In on-premise data center , data is in customer own control at physical storage and logical level . We can implement any security tools for our own convenient . But in cloud its not the same case , you will not get deep control on it . So you have to plane well to ensure data security. The following points…
Category: AWS
How to setup VPN connection between two AWS VPC
VPC – Virtual Private Cloud . The core network component in AWS. It provide isolated network environment .Normally communication between two VPCs not enabled . We can enable communication through VPC peering, AWS supports peering connections for same region,different region, same account or different AWS account . When we use VPC peering it use AWS backbone network . So it…
What are the different types of encryption mechanism available in AWS to encrypt data at rest in s3 ?
Data protection refers to protecting data while in-transit (as it travels to and from Amazon S3) and at rest (while it is stored on disks in Amazon S3 data centers) 1.Server-Side Encryption Request Amazon S3 to encrypt your object before saving it on disks in its data centers and then decrypt it when you download the objects. 2.Client-Side Encryption Encrypt…
How to configure AWS cloud trail logs to S3 Bucket?
AWS CloudTrail is a web service that records activity made on your account and delivers log files to your Amazon S3 bucket. CloudTrail provides visibility into user activity by recording actions taken on your account . CloudTrail records important information about each action, including who made the request, the services used, the actions performed, parameters for the actions, and the…
How to configure multiple AWS EC2 Elastic Network Interface ENI in Linux instance
AWS EC2 instance by-default will have one ENI with private / public IP address .In some cases need 2 or more separate IP address for high availability solutions, multiple web deployments or to separate the management ,administration and public traffic .In AWS we can create additional ENI NIC and can attach to instance . Elastic Network Interface (ENI) properties: Every…
What is the difference between AWS IAM user and role
Below are the difference between IAM user and role. IAM User: An IAM user has permanent long-term credentials and is used to directly interact with AWS services . Users can make requests to AWS services using security credentials. A user is a unique identity recognized by AWS services and applications. Similar to a login user in an operating system like…
How to connect aws ec2 instance Linux server console
In traditional Data center environment , VM ware and other cloud providers like Azure having options to connect Linux virtual server serial console . Through IMM console or through web browser or through some application call . Normally why we want to connect with Linux server console? If you are unable to reach your instance via ssh , problem diagnostics…
How to practice AWS using without paying
In AWS account setup is simple concept . AWS Account is normally common for single user or Enterprise account for organisation,you will not find any difference in service features , view etc . There is no concept of trial account or separate free tier account. It is really possible to practice AWS without paying using AWS free tier? The answer…
AWS ENI – Error deleting network interface
In AWS sometimes you could see the error message when try to detach ENI “Error deleting network interface” . It’s normal , we just need to understand the concept . ENI’s are not only created by manually . When you create some resources , AWS will automatically create the backend must required resource. Example when you create EFS it will…
How to login with AWS CLI from Windows
Step1: To login into AWS CLI , first need to install AWS CLI package . The CLI package available for different OS . you can download from amazon website http://docs.aws.amazon.com/cli/latest/userguide/installing.html Step2: Create IAM User account with access key and Secret Key . Dont forget to save , you can not view or download it again. You can create multiple access…
How to attach role to AWS EC2 instance after launching
Few years back this feature was not available in AWS .Once instance launched with particular role you can not replace . Need to launch the instance with required role .This is really challenge task in real time scenario Now Amazon enabled this beautiful features . So you can attache or replace the role to instance anytime even in EC2 instance…
How to redirect http URL to https in AWS ELB
In AWS ELB we can pass the traffic as HTTP (80) or HTTPS (443) . If you are using HTTPS you have to terminate SSL certificate either in ELB or backend EC2 instance. Normally users will type the URL directly in browser not with HTTP or HTTPS . When user type the URL with HTTPS the request will responded directly…
How to create S3 Bucket in AWS and set permission
Creating S3 bucket very simple . In-fact you can create without any guidance also , like creating folder in google drive ,super easy. But if you are new , you may need some assistance on setting up permissions. The below steps will help you. 1.Login to S3 console page You can find information about any existing bucket . 2.Click “Create…
How to configure ELB in AWS
Elastic Load Balancing – ELB Elastic Load Balancing automatically distributes traffic across multiple targets – Amazon EC2 instances, containers and IP addresses – in a single Availability Zone or multiple Availability Zones. Amazon offers 3 types of Load Balancer: 1.Classic Load Balancer2.Application Load Balancer3.Network Load Balancer Now lets see how to configure classic load balancer and how to configure Classic…
Amazon Glacier in 5 min
What is Amazon Glacier? Amazon Glacier is an extremely low-cost storage service that provides secure, durable, and flexible storage for data backup and archival.Remember its not a direct backup tool , its a storage service for Backup & Archive.It is managed service from Amazon,so need to worry about capacity planning . You can store unlimited data with low price $0.004 per…