Subnet IPV4 CIDR 10.0.1.0/24 1.4 Availability Zone: us-west-2a

    -- PRIVATE SUBNET 1 -- 1.6 Availability Zone: us-west-2a 1.7 10.0.3.0/24

1.7 NAT Instance 1.8 Default Key pair name (AWS IAM Account)

  1. Create Additional Subnets https://us-west-2.console.aws.amazon.com/vpc/home?region=us-west-2#subnets:

    -- Public Subnet 2 -- 2.2 Link Subnet 2 to our VPC 2.3 Availability Zone: us-west-2b 2.4 IPV4 CIDR Block 10.0.2.0/24 My Lab VPC

    -- PRIVATE SUBNET 2 -- 1.6 Availability Zone: us-west-2b 1.7 10.0.4.0/24

  2. Route Tables 0.0.0.0/0 ENI (Elastic Network Interface)

  3. Security Groups

Instance: i-00ad139daad92a145 (Web Server 1) Public DNS: ec2-52-27-98-188.us-west-2.compute.amazonaws.com

LAB 2 - Lab 2: Build Your DB Server and Interact With Your DB Using an App

DIAGRAM:

  • IGW > VPC (10.0.0.0/16) [ (Availability Zone A, Availability Zone B) ]

  • Availability Zone A NAT SERVER (security group) Public Subnet 1(10.0.1.0/24) RDS DB Master Privat Subnet 1(10.0.3.0/24)

  • Availability Zone B WEB SERVER (security group) Public Subnet 1(10.0.2.0/24) RDS DB Secondary (sg) Privat Subnet 1(10.0.4.0/24)

2.1 Create a VPC Security Group for RDS Web Server1: 34.213.191.228 DB: lab5db.c8hzyrf1ll1z.us-west-2.rds.amazonaws.com

LAB 3 - Scale and Load Balance the Architecture

Elastic Load Balancing (ELB) / Auto Scaling Services

  • Create an AMI (Amazon Machine Image) *AMID ID: ami-6a38d312
  • Create an Application Load Balancer *Availability Zones: Public Subnets
  • Create a Launch configuration and an AutoScaling Group
  • Automatically Scale new instances with a private subnet
  • Create amazon cloudwatch alarms and monitor performance of the infrastructure

DIAGRAM:

  • IGW > VPC (10.0.0.0/16) [ (Availability Zone A, Availability Zone B) ]

ALB Application Load Balancer >>>

  • Availability Zone A NAT SERVER (security group) Public Subnet 1(10.0.1.0/24)

ALB - LAB3 >> RDS DB Master Privat Subnet 1(10.0.3.0/24)

  • Availability Zone B WEB SERVER (security group) Public Subnet 1(10.0.2.0/24)

ALB - LAB3 >> RDS DB Secondary (sg) Privat Subnet 1(10.0.4.0/24)

Load Balancer DNS Lab6ELB-2027112467.us-west-2.elb.amazonaws.com (A Record)

Created on 3/3/2019