Practical AWS Networking E-Book

BIRMINGHAM - MUMBAI

Practical AWS Networking

Copyright © 2018 Packt Publishing

All rights reserved. No part of this book may be reproduced, stored in a retrieval system, or transmitted in any form or by any means, without the prior written permission of the publisher, except in the case of brief quotations embedded in critical articles or reviews.

Every effort has been made in the preparation of this book to ensure the accuracy of the information presented. However, the information contained in this book is sold without warranty, either express or implied. Neither the author, nor Packt Publishing or its dealers and distributors, will be held liable for any damages caused or alleged to have been caused directly or indirectly by this book.

Packt Publishing has endeavored to provide trademark information about all of the companies and products mentioned in this book by the appropriate use of capitals. However, Packt Publishing cannot guarantee the accuracy of this information.

Commissioning Editor: Gebin GeorgeAcquisition Editor: Heramb BhavsarContent Development Editor: Sharon RajTechnical Editor: Prashant ChaudhariCopy Editor: Dipti MankameProject Coordinator: Virginia DiasProofreader: Safis EditingIndexer: Tejal DaruwaleGraphics: Tania DuttaProduction Coordinator: Nilesh Mohite

First published: January 2018

Production reference: 1030118

Published by Packt Publishing Ltd. Livery Place 35 Livery Street Birmingham B3 2PB, UK.

ISBN 978-1-78839-829-9

www.packtpub.com

Mapt is an online digital library that gives you full access to over 5,000 books and videos, as well as industry leading tools to help you plan your personal development and advance your career. For more information, please visit our website.

Why subscribe?

Spend less time learning and more time coding with practical eBooks and Videos from over 4,000 industry professionals

Improve your learning with Skill Plans built especially for you

Get a free eBook or video every month

Mapt is fully searchable

Copy and paste, print, and bookmark content

PacktPub.com

Did you know that Packt offers eBook versions of every book published, with PDF and ePub files available? You can upgrade to the eBook version at www.PacktPub.com and as a print book customer, you are entitled to a discount on the eBook copy. Get in touch with us at [email protected] for more details.

At www.PacktPub.com, you can also read a collection of free technical articles, sign up for a range of free newsletters, and receive exclusive discounts and offers on Packt books and eBooks.

Contributors

About the author

Mitesh Soni is a DevOps enthusiast. He has worked on projects for DevOps enablement using Microsoft Azure and VSTS. He also has experience of working with other tools that are DevOps enablers, such as Jenkins, Chef, IBM UrbanCode Deploy, Atlassian Bamboo, and more.

He is a CSM, SCJP, SCWCD, VCP, IBM Bluemix, and IBM Urbancode certified professional.

About the reviewers

Adrin Mukherjee is currently working as a solutions architect with a leading Indian IT firm. He has 13 years of experience and played several challenging roles as a technical architect, building distributed applications and high performance systems. He loves to spend his personal time with his wife, son, and best friend Choco, a Labrador Retriever.

Zoltan Altfatter (@altfatterz) is a software engineer and AWS certified solutions architect (associate), and is passionate about cloud infrastructures. He has several years of industry experience helping customers on their cloud native journey.

Packt is searching for authors like you

If you're interested in becoming an author for Packt, please visit authors.packtpub.com and apply today. We have worked with thousands of developers and tech professionals, just like you, to help them share their insight with the global tech community. You can make a general application, apply for a specific hot topic that we are recruiting an author for, or submit your own idea.

Table of Contents

Preface

Who this book is for

What this book covers

To get the most out of this book

Download the color images

Conventions used

Get in touch

Reviews

Basics of Networking on AWS

Introducing cloud computing

Regions and Availability Zones

Security and compliance

Amazon Elastic Compute Cloud

Security groups

Overview of networking services

Amazon Virtual Private Cloud

Amazon CloudFront

Amazon Route 53

AWS Direct Connect

Elastic Load Balancing

Auto Scaling

Billing Dashboard

AWS Total Cost of Ownership (TCO) Calculators

Sample architecture – compute and networking services

Summary

Amazon VPC

Creating and configuring VPC

Creating VPC using a wizard

Scenario 1 – VPC with a single public subnet

 Scenario 2 – VPC with public and private subnets

Scenario 3 – VPC with public and private subnets and hardware VPN access

Scenario 4 – VPC with a private subnet only and hardware VPN access

Creating VPC without using the wizard

Creating instances in VPC

Summary

Elastic Load Balancing

An overview of ELB

Creating and configuring ELB

Accessing the instance remotely with the use of PuTTY

Summary

Auto Scaling

An overview of Auto Scaling

Types of Auto Scaling

Setting up an Auto scaling in load balanced application

Amazon Machine Image

Launch configuration

Auto Scaling group

Summary

Amazon Route 53

Overview of Amazon Route 53 concepts

Configuring Amazon Route 53

Configuring Route 53 for a web application

Configuring health checks on Route 53

Creating a CNAME resource record set

Summary

AWS Direct Connect

Introducing AWS Direct Connect

An overview of AWS Direct Connect components

Summary

Security Best Practices

Shared responsibility model

Identity and access management

Overview of IAM Policies

Security groups

Network ACLs

Summary

Troubleshooting Tips

Common problems and solutions

Unhealthy targets for Elastic Load Balancing

Not able to connect to Tomcat server

Summary

Other Books You May Enjoy

Leave a review - let other readers know what you think

Preface

Cloud computing has become the norm in technical discussions nowadays, and it has evolved a lot in the last 10 years or so. From large organizations to small and medium organizations, all are moving to cloud environment due to the pay as you go billing model and the innovative services cloud service providers provide. Amazon Web Services (AWS) is a market leader when it comes to innovations and the services it provides. AWS is easy to use, and the knowledge hub around it is huge. AWS helps us achieve agility, ease of use, better availability and fault tolerance, and scalability, and in addition to all of this, it has many services that change the dynamics of resource usage in any application.

AWS provides a huge number of services, which include Compute, Storage, Network, Database, Migration, Media Services, DevOps, IoT, Big Data, Management Tools, Machine Learning, Analytics, Security, Identity & Compliance, Mobile Services, AR and VR, Application Integration, Customer Engagement, Game Development, Desktop and App Streaming, and so on. This book provides details on the implementation of networking services in a step-by-step manner. It gives an overview of basic networking services, Amazon Virtual Private Cloud (VPC), Elastic Load Balancing, Auto Scaling, Amazon Route 53, Identity and Access Management, and security-related configuration. This book also contains steps to troubleshoot the issues that we came across while working on different services for this book.

Every chapter of this book has simple and easy-to-follow steps with screenshots, so it is easier to visualize while reading the steps. The chapters also highlight some best practices and recommendations that should be considered while working with AWS. It will help beginners understand and learn AWS networking easily.

Who this book is for

Practical AWS Networking is only for beginners. This book targets developers and system administrators who are involved in AWS management. Technical leads and cloud engineers are the target readers to jump-start AWS networking. The reasons to jump-start AWS networking are to understand the important networking services available in AWS and how to utilize them effectively for applications so that applications, are secure, highly available, and fault tolerant.

What this book covers

Chapter 1, Basics of Networking on AWS, provides an overview AWS and its networking services to getting started quickly gives, and you an idea about key services and concepts.

Chapter 2, Amazon VPC, explains Amazon Virtual Private Cloud (Amazon VPC) and all its components. We will see how to provision a logically isolated section of the Amazon Web Services (AWS) cloud, where we can launch AWS resources in a virtual network that we define.

Chapter 3, Elastic Load Balancing, teaches you how Elastic Load Balancing automatically distributes incoming application traffic across multiple Amazon EC2 instances in the cloud to achieve higher levels of fault tolerance in the application.

Chapter 4, Auto Scaling, focuses on how to configure instances in the VPC for Auto Scaling, considering what and how configuration to make an application highly available.

Chapter 5, Amazon Route 53, discusses using Amazon Route 53 for domain names, routing traffic to the resources for the domain, and monitoring the health of resources.

Chapter 6, AWS Direct Connect, outlines AWS Direct Connect which makes it easy to establish a dedicated network connection from your premises to AWS.

Chapter 7, Security Best Practices, explores various ways to secure resources in AWS using different options available, such as by using IAM, security groups, and other methods.

Chapter 8, Troubleshooting Tips, looks at the day-to-day issues we encounter while creating and managing AWS resources.

To get the most out of this book

This book assumes that you are familiar with at least the basics of cloud computing. Having an understanding of networking concepts will provide you with the background to be productive with AWS utilization.

You need to have an AWS account to perform the steps mentioned in this book. AWS provides a free trial for 1 year.

Additionally, you will need access to the internet to download PuTTY to connect to instances. Any normal hardware configuration is good enough to access the AWS management portal from a browser, such as 4 GB RAM and 500 GB hard disk.

Download the color images

We also provide a PDF file that has color images of the screenshots/diagrams used in this book. You can download it here: https://www.packtpub.com/sites/default/files/downloads/PracticalAWSNetworking_ColorImages.pdf.

Conventions used

There are a number of text conventions used throughout this book.

CodeInText: Indicates code words in text, database table names, folder names, filenames, file extensions, pathnames, dummy URLs, user input, and Twitter handles. Here is an example: "Once the download is successful, extract the files using the tar zxpvf apache-tomcat-8.5.20.tar.gz</kbd> command"

Bold: Indicates a new term, an important word, or words that you see onscreen. For example, words in menus or dialog boxes appear in the text like this. Here is an example: "Select System info from the Administration panel."

Get in touch

Feedback from our readers is always welcome.

General feedback: Email [email protected] and mention the book title in the subject of your message. If you have questions about any aspect of this book, please email us at [email protected].

Errata: Although we have taken every care to ensure the accuracy of our content, mistakes do happen. If you have found a mistake in this book, we would be grateful if you would report this to us. Please visit www.packtpub.com/submit-errata, selecting your book, clicking on the Errata Submission Form link, and entering the details.

Piracy: If you come across any illegal copies of our works in any form on the Internet, we would be grateful if you would provide us with the location address or website name. Please contact us at [email protected]