[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x

AWS

991

Solutions

1K

Contributors

Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have a client with Multiple ESXi hosts running around 16 Servers, these servers are all windows based using Server 2008 R2 with at least 1 SQL server. The client would like a backup and redundancy plan put together  with the following:

RTO/RPO 60 minutes
Local Copy of backups to QNAP/NAS
Remote copy of backups to AWS/Azure

Intra-Day snapshots each hour to Local NAS - File/SQL
Daily Backup Snapshot (NAS) with replication to Azure/AWS as a recovery site
Daily backups to be store for 7 days, weekly for 4 week, monthly for 6 month etc.

Recovering from local backup within approximately 1 hour. SQL and File servers have cross dependencies and so recovery of all would be required to allow complete functionality.

VMware vCenter & a version of Veeam availbale,

Has anyone completed integration with VMware and AWS/Azure for this before and has it worked as expected and or are there other options available that will allow for this level of backups/recovery
0
The Evil-ution of Network Security Threats
 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Hi expert

I have found a picture on the internet and modified little bit. I would like to implement the same things on my AWS environment.

Is there anyone who can help me to create a template so that i can imported directly. I am having issue in designing the same diagram

I have attached the cloud formation diagram. Please follow the attach file
Network-Diagram.docx
0
Are there major features missing for load balancing purposes? Throughput limits? High cost?
0
Hi Guys

I need to find a way to allow the 10.0.0.0/24 network to be reached from 10.10.1.0/24 – 10.10.3.0/24 networks. Given little documentation, I need the help to allow for communication between the networks, trying to achieve the below (sorry, I know it is sketchy)
 
10.10.1.0/24 >>> PING >>>> 10.0.0.0/24
10.10.3.0/24 >>> PING >>>> 10.0.0.0/24
 
10.0.0.0/24 >>> PING >>>> 10.10.1.0/24
10.0.0.0/24 >>> PING >>>> 10.10.3.0/24

The below is .conf file I pulled from our OpenSwan 2.2.6, this .conf file is for our 10.10.1.10/24 network (the 10.10.3.0/24 network is similar)
 
conn ifly-pen
        auto=start
        type=tunnel
        left=%defaultroute
        leftsubnets={172.17.0.0/16 10.0.0.0/24}
        leftid=54.153.249.30
        right=115.70.193.138
        rightid=115.70.193.138
        rightsubnets={10.10.1.0/24}
        authby=secret
        ike=aes128-sha1;modp1024
        esp=aes128-sha1
        pfs=no
        forceencaps=yes
        force_keepalive=yes
        keep_alive=10
        ikelifetime=8h
        keylife=8h
 
You can see, the leftsubnets allows for communication to the 10.0.0.0/24 network from the 10.10.1.0/24 network. However, in the 10.10.1.0/24 network, when I ping the 10.0.0.1 IP address I get no response, see Ping.png and Tracert.png
 
Our OpenSwan IP is 172.17.0.6 and it is a VM in AWS, you can see the above is routing through the 10.10.1.1 (on the 10.10.1.0 network, router), through to the 172.17.0.6 but then goes …
0
I configured Web Identify Federation between AWS Cognito and Facebook and I'm getting the following error message when I tried to authenticate:

"Can't load URL: The domain of this URL isn't included in the app's domains. To be able to load this URL, add all domains and sub-domains of your app to the App Domains field in your app settings."

I'm struggling to find out which is the correct URL I have to add in the App Domains.
I tried the URL for the static-website on S3 and its CloudFront URL, and it doesn't work.
Does it need a proper domain name to work?

I'm just looking for an example.

Thank you,

Carlos
0
How can I set this up to be able to communicate from one container that I am running as a task and a service inside of AWS ECS ?

Do you need to do something with the load balancer or network or something?
0
In an AMAZ presentation they said you could set up BGP over VPN as a ternary connection method. We have two 10Gbps DX connections and thinking about putting in VPN for a third way to get to AWS. But the question is - what's the Maximum throughput that AWS can support for traffic to/from AWS.
0
We just purchases AWS Direct Connect services through Comcast. We have quite a few virtual servers hosted using AWS and EC2. The problem is that our entire team is completely confounded by the instructions provided by AWS to establish the connection. I know we have to initially establish a connection. This has been done.

Next, we have to establish a connection gateway. I think I did that right. The console says it is available.

Finally, I have to create a virtual interface. I am pretty certain it needs to be a public virtual interface, because we need to access AWS and EC2 through it. However, that is where we get lost.  Below is the screen I see.

AWS Direct Connect Virtual Interface Creation
I'm not sure what to put under my Router Peer ID or the Amazon Router Pear ID. I certainly don't know what I am supposed to enter for the BGP ASN, or how to get that.

Any help would be greatly appreciated.
0
I have a .PFX file that I'd like to convert to use for Amazon Web Services (specifically in Cloudfront).

I have a pretty good process I use already, using OpenSSL on a Windows Server 2016 machine that looks like this:

C:\Users\Desktop\cert.pfx -nocerts -nodes -passin pass:quickie | openssl rsa -out C:\Users\Desktop\cert.key

Open in new window


I have four SSL's I need to generate and three of them worked perfectly. The fourth one generates the following error:

unable to load Private Key
1628:error:0906D06C:PEM routines:PEM_read_bio:no start line:crypto\pem\pem_lib.c:691:Expecting: ANY PRIVATE KEY

Open in new window


All of these PFX files are from the same vendor (GeoTrust) and from the same Server (Windows Server 2016). Anyone have a good recipe I could use to get this handled?

Thank you for your help.
0
Background

I am setting up a AWS server for my company and I have used an Ubuntu 16.04 server AMI.

In order to allow GUI access I have installed XRDP and the Mate (v 1.12.1) desktop (click here to see the instructions I followed)

Problem

After some initial permissions problems with the 'ubuntu/.config' folder I have been able to log in successfully. HOWEVER when I log in I am getting duplicate 'desktop furniture' in that I have two system menus, two workspace controllers, two trash cans and two 'power control' icons (top-right corner - looks like an old toggle switch)

Also when I select the restart the machine (from the top-right drop-down menu) it doesn't always take effect - sometimes I have to do it twice. I suspect I am selecting the wrong menu from the two that are there.

If I log on using another user account the problem has gone - there is only one system menu etc... This shows that it is clearly a user profile setting but i have no idea how to resolve - after all I didn't double install anything.

Can anyone tell me how to resolve this ?

Example of the duplicate Mate desktop
0
Free Backup Tool for VMware and Hyper-V
LVL 1
Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

Weblogic in Docker containers ?


has anyone ever been able to use weblogic oracle in a Docker contianer ?

I would love to hear how you did it , any links and advice is appreacated
0
Hi All,

Custom Ribbons on the Excel reports are not displaying when the report is getting open through Powerbuilder 12.5 application using the OLE.Application.Run method on the AWS workspace (AWS workspace actually having window server 2016 datacenter OS but look n feel like window 10 OS).

Does anybody have any idea of this issue, if you have please share the solution on my email - ravi.kumar4484@gmail.com

In case if you need any more details, please let me know.

Thank you !!

Regards,
Ravi Kumar
0
Team,

We would like to setup AWS Elastic Load Balancing with our on-premise Microsoft Exchange Servers.
We want to have our Exchange clients to connect to AWS ELB in order for those connections to be "distributed" to our on-premise servers.
Is this a setup that is possible to accomplish with ELB?
Do we need a VPC between our on-site server and the AWS ELB?
Do we need an AWS Direct Connect between our on-site server and the AWS ELB?

Regards,
0
I have a Lex Bot with 3 slots. The user will provide the Lex bot with first name, last name, and birthdate. The user can also fill multiple slots at once, such as 'My name is Steve Jobs.' I'd like the bot to repeat back the users name (or first name, or last name or DOB depending on what was said) before asking the next question. ie -'Thank you, your name is Steve Jobs. May I please have your birthdate'

I figure I need to use the elicitslot dialog action in my lambda function. However, I'm not sure exactly how I can do this. I think I need to figure out someway of keeping track of which slot was just filled. Is there a good way to do that?
0
Can anyone help in the best way to run ansible on launch events in AWS autoscaling groups.  

I was planning on firing off a lambda task to call a playbook through jenkins. But the notification from AWG only has the instance ID and I don't really want to use user data for the instance to register to to ansible or jenkins, I would prefer that AWG notifies Jenkins of the event and it fires off the build.

Any suggestions of how to use Lamba to take the launch event from an ASG and and pass the IP address of the new instance to a jenkins project as the input for the inventory of invoking a play book. Or indeed an SQS queue.

Thank you
0
I have a bunch of complicated node apis deployed on ec2s. What would be the easiest way to make them lambda compliant (by adding handler method) and deploy them on lambda ?
I am looking for some steps and guidance.
Thanks
0
Hi Experts,

I have been told by AWS suport that a private RDS database needs an external ip address to connect to Quick Sight.  Can anyone let me know how I can safely connect my MySQL RDS data source to a instance of Quick Sight keeping the database private?
I did follow an article https://stackoverflow.com/questions/44207552/aws-unable-to-connect-amazon-quicksight-to-rds
but I have subsequenetly been tolo that this configeration will not work.  Any suggestions would be appreciated.

Best Regards

Chris
0
Hello Experts,

I am running into an issue where my Windows 7 Pro client connects to a RAS on Server 2012 using L2TP. After I connect successfully, I can ping the RAS server on the local IP, however, I can't ping any other machines on that same subnet.

IF I log into the RAS server using RDP, I can then ping other local machines. Is it wrong for me to expect that I should be able to ping to the other machines on the same subnet? Do I need additional routes or VPNs?

The RAS server is on AWS EC2 and so are the other machines. I have allowed all traffic from each subnet using the Security Groups on AWS.

Thoughts?
0
Several times a day for the past 2 days we have been losing connection to our website internally for about 40 minutes. Connection returns with no changes on our part.

The website  moved to AWS several months ago. Before the move to AWS this issue never occurred, as the website resided here.

We have (long ago) disabled edns on our DNS servers, but we also use forwarders, so that should not even be an issue.

As far as we can tell, access from outside of our organization remains unaffected, although, obviously, we cannot test from the customers of all ISPs.

Is there something we should look for that we don’t know about? Do AWS websites sometimes send even larger packets that don’t make it through our firewall?
Is there some protocol beyond EDNS that we don’t know about, that would sporadically come into effect, hence causing an intermittent outage?
0
Technology Partners: We Want Your Opinion!
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Long story short, we've tried to migrate a machine from our datacenter (VMWare) to AWS and it gets to the Ctrl+Alt+Delete to unlock screen, but I cannot RDP into it because it seems to think there is no network connection present.  To my knowledge, my team has deleted any drivers by VMWare.

Of course I can take a screenshot through AWS, but no pinging or access in any other way.

I've tried
1. Mounting it and trying some registry changes when mounted on another instance, but that usually ends up with a blue screen.
2. Adding NICs
3. Changing instance type to C3.2XL

Bottom line is, red x = nada.

Any advice would be greatly appreciated.
0
I’ve installed the GNOME 3 desktop on an Oracle Linux 7.3 instance on Amazon AWS (AMI ID OL7.3-x86_64-HVM-2016-11-09).  The desktop seems a bit off, however.  As seen in https://imgur.com/a/EgAON the resolution is poor and, more importantly, the drop-down applications menu is missing.   I’m using TigerVNC (VNC Viewer  6.17.731) to connect to the server.  The desktop was installed with      yum groupinstall -y "Server with GUI"
 
Any insights would be welcome.
0
aws volume tagging need to be done for the instances. I can get the instances and volumes and block device of only one need multiple volumes and devices attached to it.

 for j in $(aws ec2 describe-volumes  --filters Name=attachment.device,Values=/dev/sda1 Name=attachment.instance-id,Values=i--xxxxxxxx --query 'Volumes[*].{ID:VolumeId}' --region us-west-1 --output text); do
      echo $j
      aws ec2 create-tags --resources $j --tags Key=Name,Value=SSVD
   done

Is there a way I can get mulltiple devices.
0
As per the limitation of Amazon RDS not being able to do Distributed Queries (i.e. Linked Servers) to OnPremise MSSQL host (as per https://aws.amazon.com/blogs/database/implement-linked-servers-with-amazon-rds-for-microsoft-sql-server/ documentation), I want to know if its possible to setup something of a 'reverse proxy' for allowing a MSSQL RDS instance, connect to said proxy and send SQL calls to an OnPremise SQL host instead?

As per Amazon support -- "It’s an internal IP resolution and routing issue.  When the SQL Server is inside a VPC, the SQL Server isn’t able to use the customer provided DNS entries. This causes DNS lookup failure.  Additionally, the server’s routing tables don’t allow the server to see the customer’s VPC Gateway meaning, there’s no routing path for traffic back to your on-prem servers even if lookup succeeded (or used IP addresses). // If the IP address doesn’t appear in the VPC, we will not route the traffic through the correct network interface, and on-premise database servers would fall into this category." (As per support as well -- "There’s an open enhancement request to fix this but honestly, it’s pretty old and hasn’t gotten much traction for prioritization.")

To get around the limitation of what Amazon has done with the internal IP resolution / routing, primarily with RDS and the TDS Protocol outside of a VPC, I would like to 'trick' the Amazon MSSQL RDS instance into thinking that it is communicating with a Windows EC2 instance running…
0
Hi everybody,
I have set up an Amazon SES account to send my transactional mail. It looks like working good.
But I need to track remote server response of each of email (when it is send, delivered and accepted by the server)
In this document they suggest some alternatives http://docs.aws.amazon.com/ses/latest/DeveloperGuide/monitor-sending-activity.html

Thru the alternatives I gave a try to  Amazon CloudWatch. Cloudwatch started giving me some information at the overall but not at the email detail (delivery time, etc)

Anybody can help me in this issue?
Thank you
0
I want to modify the RDS instance size to have higher CPU during peak hours, then lower off hours. It would be much more cost effective. So for example, 7am to 5pm M-F I want to use a db.r3.xlarge, but off hours, I only have a handful of users, so even a db.t2.small would be fine. I understand there would be a little down time during the switch, but I want to automate it. Thanks again.
0

AWS

991

Solutions

1K

Contributors

Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.