{"id":67414,"date":"2018-09-11T07:37:26","date_gmt":"2018-09-11T07:37:26","guid":{"rendered":"https:\/\/www.whizlabs.com\/blog\/?p=67414"},"modified":"2020-08-31T18:06:52","modified_gmt":"2020-08-31T18:06:52","slug":"create-virtual-private-cloud-in-aws","status":"publish","type":"post","link":"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/","title":{"rendered":"Build Your First Virtual Private Cloud (VPC) in AWS"},"content":{"rendered":"<p style=\"text-align: justify;\"><em>Are you creating Virtual Private Cloud for the first time? Here we&#8217;ve got you covered with this\u00a0lab session!<\/em><\/p>\n<p style=\"text-align: justify;\">In this lab session, we will create a<a href=\"https:\/\/www.whizlabs.com\/blog\/aws-vpc\/\" target=\"_blank\" rel=\"noopener noreferrer\"> Virtual Private Cloud (VPC)<\/a> without using the VPC wizard. This VPC will include a frontend Web Server and a backend Relational Database Services (RDS).<\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Here is an overview of the VPC you will create:<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"aligncenter wp-image-67415 size-full\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab1.png\" alt=\"Virtual Private Cloud\" width=\"654\" height=\"392\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab1.png 654w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab1-300x180.png 300w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab1-640x384.png 640w\" sizes=\"(max-width: 654px) 100vw, 654px\" \/><\/p>\n<p><span style=\"font-weight: 400;\">Looks Scary? Don\u2019t worry follow along, and we shall achieve our goal.<\/span><\/p>\n<p style=\"text-align: center;\"><a href=\"https:\/\/www.whizlabs.com\/aws-solutions-architect-associate\/online-course\/\" target=\"_blank\" rel=\"noopener noreferrer\"><img decoding=\"async\" class=\"alignnone size-full wp-image-69376\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/08\/AWS_Certified_Solutions_Architect_Associate_Online_Course.gif\" alt=\"AWS Certified Solutions Architect Associate Online Course\" width=\"728\" height=\"90\" \/><\/a><\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_76 ez-toc-wrap-left counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #ea7e02;color:#ea7e02\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #ea7e02;color:#ea7e02\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Understand_Few_Terms_to_Create_a_Virtual_Private_Cloud_VPC\" >Understand Few Terms to Create a Virtual Private Cloud (VPC)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#What_are_We_Going_to_Cover_in_this_Lab\" >What are We Going to Cover in this Lab?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_1_Create_a_Virtual_Private_Cloud_VPC\" >Task 1: Create a Virtual Private Cloud (VPC)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_2_Create_a_Public_Subnet\" >Task 2: Create a Public Subnet<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_3_Create_an_Internet_Gateway\" >Task 3: Create an Internet Gateway<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_4_Route_Tables_and_Routes\" >Task 4: Route Tables and Routes<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_5_Create_A_Security_Group_For_Your_Public_Subnet\" >Task 5: Create A Security Group For Your Public Subnet<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_6_Launch_a_Web_Server_In_Your_Public_Subnet\" >Task 6: Launch a Web Server In Your Public Subnet<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_7_Create_A_Private_Subnet_For_Your_Backend_MySQL_Server\" >Task 7: Create A Private Subnet For Your Backend MySQL Server<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_8_Create_A_Second_Private_Subnet_For_Your_Backend_MySQL_Server\" >Task 8: Create A Second Private Subnet For Your Backend MySQL Server<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_9_Create_A_Security_Group_For_Your_Backend_MySQL_Server\" >Task 9: Create A Security Group For Your Backend MySQL Server<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Task_10_Create_a_Backend_Amazon_RDS_Database\" >Task 10: Create a Backend Amazon RDS Database<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/www.whizlabs.com\/blog\/create-virtual-private-cloud-in-aws\/#Its_the_Time_to_End_the_Lab\" >It&#8217;s the Time to End the Lab<\/a><\/li><\/ul><\/nav><\/div>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Understand_Few_Terms_to_Create_a_Virtual_Private_Cloud_VPC\"><\/span>Understand Few Terms to Create a Virtual Private Cloud (VPC)<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h4 style=\"text-align: justify;\">Region<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">AWS Region is an independent collection of AWS computing resources in a defined geography. Each AWS Region has multiple, isolated locations known as Availability Zones.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Amazon Virtual Private Cloud (VPC)<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Amazon Virtual Private Cloud (Amazon VPC) lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define. You have complete control over your virtual networking environment, including the selection of your own IP address range, the creation of subnets, and the configuration of route tables and network gateways. You can use both IPv4 and IPv6 in your VPC for secure and easy access to resources and applications.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Subnet<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">A subnet (short for &#8220;subnetwork&#8221;) is an identifiably separate part of an organization&#8217;s network. These are the logical subdivisions of an IP network.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Public Subnet<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">A logical subnet whose instance can be reachable over the internet directly.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Private Subnet<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">A logical subnet whose instance cannot be reachable over the internet directly.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Security group<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">A security group acts as a virtual firewall for your instance to control inbound and outbound traffic.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Network ACL<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">A network access control list (ACL) is an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Route Table<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">A route table contains a set of rules, called routes, that are used to determine where network traffic is directed.<\/span><\/p>\n<h4 style=\"text-align: justify;\">Internet Gateway<\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">An Internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between instances in your VPC and the Internet.<\/span><\/p>\n<blockquote><p><strong>Also Read:<\/strong>\u00a0<a href=\"https:\/\/www.whizlabs.com\/blog\/aws-connectivity-vpc\/\" target=\"_blank\" rel=\"noopener noreferrer\">How to Improve Connectivity and Secure your VPC Resources?<\/a><\/p><\/blockquote>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"What_are_We_Going_to_Cover_in_this_Lab\"><\/span><span style=\"font-weight: 400;\">What are We Going to Cover in this Lab?<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In this lab, you will not only learn to create\u00a0Amazon Virtual Private Cloud (VPC) but also how to launch a frontend and backend server. In brief, you will learn to<\/span><\/p>\n<ul style=\"text-align: justify;\">\n<li><span style=\"font-weight: 400;\"> Create a base Amazon Virtual Private Cloud (VPC)<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Create a public subnet for your web server<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Create an Internet Gateway<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Add a route to your main VPC route table so that people can access your web server from the internet<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Create a security group to restrict only HTTP traffic to your web server<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Launch a frontend web server<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Create a private subnet for your Backend MySQL server<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Create a security group for your private subnet to only allow MySQL traffic from the public subnet<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Launch a backend Amazon RDS MySQL server instance<\/span><\/li>\n<\/ul>\n<blockquote>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">During the workshop or after, at any point, if you need any assistance \u2013 kindly write us at <a href=\"https:\/\/help.whizlabs.com\/hc\/en-us\/requests\/new\" target=\"_blank\" rel=\"noopener noreferrer\">Whizlabs Helpdesk<\/a> and we will respond you in no time to resolve your query!<\/span><\/p>\n<\/blockquote>\n<ol style=\"text-align: justify;\">\n<li><span style=\"font-weight: 400;\"> To get to the <strong>AWS Learning account<\/strong>, log in to https:\/\/aws.amazon.com\/console\/<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click on \u201c<strong>Sign In to the Console<\/strong>\u201d<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Provide the email address used for signing in the text box \u201c<strong>Email address of your AWS\u00a0<\/strong><\/span><strong>account<\/strong>\u201d<\/li>\n<li>Provide the \u201c<strong>IAM username<\/strong>\u201d and \u201c<strong>Password<\/strong>\u201d used while signing in. The default IAM user could be root.<\/li>\n<li>Click on \u201c<strong>Sign In<\/strong>\u201d<\/li>\n<li>Alternatively, you can also sign in using root credentials using the \u201c<strong>Sign-in using root account credentials<\/strong>\u201d link on the login page.<\/li>\n<li>If you do not have an AWS account, you can create one by clicking on \u201c<strong>Create a new AWS account<\/strong>\u201d and filling in your details that will be used for signup.<\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">After launching the AWS console, ensure you have selected the region as \u201cOregon\u201d (us-west-2). This is the region, where we will be using the AWS resources during the workshop.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67416\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab2.png\" alt=\"Oregon\" width=\"512\" height=\"84\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab2.png 512w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab2-300x49.png 300w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab2-511x84.png 511w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_1_Create_a_Virtual_Private_Cloud_VPC\"><\/span><span style=\"font-weight: 400;\">Task 1: Create a Virtual Private Cloud (VPC)<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In this task, you will create a VPC.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"8\">\n<li><span style=\"font-weight: 400;\"> In the <strong>AWS Management Console<\/strong>, on the search bar, type <strong>VPC<\/strong>, from the drop-down\u00a0<\/span>click on <strong>VPC<\/strong>.<\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67417\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab3.png\" alt=\"AWS Management Console\" width=\"623\" height=\"127\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab3.png 623w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab3-300x61.png 300w\" sizes=\"(max-width: 623px) 100vw, 623px\" \/><\/p>\n<ol style=\"text-align: justify;\" start=\"9\">\n<li><span style=\"font-weight: 400;\"> In the navigation pane on the left, click <strong>Your VPCs<\/strong> on the VPC dashboard.<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>WATCH OUT:<\/strong> There is a default VPC that has been created while your account is set up. A default VPC is ready for you to use so that you don&#8217;t have to create and configure your own VPC. You can immediately start launching Amazon EC2 instances into your default VPC. However, we are not going to use this for our workshop. We will build a new VPC for the entire workshop.<\/span><\/p>\n<p style=\"text-align: justify;\"><em><span style=\"font-weight: 400;\">You are requested, not to delete any of the existing VPC, Subnets, Route Tables, Internet Gateways, Security Groups, and Network ACLs.<\/span><\/em><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67418\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab4.png\" alt=\"VPC\" width=\"616\" height=\"133\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab4.png 616w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab4-300x65.png 300w\" sizes=\"(max-width: 616px) 100vw, 616px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Okay, let\u2019s proceed to create a new VPC for our lab.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"10\">\n<li>Click<b> Create VPC.<\/b><\/li>\n<li><span style=\"font-weight: 400;\"> In the <strong>Create VPC<\/strong> window use the following:<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Name tag: myawslabVPC<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">IPv4 CIDR block: 10.0.0.0\/16<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Ensure Tenancy: Default<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click Yes, Create<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67419\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab5.png\" alt=\"myawslabVPC\" width=\"630\" height=\"60\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab5.png 630w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab5-300x29.png 300w\" sizes=\"(max-width: 630px) 100vw, 630px\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_2_Create_a_Public_Subnet\"><\/span><span style=\"font-weight: 400;\">Task 2: Create a Public Subnet<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In this task, you will create a public subnet to launch your frontend web server into.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"12\">\n<li><span style=\"font-weight: 400;\"> In the Navigation pane on the left, click <strong>Subnets<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click <strong>Create Subnet<\/strong><\/span><\/li>\n<li><span style=\"font-weight: 400;\">In the <strong>Create Subnet<\/strong> window configure the following:<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Name tag: myawslabPublic<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">VPC: myawslabVPC<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Availability Zone: Select the first one in the list us-west-2a<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">IPv4 CIDR block: 10.0.1.0\/24<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click Yes, Create<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67420\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab6.png\" alt=\"create subnet\" width=\"625\" height=\"333\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab6.png 625w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab6-300x160.png 300w\" sizes=\"(max-width: 625px) 100vw, 625px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">And there you go, you just created a Public subnet.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67421\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab7.png\" alt=\"create a public subnet\" width=\"615\" height=\"27\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab7.png 615w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab7-300x13.png 300w\" sizes=\"(max-width: 615px) 100vw, 615px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Are we all set to launch our web server?? Well, not yet.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Even though your subnet is labelled Public, it is not a public subnet. Do you know why it is not public subnet? By definition a public subnet must have an Internet Gateway. In the next task, you will add an Internet Gateway so that the instances in your public subnet can access the Internet.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67422\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab8.png\" alt=\"task 2\" width=\"633\" height=\"103\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab8.png 633w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab8-300x49.png 300w\" sizes=\"(max-width: 633px) 100vw, 633px\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_3_Create_an_Internet_Gateway\"><\/span><span style=\"font-weight: 400;\">Task 3: Create an Internet Gateway<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ol style=\"text-align: justify;\" start=\"15\">\n<li><span style=\"font-weight: 400;\"> In the navigation pane on the left, click <strong>Internet Gateways<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\"> Create an Internet Gateway by configuring the following:<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><b>Click Create Internet Gateway<\/b><\/p>\n<p style=\"text-align: justify;\"><b>Name tag: <\/b>myawslabIGW<\/p>\n<p style=\"text-align: justify;\">Click Yes,<b> Create<\/b><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67423\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab9.png\" alt=\"create internet gateway\" width=\"628\" height=\"197\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab9.png 628w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab9-300x94.png 300w\" sizes=\"(max-width: 628px) 100vw, 628px\" \/><\/p>\n<ul style=\"text-align: justify;\">\n<li><b> Click Attach to VPC<\/b><\/li>\n<li><b> Click Yes Attach<\/b><\/li>\n<\/ul>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">This will attach the Internet Gateway to your VPC.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67424\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab10.png\" alt=\"attach to vac\" width=\"625\" height=\"305\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab10.png 625w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab10-300x146.png 300w\" sizes=\"(max-width: 625px) 100vw, 625px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Even though you created an Internet Gateway and attached it to the VPC, you still have to tell the instances within your public subnet how to get to the Internet. In the next task, you will add a route to your main VPC route table to tell traffic in your public subnet how to get to the Internet.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_4_Route_Tables_and_Routes\"><\/span><span style=\"font-weight: 400;\">Task 4: Route Tables and Routes<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ol style=\"text-align: justify;\" start=\"17\">\n<li><span style=\"font-weight: 400;\"> In the navigation pane on the left, click <strong>Route Tables<\/strong>.<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">There is currently one default (main) route table associated with the VPC (myawslabVPC) that you created.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"18\">\n<li style=\"text-align: left;\"><span style=\"font-weight: 400;\"> Select the route table that is associated with <strong>myawslabVPC<\/strong><\/span><span style=\"font-weight: 400;\"><strong>\u00a0<img decoding=\"async\" class=\"alignnone size-full wp-image-67425\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab11.png\" alt=\"create route table\" width=\"623\" height=\"143\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab11.png 623w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab11-300x69.png 300w\" sizes=\"(max-width: 623px) 100vw, 623px\" \/><\/strong><\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click the <strong>Routes<\/strong> tab.<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Notice that there is one route in your route table that is associated with your default network. This route allows traffic from the 10.0.0.0\/16 network to pass to other nodes within the network, but it does not allow traffic to go outside of the network.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"20\">\n<li>Click the<b> Subnets Associations <\/b>tab.<\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67426\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab12.png\" alt=\"subnet associations\" width=\"623\" height=\"319\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab12.png 623w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab12-300x154.png 300w\" sizes=\"(max-width: 623px) 100vw, 623px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Every single time we create a new subnet it\u2019s going to be associated by default to our main route table. You can browse this same tab when we create another subnet (the private subnet) later during our lab. Now for that reason, we don\u2019t want our main route table to have a way out to the internet, because every time you create a subnet it shall become internet accessible.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Let\u2019s create a new route table.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"21\">\n<li>Click the<b> Create Route Table.<\/b><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Name tag: myawslabPublicRouteTable<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>VPC<\/strong>: Select myawslabVPC from the drop down<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click <strong>Yes, Create<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67427\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab13.png\" alt=\"create route table\" width=\"624\" height=\"261\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab13.png 624w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab13-300x125.png 300w\" sizes=\"(max-width: 624px) 100vw, 624px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Great, we are now ready to create a route to internet.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"22\">\n<li><span style=\"font-weight: 400;\"> Select the Route Table (<strong>myawslabPublicRouteTable<\/strong>) we just created.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click on the <strong>Routes<\/strong> tab.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click on <strong>Add another route<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click the <strong>Destination<\/strong> field and enter 0.0.0.0\/0<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click the <strong>Target<\/strong> field.\u00a0<\/span>Auto-complete will display the name of the Internet Gateway that you created earlier.<\/li>\n<li>Click the Internet Gateway that you created (<strong>myawslabIGW<\/strong>)<\/li>\n<li>Click <strong>Save<\/strong>.<img decoding=\"async\" class=\"aligncenter wp-image-67428 size-full\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab14.png\" alt=\"create route table\" width=\"623\" height=\"378\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab14.png 623w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab14-300x182.png 300w\" sizes=\"(max-width: 623px) 100vw, 623px\" \/><\/li>\n<li>Click <strong>Subnet Associations<\/strong>.<\/li>\n<li><span style=\"font-weight: 400;\">Click <strong>Edit<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Select <strong>myawslabPublic<\/strong> subnet<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click <strong>Save<\/strong>.<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67429\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab15.png\" alt=\"create route table\" width=\"628\" height=\"323\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab15.png 628w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab15-300x154.png 300w\" sizes=\"(max-width: 628px) 100vw, 628px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">This will associate our Public subnet to the Public Route Table. You have now configured your public subnet so that traffic within it can get out to the internet. Before you create your web server and launch it in the public subnet, you need to control the traffic that is allowed to access your web server. You can do this by creating a security group that only allows HTTP traffic and attaching the security group to your web server.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>NOTE:<\/strong> A security group acts as a virtual firewall for your instance to control inbound and outbound traffic. Security groups act at the instance level, not the subnet level.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">If you don\u2019t specify a particular security group at launch time, the instance is automatically assigned to the default security group for the VPC.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_5_Create_A_Security_Group_For_Your_Public_Subnet\"><\/span><span style=\"font-weight: 400;\">Task 5: Create A Security Group For Your Public Subnet<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In this task, you will add a security so that people can access your web server using <strong>HTTP<\/strong>.<\/span><\/p>\n<ol style=\"text-align: justify;\" start=\"33\">\n<li><span style=\"font-weight: 400;\"> In the Navigation pane on the left, click <strong>Security Groups<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click <strong>Create Security Group<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">In the <strong>Create Security Group<\/strong> window, configure the following:<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Name tag:<\/strong> myawslabWebServerSG<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Group Name<\/strong>: myawslabWebServerSG<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Description<\/strong>: My Web Server Security Group<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>VPC<\/strong>: myawslabVPC<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click <strong>Yes, Create<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67431\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab16.png\" alt=\"create security group\" width=\"628\" height=\"316\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab16.png 628w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab16-300x151.png 300w\" sizes=\"(max-width: 628px) 100vw, 628px\" \/><\/p>\n<ol style=\"text-align: justify;\" start=\"36\">\n<li><span style=\"font-weight: 400;\"> Select your <strong>myawslabWebServerSG<\/strong> security group.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click the <strong>Inbound Rules<\/strong> tab.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click <strong>Edit<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click the <strong>Custom TCP Rule<\/strong> drop-down arrow and select <strong>HTTP (80)<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click the <strong>Source<\/strong> box and enter the IP address of your laptop\/network: viz. <strong>100.10.150.0\/24<\/strong><\/span><\/li>\n<li><span style=\"font-weight: 400;\">Click <strong>Save<\/strong>. And we are done.<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67432\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab17.png\" alt=\"create security group\" width=\"614\" height=\"292\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab17.png 614w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab17-300x143.png 300w\" sizes=\"(max-width: 614px) 100vw, 614px\" \/><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67433\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab18.png\" alt=\"quiz no 2\" width=\"633\" height=\"92\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab18.png 633w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab18-300x44.png 300w\" sizes=\"(max-width: 633px) 100vw, 633px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">You have been <strong>AWESOME<\/strong> so far and a <strong>security guru<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Did you realize, what have you created, so far \u2013 Let\u2019s recall?<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Done?<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Ok, Let\u2019s Visualize.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67434\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab19.png\" alt=\"security group\" width=\"624\" height=\"384\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab19.png 624w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab19-300x185.png 300w\" sizes=\"(max-width: 624px) 100vw, 624px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Wondering, when did we create the Network ACL? And that\u2019s not the quiz \u263a<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">The Network ACL is created by default when you create the VPC. We are not going to create a separate Network ACL for our subnets and consider using the default Network ACL instead.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">You can browse <strong>Network ACL<\/strong> by going to the Navigation pane on the left and clicking <strong>Network ACLs<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click on <strong>Inbound Rules<\/strong> and <strong>Outbound Rules<\/strong> and view various rules.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">By default, all traffic is allowed via Network ACLs.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">In the next task, you will launch your web server in your public subnet. Yes, finally, the fun stuff, we have been laying the network platform so far.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_6_Launch_a_Web_Server_In_Your_Public_Subnet\"><\/span><span style=\"font-weight: 400;\">Task 6: Launch a Web Server In Your Public Subnet<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<ol style=\"text-align: justify;\" start=\"42\">\n<li><span style=\"font-weight: 400;\"> On the <strong>Services<\/strong> menu, click <strong>EC2<\/strong>.<\/span><\/li>\n<li>Click<b> Launch Instance.<\/b><\/li>\n<li>On<b> 1. Choose an Amazon Machine Image AMI, <\/b>on the Navigation pane on the left, click <strong>Quick Start<\/strong>, in the search tool box, select the <strong>Amazon Linux 2 AMI HVM, SSD Volume Type<\/strong> &#8211; ami-xxxxxxxx and click on <strong>Select<\/strong><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67435\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab20.png\" alt=\"Choose an Amazon Machine Image AMI\" width=\"613\" height=\"108\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab20.png 613w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab20-300x53.png 300w\" sizes=\"(max-width: 613px) 100vw, 613px\" \/><\/p>\n<ol style=\"text-align: justify;\" start=\"45\">\n<li>On 2.<b> Choose Instance Type, <\/b>click Next:<b> Configure Instance Details.<\/b><\/li>\n<li><span style=\"font-weight: 400;\"> On 3. <strong>Configure Instance Details<\/strong>, configure the following:<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><b>Network: <\/b>Select myawslabVPC<\/p>\n<p style=\"text-align: justify;\"><b>Auto-assign Public IP: <\/b>Enable<\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67436\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab21.png\" alt=\"Configure Instance Details\" width=\"621\" height=\"245\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab21.png 621w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab21-300x118.png 300w\" sizes=\"(max-width: 621px) 100vw, 621px\" \/><\/p>\n<ol style=\"text-align: justify;\" start=\"47\">\n<li><span style=\"font-weight: 400;\"> On same page scroll down, Expand &gt;<strong>Advanced Details<\/strong><\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Copy and paste the code snippet below into the text box:<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67437\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab22.png\" alt=\"code snippet\" width=\"636\" height=\"96\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab22.png 636w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab22-300x45.png 300w\" sizes=\"(max-width: 636px) 100vw, 636px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">This snippet of code is run the first time the instance is launched. It installs the web server on EC2 instance and configures it.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone wp-image-67438 size-full\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab23.png\" alt=\"Install Web Server on EC2 Instance\" width=\"620\" height=\"97\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab23.png 620w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab23-300x47.png 300w\" sizes=\"(max-width: 620px) 100vw, 620px\" \/><\/p>\n<ol style=\"text-align: justify;\" start=\"48\">\n<li>Click<b> Next: Add Storage.<\/b><\/li>\n<li><span style=\"font-weight: 400;\"> On 4. <strong>Add Storage<\/strong>, click <strong>Next: Add Tags<\/strong>.<\/span><\/li>\n<li><span style=\"font-weight: 400;\">On 5. <strong>Add Tags<\/strong>, click<strong> Add Tag<\/strong> and configure the following:<\/span><\/li>\n<\/ol>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Key<\/strong>: Name<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Value<\/strong>: Webserver<\/span><\/p>\n<p style=\"text-align: justify;\">51. Click<b> Next: Configure Security Group.<\/b><\/p>\n<p style=\"text-align: justify;\">52. On 6. <strong>Configure Security Group<\/strong>, configure the following:<\/p>\n<p style=\"text-align: justify;\">Click<b> Select an existing security group<\/b><\/p>\n<p style=\"text-align: justify;\">Click the<b> myawslabWebServerSG<\/b> security group<\/p>\n<p style=\"text-align: justify;\">53. Click<b> Review and Launch<\/b><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67465\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/configure-security-group.png\" alt=\"configure security group\" width=\"632\" height=\"301\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/configure-security-group.png 632w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/configure-security-group-300x143.png 300w\" sizes=\"(max-width: 632px) 100vw, 632px\" \/><\/p>\n<p style=\"text-align: justify;\">54. At the <strong>Warning<\/strong> screen, click <strong>Continue<\/strong>.<\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">55. On 7. <strong>Review<\/strong>, configure the following:<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Review the settings<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click <strong>Launch<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\">56. On the<b> Select an existing key pair or create a new key pair <\/b>window, configure the following:<\/p>\n<p style=\"text-align: justify;\">Click the<b> I acknowledge that &#8230; checkbox<\/b><\/p>\n<p style=\"text-align: justify;\">Click<b> Launch Instances<\/b><\/p>\n<p style=\"text-align: justify;\">57. Click<b> View Instances.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">This brings you to the Instances window, where you can watch your web server launch and view its details.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">58. Wait for your web server to fully launch. It should display the following:<\/span><\/p>\n<ul style=\"text-align: justify;\">\n<li><b> Instance State: <\/b>running<\/li>\n<li><b> Status Checks: <\/b>2\/2 Checks<\/li>\n<\/ul>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">You can click the refresh icon to refresh your instance status.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">59. Select your instance<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">60. Copy the <strong>IPv4 Public IP<\/strong> address of the instance to your clipboard.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67440\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab25.png\" alt=\"Launch Instances\" width=\"623\" height=\"211\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab25.png 623w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab25-300x102.png 300w\" sizes=\"(max-width: 623px) 100vw, 623px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">61. Open a new browser tab and paste the IP address into the browser.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">62. Press <strong>Enter<\/strong> to go the web page.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Well, Congratulations. If you configured everything the way the directions were written, you should be able to see the index page of your web server.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone wp-image-67441 size-full\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab26.png\" alt=\"Frontend Web Server\" width=\"611\" height=\"295\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab26.png 611w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab26-300x145.png 300w\" sizes=\"(max-width: 611px) 100vw, 611px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Amazing, isn\u2019t it. You have been awesome, so far.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Let\u2019s continue to configure our (Private) Backend infrastructure.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_7_Create_A_Private_Subnet_For_Your_Backend_MySQL_Server\"><\/span><span style=\"font-weight: 400;\">Task 7: Create A Private Subnet For Your Backend MySQL Server<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">To deploy your RDS database, your VPC must have at least one subnet in at least two Availability Zones in the region where you want to deploy your DB instance. In RDS, this is termed as Multi-AZ deployment and is best practice for high availability.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> In this task, we are going to deploy RDS instance in single Availability Zone for simplicity. You will create your first private subnet for your soon to be created Amazon RDS Instance.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">63. On the <strong>Services<\/strong> menu, click <strong>VPC<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">64. In the navigation menu on the left, click <strong>Subnets<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\">65. Click<b> Create Subnet.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">66. In the <strong>Create Subnet<\/strong> window configure the following:<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Name tag:<\/strong> myawslabPrivate<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>VPC<\/strong>: myawslabVPC<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Availability Zone<\/strong>: us-west-2a<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>IPv4 CIDR block<\/strong>: 10.0.2.0\/24<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click <strong>Yes, Create<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67442\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab27.png\" alt=\"create subnet\" width=\"622\" height=\"340\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab27.png 622w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab27-300x164.png 300w\" sizes=\"(max-width: 622px) 100vw, 622px\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_8_Create_A_Second_Private_Subnet_For_Your_Backend_MySQL_Server\"><\/span><span style=\"font-weight: 400;\">Task 8: Create A Second Private Subnet For Your Backend MySQL Server<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">We will need to create a secondary additional Private Subnet. You must have two private subnets available to create an Amazon RDS DB subnet group for an RDS DB instance to use in a VPC. Let\u2019s add a second private subnet to the VPC.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">67. On the Services menu, click <strong>VPC<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">68. In the navigation menu on the left, <strong>click Subnets<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\">69. Click<b> Create Subnet.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">70. In the <strong>Create Subnet<\/strong> window configure the following:<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Name tag<\/strong>: myawslabPrivate2<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>VPC<\/strong>: myawslabVPC<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Availability Zone<\/strong>: us-west-2b<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>IPv4 CIDR block<\/strong>: 10.0.3.0\/24<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click<strong> Yes, Create<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67443\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab28.png\" alt=\"create subnet\" width=\"621\" height=\"337\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab28.png 621w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab28-300x163.png 300w\" sizes=\"(max-width: 621px) 100vw, 621px\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_9_Create_A_Security_Group_For_Your_Backend_MySQL_Server\"><\/span><span style=\"font-weight: 400;\">Task 9: Create A Security Group For Your Backend MySQL Server<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Now that private subnets are configured, you\u2019ll want to secure the types of traffic that can access your MySQL database. In this task, you\u2019ll create a security group to only allow MySQL traffic from your public subnet.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">71. In the Navigation pane on the left, click <strong>Security Groups<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">72. Click <strong>Create Security Group<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">73. In the <strong>Create Security Group<\/strong> window, configure the following:<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Name tag<\/strong>: myawslabDBServerSG<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Group Name<\/strong>: myawslabDBServerSG<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Description<\/strong>: My Backend Security Group<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>VPC<\/strong>: Select myawslabVPC<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click <strong>Yes, Create<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone wp-image-67444 size-full\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab29.png\" alt=\"create security group\" width=\"625\" height=\"282\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab29.png 625w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab29-300x135.png 300w\" sizes=\"(max-width: 625px) 100vw, 625px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">74. Select your <strong>myawslabDBServerSG<\/strong> security group.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">75. Click the <strong>Inbound Rules<\/strong> tab.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">76. Click <strong>Edit<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\">77. Click the<b> Custom TCP Rule <\/b>drop-down and select<b> MySQL\/Aurora (3306)<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">78. Click the <strong>Source<\/strong> box and enter 10.0.1.0\/24<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">79. Click <strong>Save<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67445\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab30.png\" alt=\"myawslabDBServerSG\" width=\"621\" height=\"208\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab30.png 621w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab30-300x100.png 300w\" sizes=\"(max-width: 621px) 100vw, 621px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">This rule states that only MySQL traffic coming from your public subnet is allowed to access the database in the Private Subnet.<\/span><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Task_10_Create_a_Backend_Amazon_RDS_Database\"><\/span><span style=\"font-weight: 400;\">Task 10: Create a Backend Amazon RDS Database<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">80. On the Services menu, click <strong>RDS<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\">81. In the<b> RDS Dashboard, <\/b>click<b> Instances.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">82. Click <strong>Launch DB Instance<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">83. On <strong>Step 1: Select engine<\/strong>, configure the following:<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click <strong>MySQL<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Click <strong>Next<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67446\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab31.png\" alt=\"amazon rds database\" width=\"625\" height=\"462\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab31.png 625w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab31-300x222.png 300w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab31-568x420.png 568w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab31-80x60.png 80w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab31-100x75.png 100w\" sizes=\"(max-width: 625px) 100vw, 625px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">84. On <strong>Step 2: Choose use case<\/strong>, configure the following:<\/span><\/p>\n<p style=\"text-align: justify;\">Click<b> Dev\/Test \u2013 MySQL<\/b><\/p>\n<p style=\"text-align: justify;\">Click<b> Next<\/b><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67447\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab32.png\" alt=\"Choose use case\" width=\"627\" height=\"293\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab32.png 627w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab32-300x140.png 300w\" sizes=\"(max-width: 627px) 100vw, 627px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">85. On <strong>Step 3: Specify DB details<\/strong>, configure the following:<\/span><\/p>\n<p style=\"text-align: justify;\"><b>Instance specifications<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> DB instance class: db2.t2.micro \u2013 1 vCPU, 1 GiB RAM<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67448\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab33.png\" alt=\"Specify DB details\" width=\"624\" height=\"427\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab33.png 624w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab33-300x205.png 300w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab33-614x420.png 614w\" sizes=\"(max-width: 624px) 100vw, 624px\" \/><\/p>\n<p style=\"text-align: justify;\"><b>Settings<\/b><\/p>\n<p style=\"text-align: justify;\"><b>DB instance identifier: <\/b>myawslabDB<\/p>\n<p style=\"text-align: justify;\"><strong>Master\u00a0<\/strong><b>username: <\/b>admin<\/p>\n<p style=\"text-align: justify;\"><b>Master password: <\/b>pAssw0rd<\/p>\n<p style=\"text-align: justify;\"><b>Confirm password: <\/b>pAssw0rd<\/p>\n<p style=\"text-align: justify;\">Click<b> Next<\/b><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67449\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab34.png\" alt=\"setting\" width=\"622\" height=\"374\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab34.png 622w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab34-300x180.png 300w\" sizes=\"(max-width: 622px) 100vw, 622px\" \/><\/p>\n<p style=\"text-align: justify;\">86. On\u00a0<b>Step 4: Configure advanced settings, <\/b>configure the following:<\/p>\n<p style=\"text-align: justify;\"><b>Network &amp; Security<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>VPC:<\/strong> myawslabVPC<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>VPC security groups: Select existing VPC security groups<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">From drop-down, select <strong>myawslabDBServerSG(VPC)<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67450\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab35.png\" alt=\"Configure advanced settings\" width=\"622\" height=\"479\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab35.png 622w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab35-300x231.png 300w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab35-545x420.png 545w\" sizes=\"(max-width: 622px) 100vw, 622px\" \/><\/p>\n<p style=\"text-align: justify;\"><b>Database Options<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong> Database name<\/strong>: myawslabDB<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67451\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab36.png\" alt=\"database options\" width=\"624\" height=\"486\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab36.png 624w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab36-300x234.png 300w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab36-539x420.png 539w\" sizes=\"(max-width: 624px) 100vw, 624px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">87. Scroll to the bottom of the page.<\/span><\/p>\n<p style=\"text-align: justify;\">88. Click<b> Launch DB instance.<\/b><\/p>\n<p style=\"text-align: justify;\">89. Click<b> View DB instance details.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">It will take a few minutes for your MySQL database to become available.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">90. Review the configuration of your database.<\/span><\/p>\n<p style=\"text-align: justify;\">In the<b> RDS Dashboard, <\/b>click<b> Instances.<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Select the database instance you just created (<strong>myawslabdb<\/strong>), click the link on the instance.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">This page provides all the information about your DB instance \u2013 <strong>Summary, CloudWatch, Connect<\/strong> \u2013 this provides you with the Endpoint you can connect your DB on from the web server, <strong>Details<\/strong> \u2013 various DB configurations, <strong>CloudWatch alarms, Snapshots, Tags, Logs, Recent events, Replication<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67452\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab37.png\" alt=\"db endpoint\" width=\"628\" height=\"129\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab37.png 628w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab37-300x62.png 300w\" sizes=\"(max-width: 628px) 100vw, 628px\" \/><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"><strong>Congratulations!<\/strong>\u00a0You have configured everything properly, and now you have a VPC that consists of one public and two private subnets. You should be able to access the web server through your public subnet. Your Amazon RDS database should also be accessible by your web server.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Yay!! You have achieved your goal. Yes, we created an entire ecosystem. Here is the end state you created.<\/span><\/p>\n<p style=\"text-align: justify;\"><img decoding=\"async\" class=\"alignnone size-full wp-image-67453\" src=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/sites\/2\/2018\/09\/lab38.png\" alt=\"RDS Dashboard\" width=\"634\" height=\"393\" srcset=\"https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab38.png 634w, https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/lab38-300x186.png 300w\" sizes=\"(max-width: 634px) 100vw, 634px\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span class=\"ez-toc-section\" id=\"Its_the_Time_to_End_the_Lab\"><\/span>It&#8217;s the Time to End the Lab<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Follow these steps to close the console and end your lab.<\/span><\/p>\n<h4 style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Delete the RDS DB instance<\/span><\/h4>\n<p style=\"text-align: justify;\">91. In the<b> RDS Dashboard<\/b>,<b> <\/b>click<b> Instances.<\/b><\/p>\n<p style=\"text-align: justify;\">92. Select the DB instance<b> myawslabdb<\/b><\/p>\n<p style=\"text-align: justify;\">93. Click on<b> Instance actions<\/b><\/p>\n<p style=\"text-align: justify;\">94. Click<b> Delete<\/b><\/p>\n<p style=\"text-align: justify;\">95. Under<b> Options<\/b><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Are you sure you want to Delete the <strong>myawslabdb<\/strong> DB Instance? Create a final snapshot? Select <strong>No<\/strong><\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Mark the checkbox against \u2013 I acknowledge that upon instance deletion, automated backups, including system snapshots and point-in-time recovery, will no longer be available.<\/span><\/p>\n<p style=\"text-align: justify;\">96. Click<b> Delete<\/b><\/p>\n<h4 style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Delete the EC2 instance \u2013 the web server<\/span><\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">97. On the Services menu, click <strong>EC2<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">98. Select the <strong>Web server<\/strong> instance.<\/span><\/p>\n<p style=\"text-align: justify;\">99. Click on<b> Actions, <\/b>click<b> Instance State <\/b>and select<b> Terminate.<\/b><\/p>\n<p style=\"text-align: justify;\">100. On the confirmation page<b> Terminate Instances, <\/b>click<b> Yes, Terminate<\/b><\/p>\n<h4 style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Delete the VPC myawslabVPC<\/span><\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">101. On the Services menu, click <strong>VPC<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">102. Select the VPC you created <strong>myawslabVPC<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">103. Click on <strong>Actions<\/strong>, select <strong>Delete VPC<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">104. On the confirmation page <strong>Delete VPC<\/strong>, click <strong>Yes, Delete<\/strong>.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">This will wipe off all the VPC components we created, viz. Subnets, Route Tables, Routes, Internet Gateways, Security Groups<\/span><\/p>\n<h4 style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Wrapping Up<\/span><\/h4>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">So, in this lab, you created a VPC with a single public subnet and two private subnets. AWS provides you with access to multiple Availability Zones at no additional cost. The best practice is to mirror servers across two Availability Zones and then use load balancing and other techniques in order to distribute traffic between them.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Security group rules can be very precise or quite loose. You need to ensure that your security groups are as restrictive as possible.<\/span><\/p>\n<p style=\"text-align: justify;\"><span style=\"font-weight: 400;\">Congratulations, you have now successfully:<\/span><\/p>\n<ul>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Created an Amazon Virtual Private Cloud(VPC).<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Created a Public as well as two private subnets.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Created an Internet Gateway.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Created a route in your main route table to route traffic to the internet.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Created a security group for your frontend web server to only allow HTTP traffic to your web server.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Created a security group for your backend MySQL server to only allow MySQL traffic to it from your public subnet.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Deployed a frontend web server into your public subnet.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Deployed a backend RDS server into your private subnet.<\/span><\/li>\n<li style=\"text-align: justify;\"><span style=\"font-weight: 400;\"> Removed the resources you no longer use.<\/span><\/li>\n<\/ul>\n<p style=\"text-align: justify;\">Thinking to validate your skills and experience of working on the AWS platform? Just go for AWS certifications! We at Whizlabs are aimed to help you to become a certified professional and so we offer AWS certifications training and practice tests. With our <a href=\"https:\/\/www.whizlabs.com\/aws-certifications\/\" target=\"_blank\" rel=\"noopener noreferrer\">AWS certifications training courses<\/a>, your exam preparation will get a new edge. Also, you will be confident enough to pass the certification exam in the first attempt only.<\/p>\n<p style=\"text-align: justify;\"><em>Have any query related to AWS? Just put it in the comment box below or submit in\u00a0<a href=\"http:\/\/ask.whizlabs.com\" target=\"_blank\" rel=\"noopener noreferrer\">Whizlabs forum<\/a> and it will be resolved by the AWS experts!<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Are you creating Virtual Private Cloud for the first time? Here we&#8217;ve got you covered with this\u00a0lab session! In this lab session, we will create a Virtual Private Cloud (VPC) without using the VPC wizard. This VPC will include a frontend Web Server and a backend Relational Database Services (RDS). Here is an overview of the VPC you will create: Looks Scary? Don\u2019t worry follow along, and we shall achieve our goal. Understand Few Terms to Create a Virtual Private Cloud (VPC) Region AWS Region is an independent collection of AWS computing resources in a defined geography. Each AWS Region [&hellip;]<\/p>\n","protected":false},"author":13,"featured_media":67472,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[4],"tags":[132,184,366,764],"class_list":["post-67414","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-aws-certifications","tag-amazon-virtual-private-cloud","tag-aws","tag-backend-relational-database-services","tag-frontend-web-server"],"uagb_featured_image_src":{"full":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",600,315,false],"thumbnail":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2-150x150.png",150,150,true],"medium":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2-300x158.png",300,158,true],"medium_large":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",600,315,false],"large":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",600,315,false],"1536x1536":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",600,315,false],"2048x2048":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",600,315,false],"profile_24":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",24,13,false],"profile_48":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",48,25,false],"profile_96":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",96,50,false],"profile_150":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",150,79,false],"profile_300":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",300,158,false],"tptn_thumbnail":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2-250x250.png",250,250,true],"web-stories-poster-portrait":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",600,315,false],"web-stories-publisher-logo":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",96,50,false],"web-stories-thumbnail":["https:\/\/www.whizlabs.com\/blog\/wp-content\/uploads\/2018\/09\/virtual-private-cloud-2.png",150,79,false]},"uagb_author_info":{"display_name":"Pavan Gumaste","author_link":"https:\/\/www.whizlabs.com\/blog\/author\/pavan\/"},"uagb_comment_info":5,"uagb_excerpt":"Are you creating Virtual Private Cloud for the first time? Here we&#8217;ve got you covered with this\u00a0lab session! In this lab session, we will create a Virtual Private Cloud (VPC) without using the VPC wizard. This VPC will include a frontend Web Server and a backend Relational Database Services (RDS). Here is an overview of&hellip;","_links":{"self":[{"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/posts\/67414","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/users\/13"}],"replies":[{"embeddable":true,"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/comments?post=67414"}],"version-history":[{"count":1,"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/posts\/67414\/revisions"}],"predecessor-version":[{"id":75923,"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/posts\/67414\/revisions\/75923"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/media\/67472"}],"wp:attachment":[{"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/media?parent=67414"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/categories?post=67414"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.whizlabs.com\/blog\/wp-json\/wp\/v2\/tags?post=67414"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}