Difference between revisions of "OPS345 Lab 2"

From CDOT Wiki
Jump to: navigation, search
(AWS Networking)
(AWS Networking)
Line 5: Line 5:
 
= AWS Networking =
 
= AWS Networking =
  
* VPCs, subnets, private IPs, public IPs
+
* VPCs, subnets
 +
* Default dynamic public IP
 +
* Default static private network/IP
 +
* Reserving a static public IP under "Elastic IPs", cost of doing that
 
* VPC dashboard:  
 
* VPC dashboard:  
 
** New VPC vpc-ops345 with CIDR block 10.3.45.0/24, no IPv6
 
** New VPC vpc-ops345 with CIDR block 10.3.45.0/24, no IPv6
Line 12: Line 15:
 
* Create a new VM named "router", in the new vpc/subnet.
 
* Create a new VM named "router", in the new vpc/subnet.
 
** Follow the instructions in lab 1, except create a new key called ops345-allmachines-key
 
** Follow the instructions in lab 1, except create a new key called ops345-allmachines-key
 +
** Associate elastic IP with router
  
 
= Firewalls =
 
= Firewalls =

Revision as of 21:39, 15 September 2021

THIS PAGE IS A DRAFT, NOT A REAL COURSE PAGE

The current schedule for OPS345 is here: OPS335_Weekly_Schedule

AWS Networking

  • VPCs, subnets
  • Default dynamic public IP
  • Default static private network/IP
  • Reserving a static public IP under "Elastic IPs", cost of doing that
  • VPC dashboard:
    • New VPC vpc-ops345 with CIDR block 10.3.45.0/24, no IPv6
    • Subnets: create a new one in vpc-ops345 named subnet-ops345, in us-east-1a, 10.3.45.0/24 (to fit inside the VPC)
    • Edit subnet, enable auto-assign public IPv4 addresses
  • Create a new VM named "router", in the new vpc/subnet.
    • Follow the instructions in lab 1, except create a new key called ops345-allmachines-key
    • Associate elastic IP with router

Firewalls

  • The purpose of a firewall on a server on the internet
  • AWS Security Groups and iptables

IPtables setup

  • iptables setup and troubleshooting, nmap
  • iptables fundamentals
  • Securing services that need to be publicly accessible

Port forwarding SSH

  • Port forwarding SSH