Yes. I've uploaded the whiteboard notes. The PPT can't be uploaded. It has restricted access, and you already have access to those in the form of Ebooks, that you can download from the LMS, below the live curriculum tab.Hello RK, Do you export the PPT into PDF and post it in google drive?
Egress gateway allows outbound traffic from private subnet, ONLY for IPv6 enabled instances. For IPv4 instances, we have to use NAT Gateway.Egress gateway allows outbound traffic from private subnet ?
2 VPC's can have same range of IP's ?
vpc-traffic_mirroring.pdf document has been uploaded to the google drive -> https://drive.google.com/drive/folders/1cCKKggwT4RdbT7wkJVHbvvuw-jD6oQEp. This is the same document that is available in AWS documentation here -> https://docs.aws.amazon.com/vpc/latest/mirroring/what-is-traffic-mirroring.htmlPlease share document with an example of Traffic mirroring feature.
Check out this link --> https://docs.aws.amazon.com/quickstart/latest/vpc/security.htmlDMZ stands for DeMilitarized Zone. It means restricted area. So you can put all your webservers/private services/databases in a private subnet, without a Internet Gateway. Then access can be provided into these resources, via a bastion host, residing on a public subnet. The security group for the bastion host, will allow SSH access only from your company network or a particular authorized IP address.
You are running some EC2 instance. Go to EC2 service and terminate the instance. Change the region on the top right and check EC2 service across all regions, to make sure no instance are running across all regions.
Will they charge on Stopped instance even?
@Radhakrishnan KR -Please can you help hereHello RK Sir, I have configured an EC2 instance in LMS and configured web server. Butthe webpage is not displaying if I give this address "ec2-34-229-186-228.compute-1.amazonaws.com". Getting this message - "ec2-34-229-186-228.compute-1.amazonaws.com took too long to respond."
You have installed httpd on this machine ? You can try to access this ec2 instance with public IP address. Check if the security group for this instance allows port 80.Hello RK Sir, I have configured an EC2 instance in LMS and configured web server. Butthe webpage is not displaying if I give this address "ec2-34-229-186-228.compute-1.amazonaws.com". Getting this message - "ec2-34-229-186-228.compute-1.amazonaws.com took too long to respond."
Please raise ticket, Team will share the sample projects,Can anyone share project solution for refernce! thanks
Hi, Attached the same project file in all three fields and submitted one practice project. Please check and let me know, Is that the same way we need to do for the final project also.Hi Harshmi, You need to attach the same project file in all three fields & submit the project.
First create a role and select the service as 'Redshift', then select permissions/policies. Several AWS managed policies like 'S3fullaccess', 'S3Readonlyaccess' are created by aws and are available to be selected for your new role.Hi RK,
I am trying to create IAM role to enable Redshift to read S3 . But not seeing any policy for S3 under IAM Role. Is it disabled ?
It sounds good, pls. take screenshot of the resources you have created.Hello Sir,
Please see the project below.
View attachment 18003
For this project, I've created a VPC from launch wizard having 1 public subnet and 1 subnet groups. Then I created subnet groups - 1 for public subnet and 1 for private subnet, security groups - 1 for DB instance and 1 for EC2 instance. Once the VPC has been set up, I worked on DB instance and EC2 instance. I created MySQL DB instance in private subnet in my VPC and configured security group as per DB instance.
Finally I created EC2 instance with Linux AMI in same region, within public subnet within my VPC. After configuring security group, I launched the instance and it was running successfully. I implemented PuTTyGen to get private key in .pem format and using the private key in PuTTy I can able to connect to the my Linux instance.
Do I need to implement anything else apart from this???
Hi Sir,It sounds good, pls. take screenshot of the resources you have created.
In addition those, you might have to write a word document with a writeup on how the front-end/ui might work to capture the inputs from the employees and how you can connect the EC2 instance to the RDS DB instance.
The requirement also states that the application must scale when there is a traffic surge. So You have to create an Auto-Scaling group and Load balancer and submit screenshots of those resources as well.
HI RK,Hi RK,
Could you please explain 2nd project. Confusion on "AWS services that can be used to deploy a serverless web app on the AWS Cloud. The web app will be used to upload and save data by the users". Could you please add some light on this?
If you are the root user with an associated phone number, then you can deactivate your MFA device. Pls. see this blog -> https://aws.amazon.com/blogs/securi...e-faster-by-using-the-aws-management-console/Hi RK
Regarding MFA, what would be the minimum permission assigned for users to configure MFA by themselves, in the demo we have assigned the user 'Joe' the Administrator access?
Suppose we assign MFA for the root user and what if the mobile device is stolen or damaged, how can we then login using root and Is there any way to recover root user account?
I understand that we cannot enforce MFA to all the users in AWS, they themselves have to do it as per their wish, but how as an administrator we can ensure compliance across the organization, I believe Azure has an option to to assign MFA to all Azure users (AD--> Users--> MFA)
The project is asking us to architect a solution, which will allow users to upload a file and save this file in a Storage service and send them an email notification, to the customer's email address, that the file has been uploaded.HI RK,
Could you please help here. ? Wanted to know the use of Route 53
For Project1, I created MySql database and also EC2 instance. Also installed http and able to host and run the webpage. But for storing and retrieving value from database I need to run PHP scripts. Please help me in having information regarding how to execute PHP scripts from AMI Linux. Thank you
You can create an AMI of your EC2 instance and specify that AMI in the launch configuration of the Auto-Scaling group. Then you don't have to go to instances individually and install software.Hi Sir,
Thanks for the response.
As you suggested I created two EC2 instances and installed web servers and connected them to my RDS instance. Then I created an application load balancer with a path-based rule which navigates to my EC2 instances based on traffic. But now if I implement Autoscaling which is going to create EC2 instances automatically for me.
Do I need to manually go to each of the instances created using Autoscaling group and install the web server and connect to RDS instance??
If you have any specific questions on a particular project, pls. ask them here.Hii,
I am Prasad. I want help in doing the projects. Please guide me in doing the projects. Who can help me out in this or else provide anyone's no so that I can ask my doubts to that person.
Request you to help me out in this.....
Hi RK,The project is asking us to architect a solution, which will allow users to upload a file and save this file in a Storage service and send them an email notification, to the customer's email address, that the file has been uploaded.
There are 2 ways to do this. First way you can invoke a lambda function via an api gateway and the lambda function will produce a signed url for an s3 bucket. Now you can directly send a POST request to this signed url along with the file to upload and the file will be uploaded to S3 bucket.
The second option is to create a web application which will allow users to upload a file to an S3 bucket. The web application itself can be hosted as website in S3 or on EC2.
Once the file is uploaded to S3 bucket, you can use S3 event notifications to send a message to SQS queue or an SNS topic, which will send an email notification to the customer. Or you can send the event notification to Lambda function which will programmatically use the SES (Email service) to send an email to the customer.
Route53 is a dns service you can use to route your domain requests to API gateway endpoint or the static web app in S3 bucket.
Check out this blog -> which gives the above solution -> https://aws.amazon.com/blogs/comput...s3-directly-from-a-web-or-mobile-application/