Tag

AWS

Importing AWS EC2 resources back to Terraform

Terraform is a great Infrastructure as Code tools where it allow you to define and deploy all your resources to the public cloud such as AWS, Azure, GCP and more. Terraform is a stateful IAC tools where it will use a state file call terraform.tfstate store the state of your resources, keep track the metadata,…

Installing OpenVPN server in AWS EC2 with User data and Terraform

This is the terraform version of installing OpenVPN in the EC2 with user data, and it’s the 2nd part from the previous post to install the OpenVPN using the AWS EC2 console. Everything will be work the same but I’m using the terraform script to deploy the resources. I will use the terraform script to…

Installing OpenVPN server in AWS EC2 with User data

OpenVPN Server is one of the common and popular VPN server available in the market, I will share the installation of the OpenVPN with EC2 using the user-data to automate the installation during the boot up of the server. You may refer to the official AWS user guide about what’s User Data at https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instancedata-add-user-data.html. With…

S3 bucket policy & IAM policy

AWS S3 provide a lot of flexibility on the permission control, you can either attach the policy on the IAM user, buckets or use the pre-canned ACL. That’s no right or wrong way to attach the policy on either IAM or resource level, it’s depend on your use case and you can use both side…

Data encryption using AWS KMS Key

Security always a top priority when come to the system design and development, encryption is vital when deal with sensitive data which prevent the access by any unauthorized user. AWS KMS (Key Management Service) is the service that manages encryption keys on AWS. These encryption keys are called “Customer Master Keys” or CMKs for short. KMS…

AWS Certified Solution Architect Professional

Finally, I completed one of the most difficult exam in AWS – Solution Architect Professional, I should be consider myself lucky as I passed the exam on my first attend. One of the biggest bonus that I get from this exam is that my AWS Solution Architect Associate level qualification being extend 3 more years.…

Provisioning ACM Certificates on AWS with Terraform

AWS Certificate Manager (ACM) is a service from AWS which provide the free on-demand TLS certificate. It’s similar to the Let’s Encrypt which provide the free cert for you, but the difference is that Amazon controls the Certificate Authority (Amazon Trust Services, LLC) behind the certificates, as well as the accompanying API to manage them.…

Accessing S3 using VPC endpoints

VPC endpoint enables creation of private connection between VPC to the supported AWS services. As an example use case, we want to accessing S3 bucket from the EC2, we may need to access it over the public Internet. By travel out from our VPC to the public internet and than come back to AWS S3…

Accessing private EC2 using the bastion host/jump host

This post is continuous post from the previous post – Deploying EC2 with Private and Public Subnet Using Terraform in AWS. Bastion hosts are instances that sit within your public subnet and are typically accessed using the SSH or RDP. The primary role for the bastion host is that it’s act as the “jump” server…

Deploying EC2 with Private and Public Subnet Using Terraform in AWS

Terraform always the simple and easy way for us to deploying our infrastructure over the cloud, in this post, I will deploying 2 EC2 in the public and private subnet and try to access into the private EC2 using the public bastion host. A bastion host is a special-purpose computer on a network specifically designed and configured…

google.com, pub-3772983857049267, DIRECT, f08c47fec0942fa0