Week |
Objectives and Tasks |
Labs |
Week 1: date
|
Course introduction
- About the course
- Review of prerequisite skills from ULI101 and OPS245
- AWS account requirements and account setup
- Your workstation setup
|
Prep for Labs |
Week 2: date
|
First VM in the cloud
- AWS cost monitoring
- Basic security on a public-facing server: users, passwords, login requirements, SSH keys, lock-out prevention
- AWS networking, static IPs
- Deploying a pre-built VM on AWS
|
Lab 1 |
Week 3: date
|
AWS networking, iptables
- The purpose of a firewall on a server on the internet
- AWS Security Groups and iptables
- iptables fundamentals
- iptables setup, troubleshooting, lock-out prevention
- Securing services that need to be publicly accessible
- Port forwarding
|
Lab 2 |
Week 4: date
|
Web server
- Apache web server configuration
- Web server storage, configuration, LVM
- Simple PHP websites
- Public server without public ip
HTTP vs HTTPS
Configuration using a self-signed certificate
Firefox setup on workstation to include CA
Configuring Roundcube Webmail
|
Lab 3 |
Week 5: date
|
Databases
- RDBMS fundamentals
- MariaDB on AWS
- Practice with MariaDB
- Web server + database example: NextCloud
|
Lab 4 |
Week 6: date
|
Assignment 1
- Assignment 1
- Register a domain name
- Use registrar's interface to set up A, TXT records
- Set up Let's Encrypt
- Modify Apache to use HTTPS
- HTTP redirect from HTTP to HTTPS
- ...
|
|
Week 7: date
|
Evaluation
- Guided self-evaluation (online)
- Presentation (in-class)
|
|
Study Week: date |
|
Week 8: date
|
DNS
- DNS overview
- Bind DNS server configuration
- Forward lookups
- Forwarders
- Workstation configuration
|
Lab 5 |
Week 9: date
|
Simple email server
- Second AWS VM: email
- Basic Postfix setup
- Delivery using dovecot-lda to Maildir
- Monitoring script from 'dns' sending messages to 'email'
- Reading Maildir using Mutt
- Email server security: open relays, port access
|
Lab 6 |
Week 10: date
|
IMAP server
- Certificate/key management using TinyCA
- Dovecot configuration as an IMAP server using a self-signed certificate
- Postfix remote access configuration using a self-signed certificate
- Thunderbird setup on the workstation (including CA)
|
Lab 7 |
Week 11: date
|
Proper Cloud data storage
- Storage overview on AWS
- EBS
- RDS
- EFS
- S3
|
Lab 8 |
Week 12: date
|
Automatic Deployment and Configuration Management (no lab)
- What we did wrong in this course
- Automatic, demand-based deployment of VMs
- Automatically configuring new VMs
- Containers
|
|
Week 13: date
|
Assignment 2 |
|
Week 14: date
|
Evaluation
- Guided self-evaluation (online)
- Presentation (in-class)
|
|