Difference between revisions of "OPS345 Lab 2"
(→AWS Networking) |
(→AWS Networking) |
||
Line 5: | Line 5: | ||
= AWS Networking = | = AWS Networking = | ||
− | * VPCs, subnets | + | * VPCs, subnets |
+ | * Default dynamic public IP | ||
+ | * Default static private network/IP | ||
+ | * Reserving a static public IP under "Elastic IPs", cost of doing that | ||
* VPC dashboard: | * VPC dashboard: | ||
** New VPC vpc-ops345 with CIDR block 10.3.45.0/24, no IPv6 | ** New VPC vpc-ops345 with CIDR block 10.3.45.0/24, no IPv6 | ||
Line 12: | Line 15: | ||
* Create a new VM named "router", in the new vpc/subnet. | * Create a new VM named "router", in the new vpc/subnet. | ||
** Follow the instructions in lab 1, except create a new key called ops345-allmachines-key | ** Follow the instructions in lab 1, except create a new key called ops345-allmachines-key | ||
+ | ** Associate elastic IP with router | ||
= Firewalls = | = Firewalls = |
Revision as of 21:39, 15 September 2021
Contents
THIS PAGE IS A DRAFT, NOT A REAL COURSE PAGE
The current schedule for OPS345 is here: OPS335_Weekly_Schedule
AWS Networking
- VPCs, subnets
- Default dynamic public IP
- Default static private network/IP
- Reserving a static public IP under "Elastic IPs", cost of doing that
- VPC dashboard:
- New VPC vpc-ops345 with CIDR block 10.3.45.0/24, no IPv6
- Subnets: create a new one in vpc-ops345 named subnet-ops345, in us-east-1a, 10.3.45.0/24 (to fit inside the VPC)
- Edit subnet, enable auto-assign public IPv4 addresses
- Create a new VM named "router", in the new vpc/subnet.
- Follow the instructions in lab 1, except create a new key called ops345-allmachines-key
- Associate elastic IP with router
Firewalls
- The purpose of a firewall on a server on the internet
- AWS Security Groups and iptables
IPtables setup
- iptables setup and troubleshooting, nmap
- iptables fundamentals
- Securing services that need to be publicly accessible
Port forwarding SSH
- Port forwarding SSH