AWS Lab Workbook v1.

1
Contents

• Welcome Note
• Resource Specifications
• Lab Portal
• VPC
• EC2
• AMI
• Snapshot
• EIP
• ELB
• S3
• Glacier
• Auto Scaling
• RDS
• SNS
• Cloud Trail
• Trusted Advisor

2
Resource Specifications
Please find below the services we can practice as well as the resource specifications/features.
Its highly recommended to work only on t2.micro instances for the purposes of training

Service Technology Stack Specifications

EC2 Compute t2.micro, 1CPU, 1GB RAM, 10GB SSD
ELB Compute internet facing with round robin
AS Compute Default
VPC Network VPC, subnets, multi-AZ, IGW
S3 Storage standard storage class, no encryption
Glacier Storage lifecycling from S3 after 45 days
RDS Database db.t2micro, 1CPU, 1GB RAM, 5GB
Cloudwatch Management CPU utilization
SNS Mobile Email to TCS ID only
Security Group Network ssh, http, icmp, mysql from any source to test

3
AWS Lab Portal
Go to the below portal to access the lab https://413834863113.signin.aws.amazon.com/console
Get Credentials from the trainer

4
AWS Console

This is the AWS

Console from which
you can launch
resources on the
cloud

5
VPC

6
VPC Build Procedure

Create VPC, you

need to give the
name and CIDR
block

7
VPC Build Procedure

By default a routing
table is created for
routing within VPC

8
VPC Build Procedure

If you want to access

internet from VPC
resources, you need to
create an Internet
Gateway (IGW) and
attach to the VPC

Alternatively you could

also create a NAT
gateway and point route
to that if you don’t want
the machine to be on
direct internet

9
VPC Build Procedure

10
VPC Build Procedure

Next you need to goto

routing table and add a
route pointing to IGW

Once this is done you

could access the internet
directly from the machines

You can create subnets

within VPC and launch
compute resources from
those subnets

11
EC2

12
EC2 Dashboard

This is the EC2

dashboard where
you can see the
status of all
resources running.

You can also look

at status of services
running in this
region below

13
EC2 Launch Procedure

Choose t2.micro, pay

importance to the
keyword “Free tier
eligible” in green label

If you choose anything

other than this it might be
chargable

14
EC2 Launch Procedure

For Choose
default vpc or if
you have already
created one, you
can select that

If you choose
auto-assign public
IP as enable, you
will get a public IP
and can access
from internet

Choose other
values as
indicated
15
EC2 Launch Procedure

Here as well as other

screens click on the “I”
circle next to column
names. It will give you
more information

16
EC2 Launch Procedure

Tagging is a
best practice to
identify by
name/dept.

It will help in
generating
reports
tagwise..

17
EC2 Launch Procedure

It’s a good idea to

allow only the ports
that are required for
internet/internal
access as a layer of
security

18
EC2 Launch Procedure

19
EC2 Launch Procedure

If you are doing first

time, please
download key pair
and keep it safe, else
you cant connect to it

20
EC2 Launch Procedure

21
EC2 Launch Procedure

22
EC2 Launch Procedure

Once you download the private

key which is a .pem file, it needs to
be converted to .ppk format using
puttygen software.

After which you should load the

.ppk file in putty software and
connect to the linux instance via
ssh

For windows instance we use rdp

and not putty software

23
EC2 Launch Procedure

24
EC2 Launch Procedure

25
EC2 Launch Procedure

26
EC2 Launch Procedure

Open putty application to point to the

private key by clicking on browse

27
EC2 Launch Procedure

28
EC2 Launch Procedure

29
EC2 Launch Procedure

30
AMI

31
AMI Procedure

32
AMI Procedure

33
AMI Procedure

34
AMI Procedure

Please note that

AMI can be
moved across to
different regions
and deploy new
instances from
there

35
SNAPSHOT

36
Snapshot Procedure

37
Snapshot Procedure

38
Snapshot Procedure

39
Snapshot Procedure

40
EIP

41
EIP Procedure

When you click

“Allocate New
Address”, it will ask for
a confirmation and
provide you with a
public IP

42
EIP Procedure

Choose the EIP and

click actions and
choose “associate
address”

43
EIP Procedure

44
EIP Procedure
Now you can ssh to the instance
with the public IP…in this case it’s
a Ubuntu instance. It can also be a
windows instance, in that case we
rdp.

Either case ensure that the

appropriate security groups are
allowed with required ports

45
ELB

46
ELB Launch Procedure

47
ELB Launch Procedure

48
ELB Launch Procedure

Choose the
subnet for each
AZ between
which you want
to do load
balancing

49
ELB Launch Procedure

50
ELB Launch Procedure

You can add

listeners as
required

51
ELB Launch Procedure

52
ELB Launch Procedure

Add instances
between which you
want to do load
balancing

53
ELB Launch Procedure

54
ELB Launch Procedure

55
ELB Launch Procedure

56
ELB Launch Procedure

57
ELB Launch Procedure

Note the dns

name, this is
accessible from
internet

58
ELB Launch Procedure

Initially
instances will be
out of service

It wil ltake
sometime for
them to be
flagged as in
service

59
ELB Launch Procedure

60
ELB Launch Procedure

61
S3

62
S3 Configuration Procedure

63
S3 Configuration Procedure

64
S3 Configuration Procedure

65
S3 Configuration Procedure

66
S3 Configuration Procedure

67
S3 Configuration Procedure

68
S3 Configuration Procedure

69
Glacier

70
Archiving from S3 to Glacier

71
Archiving from S3 to Glacier

72
Archiving from S3 to Glacier

73
Archiving from S3 to Glacier

74
Archiving from S3 to Glacier

75
Auto Scaling

76
Auto Scaling Procedure

First create
Launch
configuration, here
you choose the
instance type (like
launching a new
instance) that
needs to be
launched if auto-
scaling is triggered

Basically every
instance launched
will be of the specs
you define here
under launch
configuration

77
Auto Scaling Procedure

78
Auto Scaling Procedure

79
Auto Scaling Procedure

80
Auto Scaling Procedure

81
Auto Scaling Procedure

82
Auto Scaling Procedure

83
Auto Scaling Procedure

84
Auto Scaling Procedure

85
Auto Scaling Procedure

86
RDS

87
RDS Build Procedure

88
RDS Build Procedure

89
RDS Build Procedure

90
RDS Build Procedure
Please watch out
for the RDS free
tier note as per
below

91
RDS Build Procedure

92
RDS Build Procedure

93
RDS Build Procedure

Please note that

db subnet group is
a prerequisite for
launching
database

94
RDS Build Procedure

95
RDS Build Procedure

DNS hostname
needs to be enabled
for the VPC by
going to the VPC

96
RDS Build Procedure

97
RDS Build Procedure

98
RDS Build Procedure

99
RDS Build Procedure

When you create

database, its first
creating and then it
becomes available

100
RDS Build Procedure
Mysql workbench is a tool for
connecting to the aws
database from on premise

101
RDS Build Procedure

Create a security group

to allow database ports

102
RDS Build Procedure

103
RDS Build Procedure

104
RDS Build Procedure

105
RDS Build Procedure

106
RDS Build Procedure

Creating a read replica is

to mirror db in another
AZ and make changes in
master database and
see if its replicated to
backup

107
RDS Build Procedure

108
RDS Build Procedure

109
RDS Build Procedure

110
RDS Build Procedure

111
RDS Build Procedure

112
RDS Build Procedure

113
RDS Build Procedure

114
SNS

115
SNS Enablement Procedure

116
SNS Enablement Procedure

117
SNS Enablement Procedure

Create subscription for

choosing how and
where notifications
should goto

118
SNS Enablement Procedure

119
SNS Enablement Procedure
A mail will be sent to the
end point, once
confirmed from end
point, the subscription
will changed to
confirmed

120
CLOUDTRAIL

121
Cloud Trail Enablement Procedure

122
Cloud Trail Enablement Procedure
Enabling cloud trail will
help audit the activities
done

123
TRUSTED
ADVISOR

124
Trusted Advisor

Trusted Advisor
provides out of the
box recommendations
on cost, performance,
security and fault
tolerance

125