AWS-SysOp-Sonal-Mar16-Apr2-Queries

Discussion in 'Cloud Computing' started by yogini Dahiwadkar, Mar 18, 2020.

  1. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    hi all learners,
    I created this community forum for all of us for AWS Sysop course by Sonal Sarda for Mar 16th-Apr2. We can help each other here with all our queries.
     
    #1
  2. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Hi, I have created the Inline Policy. The created inline policy is attached to group and user is added to the group. How to verify the inline policy for user?

    Please give the detailed steps.

    Thanks,
    Prashant K
     
    #2
  3. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Thats good.
     
    #3
  4. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Disappointed to see no reply
     
    #4
  5. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    Hi Prashant,

    It works like a normal policy attached to user. To verify if the attached inline policy working , you need to logon by the user & try to access the service for which the policy has been created.

    Thanks & Regards
    Sonal
     
    #5
    Prashant Kulkarni_3 likes this.
  6. Sai Pavan Kumar

    Joined:
    Feb 26, 2020
    Messages:
    6
    Likes Received:
    0
    @Yogini,

    I see that you completed certification for Solution Architect . Congratulations on that! I started SysOps course in current Sonal's batch first and hope to start Solution Architect course next. Would you mind suggesting if starting Solution Architect program first helped understand SysOps better or do you think is it still good enough to go for Solution Architect later as well?
     
    #6
  7. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Hi Sai,
    I think it's ok to do either way. But As per Sonal, it should be solution architect first and then Sysop.... I don't know, what's in sysop in the future classes so I will take Sonal's word on it. So far, it's almost same, except in solution architect we had good practice on VPC while here we had more hands on IAM. If you are thinking about doing both, then finish both courses and then give AWS exam. I am planning to give solution arch AWS exam after sysop is finished. I hope this helps
    Yogini
     
    #7
  8. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    I have tried to create VPC with CLI as per last class homework. I have successfully created everything so far for the VPC but now stuck at the part where we need to change CHMOD 400 of my security_key. I am using windows 10. it says
    ---------------------------------------------
    ssh ec2-user@54.234.128.191 -i MYCLIKEY123
    The authenticity of host '54.234.128.191 (54.234.128.191)' can't be established.
    ECDSA key fingerprint is SHA256:RWr21mFF2T2Grkk2XC8ytdp6tI7+AnOJGPQ5BR0fehM.
    Are you sure you want to continue connecting (yes/no)? yes
    Warning: Permanently added '54.234.128.191' (ECDSA) to the list of known hosts.
    Load key "MYCLIKEY123": invalid format
    ec2-user@54.234.128.191: Permission denied (publickey).
    --------------------------------------------
    I know this is because of chmod, but how to do it?
    Any help appreciated.

    Yogini
     
    #8
  9. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    Hi Yogini,

    As from the error msg I can understand that your key file is incorrect. You need to use pem file.

    Thanks & Regards
    Sonal
     
    #9
  10. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Sonal,
    I was able to login to EC2 with CLI....there was some mistake while creating security_key. Homework complete :)

    Yogini
     
    #10
  11. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    Good.

    Thanks & Regards
    Sonal
     
    #11
  12. Mallikarjun Immadi

    Joined:
    Feb 14, 2020
    Messages:
    2
    Likes Received:
    4
    Hello Guys....!
    Very Good Evening.

    I would like to share the CLI commands to perform the tasks that we have been doing in GUI (Of course, few were part of HW also).

    Please be noted that all values in BOLD are to be adjusted as per your requirement and environment details.

    To Start with AWS CLI,

    1. First download and install the cli tool from Amazon official portal (https://docs.aws.amazon.com/cli/latest/userguide/install-windows.html). Link is working as on date of this post.
    Pre requisite is to have python also installed on the machine.
    2. Once installed, we need to configure the CLI. To do so, use below command and provide the details as requested on the screent.
    Configuring CLI
    Command:
    aws configure
    Above command needs input of below data
    aws_access_key_id: <keyID of the user who is going to perform the CLI operations>
    aws_secret_access_key: <secret access key that was generated during the account creation>
    region: <default region in which user would be performing the operations>
    output: <default output format while executing the commands eg. json, text, table>
    Once above steps are completed, we are ready for working with aws cli tool.
    Creating and configure VPC
    Command:
    aws ec2 create-vpc --cidr-block 30.0.0.0/16 --no-amazon-provided-ipv6-cidr-block --instance-tenancy default
    Sample o/p.
    {
    "Vpc": {
    "CidrBlock": "30.0.0.0/16",
    "DhcpOptionsId": "dopt-1b505873",
    "State": "pending",
    "VpcId": "vpc-0e0dba65429623bc3",
    "OwnerId": "564255957027",
    "InstanceTenancy": "default",
    "Ipv6CidrBlockAssociationSet": [],
    "CidrBlockAssociationSet": [
    {
    "AssociationId": "vpc-cidr-assoc-06d7730d66bf387a5",
    "CidrBlock": "30.0.0.0/16",
    "CidrBlockState": {
    "State": "associated"
    }
    }
    ],
    "IsDefault": false,
    "Tags": []
    }
    }
    Note down the VpcId from above output

    Creating subnet.
    Command:
    aws ec2 create-subnet --vpc-id vpc-0e0dba65429623bc3 --cidr-block 30.0.0.0/24
    aws ec2 create-subnet --vpc-id vpc-0e0dba65429623bc3 --cidr-block 30.0.1.0/24
    Note down subnetIds of both subnets.

    Create an Internet Gateway
    Command:
    aws ec2 create-internet-gateway
    Note down the internet gateway ID.

    Attach Internet Gateway to VPC
    Command:
    aws ec2 attach-internet-gateway --vpc-id vpc-0e0dba65429623bc3 --internet-gateway-id igw-0142b97d4d298569f

    Create RouteTables in VPC

    Command:
    aws ec2 create-route-table --vpc-id vpc-0e0dba65429623bc3
    Note down the route table id.

    Make this route table public by adding route to Internet Gateway.
    Command:
    aws ec2 create-route --route-table-id rtb-0529687f4999d1a73 --destination-cidr-block 0.0.0.0/0 --gateway-id igw-0142b97d4d298569f

    Associate the subnet with route table

    Command:
    aws ec2 associate-route-table --subnet-id subnet-069463b27d30474e6 --route-table-id rtb-0529687f4999d1a73

    Enabling public IP Association to every instance that is launched in this subnet.

    Command:
    aws ec2 modify-subnet-attribute --subnet-id subnet-069463b27d30474e6 --map-public-ip-on-launch

    Creating Security Group.
    Command:
    aws ec2 create-security-group --group-name SSHAccess --description "Security group for SSH access" --vpc-id vpc-0e0dba65429623bc3
    Note down the security group id.

    Allow in coming traffic to port 22/SSH from anywhere.
    Command:
    aws ec2 authorize-security-group-ingress --group-id sg-08a37dd1b6c37153c --protocol tcp --port 22 --cidr 0.0.0.0/0

    Launch an EC2 instance in subnet created.
    Command:
    aws ec2 run-instances --image-id ami-0a74bfeb190bd404f --count 1 --instance-type t2.micro --key-name vMI-EC2-Basic --security-group-ids sg-08a37dd1b6c37153c --subnet-id subnet-069463b27d30474e6
    Please be noted that image-id is the ID of the AMI that you wanna launch, key-name is the name of key file, security-group-ids and subnet-id are the values that were noted down earlier.
    Note down Instance ID.

    Create tag and associate it with the newly created instance.
    Command:
    aws ec2 create-tags --resource i-09220c24759df9a9f --tags Key=Name,Value=vMI-ec2ViaCli01

    --resource is the value of the instance ID that we noted down earlier.

    Fetch the details of the instance.
    Command:
    aws ec2 describe-instance --instance-id i-0c3b468651b042c3a

    Creating a snapshot of the EC2 instance volume.
    Command:
    aws ec2 create-snapshot --volume-id vol-036a7703fd5a518db --description SnapShotFromvMI-EC2-BasicInstance --tag-specifications ResourceType=snapshot,Tags=[{Key=Name,Value=SS-EC2-Basic}]
    Note down the snapshot id.


    Create an EBS volume using the snapshot created.
    Command:
    aws ec2 create-volume --volume-type gp2 --availability-zone ap-south-1a --snapshot-id snap-03cf6547ddedf5002
    Note down the volume id.

    Attach the volume to an instance.
    Command:
    aws ec2 attach-volume --volume-id vol-0b21f48ce4a65e3ae --instance-id i-0c3b468651b042c3a --device /dev/sdf

    Check whether attached volume is visible by logging on to the instance.


    Detaching the volume from an instance.
    Command:
    aws ec2 detach-volume --volume-id vol-0b21f48ce4a65e3ae --instance-id i-0c3b468651b042c3a --device /dev/sdf

    Delete the volume.
    Command:
    aws ec2 delete-volume --volume-id vol-0b21f48ce4a65e3ae

    Delete the snapshot.
    Command:
    aws ec2 delete-snapshot --snapshot-id snap-03cf6547ddedf5002

    Create an AMI image from an EC2 instance with name vMI-Golden-Image and no reboot.
    Command:
    aws ec2 create-image --instance-id i-077f235300c667c3b --name "vMI-Golden-Image" --no-reboot
    Note down the image id.

    Create a tag and attach to the image created.
    Command:
    aws ec2 create-tags --resource ami-0e5e0c21f7385c63e --tags Key=Name,Value=vMI-Golden-Image

    Launch an EC2 instane using the above created AMI in the public subnet that we created earlier.
    Command:
    aws ec2 run-instances --image-id ami-0e5e0c21f7385c63e --count 1 --instance-type t2.micro --key-name vMI-EC2-Basic --security-group-ids sg-076ec8ade8097dbdd --subnet-id subnet-03cad69ba4f41dadf
    Note down the instance ID.

    Create tag and attach it to the instance.
    Command:
    aws ec2 create-tags --resource i-035330b7b90828619 --tags Key=Name,Value=EC2FromGoldenImage

    Copy the AMI to different region to launch instance in that region as AMIs are specific to that region only.
    Command:
    aws ec2 copy-image --source-image-id ami-0e5e0c21f7385c63e --source-region ap-south-1 --region us-east-1 --name "vMI-Golden-Image02"
    Note down the Image ID.

    Create tag and attach to the copied Image.
    Command:
    aws ec2 create-tags --resource ami-0aab8a3ecd2f1ffe8 --tags Key=Name,Value=vMI-Golden-Image02 --region us-east-1

    Launch an EC2 using the copied AMI.

    Delete/De-register the image.
    Command:
    aws ec2 deregister-image --image-id ami-0e5e0c21f7385c63e
    aws ec2 deregister-image --image-id ami-0aab8a3ecd2f1ffe8 --region us-east-1

    Terminate the EC2 instance.
    Command:
    aws ec2 terminate-instances --instance-ids i-09220c24759df9a9f

    Delete the Security Group.
    Command:
    aws ec2 delete-security-group --group-id sg-08a37dd1b6c37153c

    Delete the subnets.
    Command:
    aws ec2 delete-subnet --subnet-id subnet-069463b27d30474e6
    aws ec2 delete-subnet --subnet-id subnet-01edddd22e252959a

    Delete the route table.
    Command:
    aws ec2 delete-route-table --route-table-id rtb-0529687f4999d1a73

    Detach the internet gateway.
    Command:
    aws ec2 detach-internet-gateway --internet-gateway-id igw-0142b97d4d298569f --vpc-id vpc-0e0dba65429623bc3

    Delete the internet gateway.
    Command:
    aws ec2 delete-internet-gateway --internet-gateway-id igw-0142b97d4d298569f

    Delete the VPC.
    Command:
    aws ec2 delete-vpc --vpc-id vpc-0e0dba65429623bc3


    Hosting a static website:

    Create an S3 bucket.
    Command:
    aws s3 mb vmi-s3-bucket

    List S3 buckets.
    Command:
    aws s3 ls

    Copy data to S3 bucket and make it public readable.
    Command:
    aws s3 cp awsStaticWebSite/index.html s3://vmi-s3-bucket/ --grants read=uri=http://acs.amazonaws.com/groups/global/AllUsers

    Enable S3 Static Website Hosting on the newly created S3 bucket.
    Command:
    aws s3 website s3://vmi-s3-bucket/ --index-document index.html

    Below is the sample static website I have hosted on my S3

    http://vmi-s3-bucket.s3-website.ap-south-1.amazonaws.com/
     
    #12
  13. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    That's great Mallikarjun. This will be helpful for many learners.
    Yogini
     
    #13
  14. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Hi Sonal,
    What could be the possible reason, I am not able to connect with my EC2 instance from putty, it's giving timeout error ? my ssh port is open, tried creating new key pair with new instance.
     
    #14
  15. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Thanks sonal for helping me today during the session.
    Yogini
     
    #15
  16. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Sonal,
    why my system giving the error, while I am trying to connect my EC2 instance with SSH instead of putty? I have made my pem file read only. What needs to be done so that ssh command works in my command prompt to connect to the EC2 instance.

    C:\Users\yogini.dahiwadkar>ssh -i AWS-KEY.pem ec2-user@54.81.228.42
    @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
    @ WARNING: UNPROTECTED PRIVATE KEY FILE! @
    @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
    Permissions for 'AWS-KEY.pem' are too open.
    It is required that your private key files are NOT accessible by others.
    This private key will be ignored.
    Load key "AWS-KEY.pem": bad permissions
    ec2-user@54.81.228.42: Permission denied (publickey).
     
    #16
  17. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    why Alias record is also categorized as type "A"? Why not some other name?
     
    #17
  18. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    two questions/issues while doing handon on route53 Alias record.... cloudfront (http and https open) and website was hosted with the static server of S3. Both bucket and index.html is made public.

    1) while creating alias record...it was not populating the cloudfront automatically....I had waited few hrs while tried multiple times
    2) when I tried to connect via dns of the cloudfront….
    ---> but gave proper message that
    The website declined to show this webpage
    ) when USA was blacklisted
    -----.> it gave me message as access denied when USA was whitelisted...why it should happen?

    Let me know.

    I had fun doing the Route53 handson practice except for cloudfront above.

    Yogini
     
    #18
    Last edited: Mar 31, 2020
  19. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Hi Sonal, still I am getting the OutOfService for the instance created through AutoScaling. Please check this and help me in this regard.
    Screenshot attached.

    Thanks,
    Prashant K
     

    Attached Files:

    #19
  20. Mallikarjun Immadi

    Joined:
    Feb 14, 2020
    Messages:
    2
    Likes Received:
    4
    Hi Prashant,

    Do check if webservices are installed on the Instance or not. Also are you able to access the website by directly connecting to the instance?
     
    #20
  21. Deepika Solanki

    Joined:
    Mar 4, 2020
    Messages:
    4
    Likes Received:
    1
    I am trying to use route 53 for s3 hosted website.
    s3 website is up and running. But my s3 website name is not coming under Alias record. Name of record and bucket is same still i dont see
    it under alias?
    I am using simplylearn lab. We can try simply learn for it?
     
    #21
  22. Deepika Solanki

    Joined:
    Mar 4, 2020
    Messages:
    4
    Likes Received:
    1
    Are you using simply learn lab? I am also trying the same for s3 static website. but i could not see my website name under Alias record.
     
    #22
  23. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Yes, I am able to access the website directly connecting to the instance.
     
    #23
  24. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Sonal or Mallikarjun, can you please help me in this regard? I am little bit worried as Instance created through Auto Scaling is showing OutOfService.

    Your quick response is appreciated.

    Thanks,
    Prashant K
     
    #24
  25. Raghavendra Prasad(Ragz)

    Joined:
    Apr 5, 2020
    Messages:
    3
    Likes Received:
    0

    Awesome Mallikarjuna.Many Thanks
     
    #25
  26. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Hi Sonal,

    Can you please help me in this regard?

    Thanks,
    Prashant K
     
    #26
  27. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    PRashant,
    Will you please delete the current Auto scaling group and then recreate it....I am not an expert but this might help

    Yogini
     
    #27
  28. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Dipika,
    I was using the free tier.
    did you get it by now? I
    Deepika.
    I haven't tried in SL lab...I was using the free tier.... did it solve the problem for you?
    Yogini
     
    #28
  29. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    HI Yogini,

    We discussed & fixed this issue in class. Hope things are working fine.

    Thanks & Regards
    Sonal
     
    #29
  30. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    Hi Yogini,

    We discussed this in class.Hope your doubt is clear.

    Thanks & Regards
    Sonal
     
    #30
  31. Deepika Solanki

    Joined:
    Mar 4, 2020
    Messages:
    4
    Likes Received:
    1
    I followed the same steps on free tier their it worked.
     
    #31
    yogini Dahiwadkar likes this.
  32. Deepika Solanki

    Joined:
    Mar 4, 2020
    Messages:
    4
    Likes Received:
    1
    Have Sonal mam provided the ans for the sample question set given in the last class?
     
    #32
  33. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2


    HI Yogini,

    When you are using s3 as a origin domain in Cloudfront ,You don't have to make your bucket & object public, just host a static website in s3 bucket without making the object public(as we don't want direct access to bucket , the request should be routed from CF)
    Answer to your 1st question , you need to add CNAME in cloudfront distribution first and then you can create a record in Route 53 for this distribution.
    Answer to 2nd question , try whitelisting your country you should be able to reach to CF distribution.

    Thanks & Regards
    Sonal
     
    #33
  34. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    Hi Deepika,

    I will share answer key by tomorrow. Did you attempt the questions?

    Thanks & Regards
    Sonal
     
    #34
  35. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    HI Prashant,

    Have you installed & started httpd service in the instance launched by autoscale?

    Thanks & Regards
    Sonal
     
    #35
  36. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Hi Sonal,

    Earlier I did not not install and started the service. As per your suggestion I did it and worked.

    Many thanks for your solution.

    Regards,
    Prashant K.
     
    #36
  37. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Yogini,

    I did it as per the suggestion given by Sonal as above and it worked. Earlier I did not install and start the service and later I did it and it worked.

    - Prashant K
     
    #37
    Last edited: Apr 8, 2020
  38. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Sonal,

    Please let us know how to closed the free tier account when it gets expired so that we will not get charged.
     
    #38
  39. Sai Pavan Kumar

    Joined:
    Feb 26, 2020
    Messages:
    6
    Likes Received:
    0
    Hi Sonal,

    When testing this CloudFront distribution, should we verify blacklist/whitelist directly with CloudFront DNS or the AWS Alias record name under Route 53 that we associate with CF CNAME?

    Because, I created a CNAME in CF distribution, blacklisted countries and verified that Amazon pops up an error message on blacklisted locations while showing domain properly on others.

    But problem is that when I make an external domain as origin in CF distribution and apply same process, it does not work with ALIAS record in Route 53... ALIAS record seems to not follow CF restrictions. I don't see the significance of Route 53 DNS resolution here. Kindly clarify

    Thanks,
    Pavan Kumar
     
    #39
    Last edited: Apr 10, 2020
  40. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Hi,

    Can someone please share the 2 project links that Sonal has shared with us for practice purpose? and also the link for practice questions which Sonal shared with us as word document.

    - Prashant K
     
    #40
  41. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    HI Prashant,

    You need to delete the account.
    Click on My Account , scroll down,you will find an option to delete the account.

    Thanks & Regards
    Sonal
     
    #41
  42. Raghavendra Prasad(Ragz)

    Joined:
    Apr 5, 2020
    Messages:
    3
    Likes Received:
    0
    Hi Friends.

    Thought its basic questions but wanted better understanding

    1) Why EIP is required for NAT Instance/NAT gateway, Anyway no one from outside is going to access private subnet instance.
    Private subnet instances needs internet, we have created NAT, why cannot we go with public ip? why EIP is such a must needed?

    2) Why we need to do source and destination check disabled for NAT instance, if i dont do it whats the impact.

    Kindly help these two question.
     
    #42
  43. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Please someone share the 2 project websites which Sonal shared in the class.
     
    #43
  44. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Yes. Sonal.

    Thanks for checking Community forum.

    Yogini
     
    #44
  45. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Sonal,

    I had done the steps you had mentioned. But I will try to create again in 2-3 days and let you know, if it worked or not. But thanks for checking this community forum

    Yogini
     
    #45
  46. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Great !

    Yogini
     
    #46
  47. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    I am not sure exactly what you are looking for but I think this what you are expecting..

    https://aws.amazon.com/lightsail/projects/

    100awsprojects

    I hope this helps

    Yogini
     
    #47
  48. yogini Dahiwadkar

    yogini Dahiwadkar Active Member

    Joined:
    Jun 11, 2019
    Messages:
    26
    Likes Received:
    6
    Sonal,

    Will you pls provide the ans. keys ?

    Yogini
     
    #48
  49. Prashant Kulkarni_3

    Prashant Kulkarni_3 Active Member

    Joined:
    Feb 15, 2020
    Messages:
    19
    Likes Received:
    0
    Yes thanks, can you please provide the link for 100awsprojects?
     
    #49
  50. _8852

    _8852 Well-Known Member
    Alumni Trainer

    Joined:
    Jun 21, 2017
    Messages:
    64
    Likes Received:
    2
    HI,

    PFB Answer key.

    1) D
    2) A
    3) B,D,E
    4) B
    5) A,B
    6) C
    7) D
    8) D
    9) B
    10) A
    11) D
    12) B
    13)A
    14) A,D
    15) A,E
    16) B
    17)C
    18) A,C,D
    19) A,E
    20) A,D

    Thanks & Regards
    Sonal
     
    #50

Share This Page