Amazon VPC And Networking - Hands-On Demo
ฝัง
- เผยแพร่เมื่อ 1 ส.ค. 2024
- In this video, I will demonstrate Amazon VPC and Networking. I have divided this video in 4 different parts. In each part we will perform certain steps to understand various VPC components.
00:00 Introduction
03:48 Part1: Create VPC, Internet Gateway, Public Subnet, Route Table, IAM Role, Security Group, EC2 Instance
12:59 Part2: Create Private Subnet, Route Table, EC2 instance, Security Group
20:09 Part3: Create NAT Gateway, Update Route Table
25:18 Part4: Create VPC End Point for S3
28:45 Cleanup Resources
Part 1:
Create a VPC, Create and attach Internet Gateway, Create a subnet, Setup Route table, Associate route for 0.0.0.0/0 to Internet Gateway, Setup IAM role, Launch a EC2 instance, setup Security group and SSH to instance to verify we can ping google.com and also list S3 buckets.
Part 2:
In the same VPC we will add another Subnet, a Route table, with no route to 0.0.0.0/0 hence it becomes Private Subnet. We will launch an EC2 instance in the Private Subnet, Setup Security Group to allow SSH to it via the Public Subnet's instance's Security group. Once we SSH into the Private instance, we can verify that we can't ping to google.com or list the S3 buckets as there is no Internet bound route for the Subnet.
Part 3:
Create NAT Gateway in Public Subnet, Set a route in the Private Subnet's Route table, Now Private instance can access Internet. We can verify is by SSH into the instance as we did in Part 2 and now we are able to ping google.com and also list the S3 buckets.
Part 4:
Delete the NAT Gateway. Setup VPC End point to S3 service and attach to the Private Subnet's Route. EC2 instance should be able to access S3 without Internet access. It should not be able to ping google.com.
The detailed instructions and architecture diagrams are available in the Github repository
github.com/mycloudtutorials/a...
#aws #devops #networking - วิทยาศาสตร์และเทคโนโลยี
![[ไฮไลต์] แบดมินตันชาย วิว กุลวุฒิ(ไทย) vs Kenta Nishimoto(ญี่ปุ่น) รอบ 16 คน | โอลิมปิก 2024](http://i.ytimg.com/vi/kaQRLljJkSI/mqdefault.jpg)
Thanks for this beautiful tutorial.
Glad it was helpful!
Very informative and well explained, thanks!
Thanks! Glad you liked it.
Excellent Demo. Thanks a ton
Glad you liked it. Thank you!!
Nice!! , waiting for the second part
Second part (VPC Peering) can be watched here
th-cam.com/video/q4EZbIBCOJE/w-d-xo.html
Thanks
Very Clear and well explained, thanks a lot !
I am glad you liked it. Thanks so much!
Subscribed! Awesome work man.
Thank you!
Thanks for the video, please add more video with AWS services, if you have any playlists please let me know about AWS.
Well done sir!
Thank you! Just published VPC Peering Video, you can check it at th-cam.com/video/q4EZbIBCOJE/w-d-xo.html
very good explained
Thanks! I am glad you liked it.
Very good demo!
Thank you!
thank you
Connecting to the private ec2 with ssh. Why i have to use sudo in front of the ssh command?
(it works when using sudo, and doesn't if i dont?)
I did the chmod 0400 for the key file.
Its in around the 18.50-19.00 in the video.
Are you using Amazon Linux 2 AMI to create these instances? Or some other instance type? It seems to be a permission issue, where sshd process is only allowed for SUDOers.
While searching I found
www.golinuxcloud.com/run-sshd-as-non-root-user-without-sudo/
It may be useful, or atleast provide some clues.
Thanks
I wish you include vpc peering.. but still very much perfect
Hi @honmane humble
I have a separate video on VPC peering. Please check it out at
th-cam.com/video/q4EZbIBCOJE/w-d-xo.html
Thanks
Sir....all are very clear, but Linux commands only not visible and u typed sooo fast. plsss make it zoom.
And last month during my Ansible, Maven practice i easily created EC2 instances in 20 seconds, but yesterday during practice of Multi VPCs, Multi Subnets, Nat Gateways....i disturbed settings of DNS, DHCP Due to confusion while connecting thru putty SSH key, After trial & error i resolved my troubleshoot but I forgot where I cleared problem.
My doubt is, is there any online Graphical interface to display our VPC, subnet, IGW, EC2, ports connectivity flow chart in side window as in "Cloudform" service.
I am glad you liked the video. And yes, thanks for the suggestion for zooming when using the commands. If you miss the commands, I have them in the git repo as well (link in the description)
I don't know if there is any such diagram showing connectivity between VPC, Subnets etc.
One thing, you can create the VPC infrastructure using CloudFormation and then you can atleast have some form of diagram.
When do we expect part2 sir?
Planning to create some videos on VPC peering, Transit Gateway, Client VPN etc soon..
VPC Peering video is posted at th-cam.com/video/q4EZbIBCOJE/w-d-xo.html