![TechNgo](/img/default-banner.jpg)
- 11
- 60 907
TechNgo
United States
เข้าร่วมเมื่อ 1 เม.ย. 2019
Just a guy with some knowledge about the cloud!
AWS: How To Setup A Site-to-Site VPN (Start to Finish) 2024
Hello there! In this video you'll learn how to create a S2S VPN using Openswan. This won't be a full in-depth explanation video, but rather a start-finish guide which will briefly go through the S2S VPN creation process with testing at the end of the video.
Can you count how many times I've said strongswan instead of openswan?
Timestamps:
0:00 Intro
0:30 Diagram
1:30 VPC setup
2:30 Openswan Ec2 setup
3:40 Customer gateway setup
4:20 Virtual Gateway setup
4:30 Attach VGW to VPC
4:50 Create S2S VPN
6:30 Disable src/dst check on Ec2
7:30 Download S2S VPN configuration
7:45 Step 1 S2S VPN configuration
8:20 Step 2 and 3 S2S VPN configuration
9:00 Step 4 of S2S VPN configuration
9:40 Step 5 of S2S VPN configuration
10:20 Common error seen when configuring S2S VPN on Openswan
10:40 Fixing error on S2S VPN configuration
11:11 Start Openswan
12:00 Configure route table for VPC 1
13:30 Configure route table for VPC 2
13:50 Configure Security group rules for on-prem Ec2
14:15 Recap on what was done so far
15:40 Pinging from Ec2 number 2 to the Openswan Ec2 instance
15:50 Modify S2S VPN static route to allow on-prem IP address range
16:10 Ping on-prem Ec2 from VPC 1 Ec2 instance
16:30 Ping VPC 1 Ec2 instance from On-prem Ec2
Can you count how many times I've said strongswan instead of openswan?
Timestamps:
0:00 Intro
0:30 Diagram
1:30 VPC setup
2:30 Openswan Ec2 setup
3:40 Customer gateway setup
4:20 Virtual Gateway setup
4:30 Attach VGW to VPC
4:50 Create S2S VPN
6:30 Disable src/dst check on Ec2
7:30 Download S2S VPN configuration
7:45 Step 1 S2S VPN configuration
8:20 Step 2 and 3 S2S VPN configuration
9:00 Step 4 of S2S VPN configuration
9:40 Step 5 of S2S VPN configuration
10:20 Common error seen when configuring S2S VPN on Openswan
10:40 Fixing error on S2S VPN configuration
11:11 Start Openswan
12:00 Configure route table for VPC 1
13:30 Configure route table for VPC 2
13:50 Configure Security group rules for on-prem Ec2
14:15 Recap on what was done so far
15:40 Pinging from Ec2 number 2 to the Openswan Ec2 instance
15:50 Modify S2S VPN static route to allow on-prem IP address range
16:10 Ping on-prem Ec2 from VPC 1 Ec2 instance
16:30 Ping VPC 1 Ec2 instance from On-prem Ec2
มุมมอง: 1 230
วีดีโอ
How To View Your AWS traffic (VPC flow logs)
มุมมอง 1595 หลายเดือนก่อน
Hello everyone! In this video you'll be able to create VPC flow logs and understand how to use flow log filters to identify your source/destination IP addresses! 0:23 - Lab Diagram 0:50 - 2:00 - Create both VPC 2:15 - 5:10 Create Ec2 instance 1 & 2 6:40 - Logging into Ec2 instance 1 8:35 - Establish VPC peering 9:30 - 10:52 Add VPC peering to route table 11:00 - Ping test 11:50 - 17:40 Create V...
IT: Should You Get Into a Helpdesk or a Service desk role?
มุมมอง 4659 หลายเดือนก่อน
Hello! In this video, I'll be explaining the difference between a service desk technician and a helpdesk technician. Below are the key points: - Similarities between Helpdesk/Service desk technician - Real life examples of helpdesk/service desk technicians - How long should I stay at this position before advancing my career? - My experience as a helpdesk technician - Stop watching and start app...
Getting into IT is Like a Video Game
มุมมอง 2.2K9 หลายเดือนก่อน
Hello there! In this video, you'll know if joining the IT help desk role is worth your time in 2023. Here are the key points: - The IT career path is like a video game - How you can gain valuable skills in the IT help desk position to level up in your career path - Polish your resume or else… - What should you do if you're already past the IT help desk role? - Why am I not getting emails/calls ...
What does an AWS Cloud Support Engineer ACTUALLY do?
มุมมอง 9K10 หลายเดือนก่อน
Hello! In this video, I'll be explaining what a Cloud Support Engineer does. Below are the key points: - What does a cloud support engineer do according to AWS? - My thoughts on "imposter syndrome" - Difference between a cloud support associate vs a cloud support engineer - Side projects that I am working on as a cloud support engineer - Why do I make YT videos? Also, I'm still learning how to ...
From Lifeguard to Cloud Support Engineer starting With No Cloud Experience
มุมมอง 96511 หลายเดือนก่อน
Happy August! In this video you'll learn the secret of how I got into the cloud and what I would do if I could go back in time. Key points: - How learning to learn is important - What lessons did I learn on my first IT job - Important steps you need to take to get your foot in-the-door - Why you should document your projects - What you should do if you feel like you're stuck
How to Prepare and Be Successful For Your Upcoming Interview
มุมมอง 32611 หลายเดือนก่อน
Hello there! In this video, I explain what you should be expecting when you receive an email for an interview and how to prepare for it! Here are some key points • How to find interview questions that the employer will ask you • What do employers look at on your resume? • Why you should study your resume • How to answer interview questions using the STAR method • What you SHOULD NOT DO during y...
AWS: How To Setup A Site-to-Site VPN (Start to Finish)
มุมมอง 15Kปีที่แล้ว
In this video, I will show you how you can create your very own S2S VPN using Strongswan on AWS. By the end of the video, you should now be able to create a S2S VPN on AWS while simulating an on-prem site. If you don't need to simulate an on-prem site and already have a Firewall (Cisco, Palo Alto, Juniper, etc.) just download the configuration file and make sure that the public IP is used for t...
How to land your FIRST IT Help Desk Job (step-by-step guide)
มุมมอง 18Kปีที่แล้ว
Hello there! In this video, I explain how YOU can get into your FIRST IT Help Desk job! Here are some key points: • What 3 criteria do employers take a look at? • How I apply to jobs using Indeed • Why you shouldn't lie on your resume • The most common behavioral interviewer question • What is the STAR method? • My resume explained Thanks for watching!
How I got my job at AWS as a Cloud Support Associate
มุมมอง 13Kปีที่แล้ว
Hello there! In this video, I explain my Amazon experience as a Cloud Support Engineer. Here are some key points: • What university should you take to help boost your chances in getting a job with Amazon? • How you can get from 0 certifications to 7 certifications • How do I juggle between working and "doing school" full time? • How the Cloud Practitioner Certification can help you land a job a...
I have an interview with microsoft for a cloud support engineer position definitely nervous.
I wish you the best of luck on your interview, watch my interview videos if you want to learn how to prep for these kind of roles!
What roadmap I have to follow to dive in Cloud support as a fresher or entry level? Is there any growth in this career? or I will stuck at one position or salary
Great question, I think I should make a video about this to answer your question
We have one machine in onprem,outside of aws so where we gonna create second machine I.e strong seam machine for customer gateway in onprem or in aws? Then if this is on aws side how we connect it to onprem?
Strongswan would not be required in this case. I only used strongswan to represent an actual on-prem device (i.e Cisco, Juniper, etc.) So in your case, you can have your AWS VPC connected to your on-prem device. All you would need to do on the AWS side is create a CGW with the public IP of your on-prem device. Hope that helps!
Best explanation
excellent video thank you for the insights , subscibed!
Thanks for the sub! Stay tuned for more :D
As an AWS Cloud Support Engineer do you code?
Nope! It isn't required to learn how to code or to code in general. Although it is a bonus if you do!
I have 2 jobs interview , one is Cloud support Engineer and Tech support Java/python . I don t know a 💩 about any of support jobs but i want to know from u because for sure u know wich one is better ?, but i have full-stack knowledge Javascript/PHP sounds wierd?
I don't know all the profile/domains for the cloud support engineer role. But I'd assume that if you have experience with Java/Python, you may be aligned with a team that would require those skills. For any support job, soft skills would be amazing and beneficial for you!
how did you figure out the IP is 192.168.0/0/16? 2:05
That is just an example CIDR block that I wanted to use for the video. You could use different private CIDRs if you wanted to, choice is yours :)
I have my interview coming up for AWS Cloud Support Engineer, I hope it goes well, it was really good hearing you talk about the role and day to day tasks, I feel excited about this huge opportunity, thanks for the video, Liked and Subscribed!!
I wish you the best on your interview! Let us know how it goes!
your videos are good bro! just need to transfer them to oracle lol
Thank you so much! Could you clarify what you meant by transferring my videos to oracle?
@@ngo2go for sure dude you make great content! And oh I was just complaining for my personal situation lol I was/am using Oracle and while it's fairly easy to "transfer" tutorials from aws to Oracle I found it tough sometimes because I'm fairly new to cloud stuff and even tho Oracle does admittedly have a TON of videos they aren't very good imo lol
Please tell me do Cloud Engineers have 24/7 shift jobs???i work in a 24/7 role as Network Engineer and i am fed up with doing Night shifts due to my health issue, so is moving to Cloud Network Engineer is a good idea for me to work in General or 9 to 5 job?
This is more of a 9-5 role, we just have engineers around the world that will take over if you are over your shift times. No need to worry about working 24/7 :)
Hi Brandon! I'm not sure if you'll see this comment in time, but I'm going to be interviewed for the position of AWS Cloud Support Engineer I, and I just wanted to know which specific certification I should pursue to align with the goals of this position. Would that be "AWS Cloud Practitioner Foundational"? Thanks!
Hello there! Sorry for the delay, but the best cert to dip your feet into the cloud would be the "AWS Cloud Practitioner Foundational" certification. Now, even though this is good on your belt, I highly recommend having projects on your resume related to the cloud to make yourself stand out!
Answered my question thanks
What about taking the route of ITSM?!
You definitely could! There is no singular path for everyone. Just pick a role that works for you and stick with it :)
@@ngo2go thats true but nobody rarely mentions it in videos and I believe because its not a sexy "buzz word" cyber and cloud is what gets people's attention
Hi Brandon, I'm new in this, what's the first course one should take to get an entry level position.?
I don't have any courses to recommend per se. A lot of the times, roles like the CSA is something that can be self taught. TH-cam or looking at AWS public documentation will help a lot! Especially labbing like my S2S VPN videos.
Hi is there anything that recommend to be learned before officially start work as a CSA?
Not really since you'll learn a lot on the job. But if you're applying for a CSA role, then learning about the cloud or having projects related to the cloud can be much more desirable.
@@ngo2go cool, thank you so much! I'm gonna start to work as a CSA in July!!
Hey man I just wanted to know who are some of the customers u work with are they banks, insurance companies or small businesses? Appreciate the video❤
AWS does have a website that displays what customers we work with. Check it out on AWS customer success stories :)
I was expecting to get some of the resources to pass the cloud support engineer online assessment exam. Pls if u ca help me with the resources so that i could prepare. thanks in advance
For the online assessment, I would say that most of it is related to prioritizing certain things over other. There aren't resources per se that will tell you how to get good at customer service aside from improving soft skills. Just think of the customer and what would be best for them and you'll be fine on the assessment :)
Actually helpful information! Doing great! keep it up!
Thanks a ton! Glad I helped!
Thank you it inspire me a lot
Thank you for watching! I hope that you'll be able to pursue the cloud industry just as I have (even with no experience)
because you said to properly make the vpc's we look up the older video, i was wondering the IP in this diagram was different with the old video one (they switched), in that case which diagram shoud we follow? should we follow the old video one?
3 hours later, I finally can ping both of the EC2, while switching the IP (just follow the old vid on how to set up the EC2 and use this IP inside the diagram instead of using old video one. The problem i face was from 'sudo nano /etc/ipsec.conf' part where you need to delete all of the text inside of it (if you had it), and just copy paste the 'include /etc/ipsec.d/*.conf', do 'sysctl -p' and start the ipsec again. This video is very helpfull, and thanks to you to make another video from start to finish about StrongSwan.
I've worked as a Digital marketer for more than 5 year's. Now I've decided to switch my career into IT, being a Computer science graduate. I'm currently watching many TH-cam video's and also planning to do certifications. Thanks for making such a wonderful video.
Thank you so much for watching. I wish you the best on your IT career journey!
Hi mate, great tutorial. I managed to get my S2S VPN up and running from AWS to my router. However I cant ping the router from my AWS Windows server. Am I missing something from the route table?
Thank you! You should be able to ping to your router (Ec2 instance) assuming that SG/NACL/Route tables have the correct input/output rules and a table to forward traffic back to original source.
Can I implement this case with 2 vpc on 2 regions?
One more thing is, why did I define a route table for VPC 1 that routes to the VPC's IP prefix range via VPG? Why do I need to define an additional static route? How are these 2 different?
Absolutely you can! To clarify you can do from 1 VPC (us-east-1) to say another VPC in (us-west-2). In short, one is used to route traffic to the VGW itself and the other is so that the VGW knows how to send traffic to the on-prem side itself. Which is why you might use the on-prem CIDR range or just quad 0's to allow all traffic.
Thanks for the amazing video. Can I download strongswan right on my on-prem device instead of a separate instance like in the video?
Yes, your on-prem device (running on linux OS for example) can utilize strongswan so you don't need to create a strongswan instance on AWS itself. This can be done to simulate on-prem traffic (perhaps your office or home) to AWS VPC.
Thank you!
You bet!
I cant install openswan or strongswan? Is there another way?
Try using the Linux 2022 AMI, if you use the 2023 edition it'll populate errors. Hope it helps!
Thanks for the video! Did you ever have the phone interview (1st round) to get into that position? I will have a Chime interview tmrw with a recruiter, and said up to 15 minutes. I'm not sure if it is about technical or behavioral or just resume screening.
Yes I did! The screen is important, but I am not too sure if it'll involve technical or behavioral questions. Most definitely it seems more likely than not to be a resume screening. I do apologize for responding late but I hope you crushed it!
Hi Kihun, I have this Chime Interview scheduled with a recruiter after 2 days, can you let me know more about this,as I am also not sure if it technical or screening interview?
@@shubhamsaxena3621hi bro I have phone interview on March 3. May I know how was your experience will it be technical? Kindly let me know
Yes it will be technical, prepare both network and OS concepts.
@@shubhamsaxena3621 bro May I know for which role u applied ?
I'm also attending WGU but am doing the software engineering degree. I got accepted for the cloud support associate internship and was wondering what would you recommend studying to prepare? I already have my A+ cert and AWS practitioner cert.
Congrats to you! I would say that you should get familiar with AWS services itself. So create your AWS account and mess around with Ec2's and other popular services like S3, IAM, NAT Gateway, etc. If you're confused, just read more on public documentation and you'll get more clarification on it. Hope it helps!
My guy!
I dislike this video entirely because it lacks any testing at the end. While many videos demonstrate a straightforward setup, none address the crucial aspect of communication between multiple EC2 instances and how they interact using their private IPs.
Thank you for commenting! I've created a new video which has the test at the end of the video. Hope it helps! th-cam.com/video/I-aN7JyMugs/w-d-xo.html&ab_channel=TechNgo
Thanks for the insight!!!
You bet!
Great tutorial. Any link to the commands?
I don't have a link to the commands since the commands will be on the S2S VPN configuration file. It'll tell you everything you need to know to establish your tunnels. I'll modify the description in the video so it has a sample template. Thanks for watching!
Can you talk with me about your initial interview with AWS that got you hired as an Associate?
Like any other interview, there are both behavioral and technical interviews. I made sure to have pocket stories which relate to AWS leadership principles. I believe I did the best I could during the interview and eventually got hired as an Associate.
Thank you. This video is very helpful
I'm finishing up my 2nd term with WGU ahead of schedule, so I'm actually adding a class from Term 3. I'm working toward my Bachelors in Cybersecurity and Information Assurance. Just finished my CompTIA A+ and got certified. I want to get on with Amazon, and even considering doing an internship as a Cloud Support Associate.
I wish you the best of luck on it! If I were you, I would get your bachelors first and then apply to get the Cloud support associate role which will bypass the internship.
Great imformative video! Do you take your AWS Certs first before you get into being a Cloud Support Associate?
Thank you! I took my AWS cert before I was a cloud support associate.
I have my pc pro test out certificate but still no hire
Try to tailor your resume for the jobs that you are applying for. If you are getting interviews but no hire, then I work try working on your soft skills. But if you're not getting interviews at all, then your resume needs to be changed.
Hey Brandon! Love your videos! I've actually been actively applying and CSE roles at AWS with Linux/Networking/DevOps profiles and been getting referred for each. A recruiter reached out to me. I did the online assessment and did well enough to qualify for me to go directly into final rounds. Thanks for much for the insights on the role!
My pleasure! I hope all is going well for you, best of luck on your final round :)
Hi @REXTECH9 Glad to see your comment, i want to know about the final round. Can you please explain what would be a final round it contains any technical questions or related to any behavioural questions
@@muthumanikandan2943 It contains 2 rounds of each technical and behavioral (on principles)
Hi Rex I was sent the online assessment any insight you can share?
Hi guys I have tech round 1 for CSE 1 windows role.. Do you guys have any resources for windows os
Ive got my CCNA but cant even land help desk, I assume its due to lack of experience. Is it worth getting my A+ even though its an easier certificate to get than the CCNA
I totally get it. I mentioned this in my other comments, but if you are getting interviews but no hire, then I work try working on your soft skills/interviewing skill. But if you're not getting interviews at all, then your resume needs to update. The CCNA should automatically get you interviews, but an A+ certification can't hurt to get as well.
can we use strogswan instead of openswan as openswan package is not available anymore?
Yes, you can move onto strongswan. Just be sure to download the correct file when creating the S2S VPN.
You legit don't know what you are doing. Hence my advice to you is to remove this video because its confusing and its not helping anyone
Check out my newest video! th-cam.com/video/I-aN7JyMugs/w-d-xo.html&ab_channel=TechNgo
facing error - Failed to start Internet Key Exchange (IKE) Protocol Daemon for IPsec.
It could be a preshared key issue if the keys do not match.
hey man the video is long it would be great if you could break down the timeline into sections for easier browsing
I hear you and will be implementing that in the future :)
What roles do people usually move up into? Is it common to get a devops role within AWS after becoming A CSE?
You could certainly move up the latter to devops if that is something you would like to get into. Or you could go into a solutions architect role. The sky is the limit
@@ngo2go Thank you for your reply. What benefits do people get from going for the internship? How is progression measured? Can I move up in roles faster than required?
You get experience with AWS and develop foundational knowledge with AWS as a whole. I can't be specific about making progress to the next role - just know the answer is yes. @@newdaysamepains
@@ngo2go Thank you for your reply again. In all honesty I just want to know the role(s) after CSE 2 or Senior CSE.
Best explanation and example. Thank you so much for this.
Thank you, I'm glad you enjoyed the video!
For me, Amazon came to me and ask me to join. I was fully AWS solutions architect certified but interesting that they come to me, rather than I going to them. Which makes it so much easier as they want me and on my side to bring me in. They short listed me and now entering the interview stage. Even if they decide not to have me, I can kind of feel good about myself that Amazon reach out to me. I feel honored.
I think it definitely is an honor when a reputable company reaches out to you! There are plenty of opportunities in the tech industry!
Step by step from zero experience to landing a job.. what certs where to get them cost of them?
There are multiple certs that I mentioned in my video, they can range from 100-300$ per cert.
Great video! Can you do a video of the most common issues that you have faced as a Cloud Support Engineer?
Great suggestion, I do plan on making a video like that so stay tuned
What are the tools and slills one should master before entering ito this field apart from the cloud fundamentals
Customer service skills and learning how to learn are super valuable skills you should master!