Go Premium for a chance to win a PS4. Enter to Win

x

AWS

976

Solutions

1K

Contributors

Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.

Share tech news, updates, or what's on your mind.

Sign up to Post

I've been watchin a video from Amazon on AWS Direct Connect. I see that a direct connection is made from Amazon Direct Connect PoP to a router in a co-location facility. The from there there is a circuit (say 1Gbps or 10Gbps) to the enterprise itself. The presentation at turns talked about the carrier owning the (a?) router and the customer owning the router. In the diagram attached below - the device labeled "Customer Gateway" is generally owned and configured by the end customer/user of Amazon Web Services? Or is that more typically owned by the carrier that is providing the data circuit? And finally if the carrier owns that device do they configure it or leave that to the customer? Thank you for clarifying this point for me.
AWS-Direct-Connect.jpg
0
Lessons on Wi-Fi & Recommendations on KRACK
Lessons on Wi-Fi & Recommendations on KRACK

Simplicity and security can be a difficult  balance for any business to tackle. Join us on December 6th for a look at your company's biggest security gap. We will also address the most recent attack, "KRACK" and provide recommendations on how to secure your Wi-Fi network today!

I am trying to write a python script to verify whether or not a proper security constraint was applied in AWS. The script seems to be working, however, it is returning a duplicate output (code is attached)

Here is a sample log output when it is run in AWS Lambda:

START RequestId: 8edc3e6d-c727-11e7-ad8e-07aa7f7d4c10 Version: $LATEST
port-7dheonjnhtxci

Listing constraints.........
Checking for valid SG template constraint....
['port-7dheonjnhtxci'] Contains a valid SG template constraint....
Listing constraints.........
Checking for valid SG template constraint....
['port-7dheonjnhtxci'] Contains a valid SG template constraint....

END RequestId: 8edc3e6d-c727-11e7-ad8e-07aa7f7d4c10

As you can see, it is returning the same information twice.  I am relatively new to Python so I am sure it is just a simple oversight on my part. Any assistance would be greatly appreciated.
Code.txt
0
In a firewall like Palo Alto Networks you can see what traffic has been allowed or denied by source ip, destination ip, protocol, actions etc. How can I see what's being dropped on a particular VPC?
0
So this week I have learned some things the hard way unfortunately. I have a T2.Medium EC2 Instance on a Ubuntu Server. I had decided to upgrade from Ubuntu 14.04 to 16.04

I am a newbie but have some experience in this. I thought I had done this right and I made a snap shot of my volume image weekly.

Well after I have no idea what exactly happened but I could not access or repair my WordPress website after I upgraded. So I thought I would open a new instance using my AMI snapshot. But this didn't work either as the new instance was also the new 16.04 ubuntu.....

So my question is I know the newer version is better for security reasons and more but

how do I make a complete back up of my system so this happens again I can revert back and work on the solution on the side until I am sure the new upgrade works 100%?   And yes I know I should had done this the first time but lesson learned.
0
Hello experts,

I need to develop a system to be used by users from different locations, I think the best option to do it is AWS. I already saw some services of AWS but till now, I'm not sure how to start and what services I will need. This is the first time that I make a system to use a database on a cloud. All the systems and apps that I have made before are for local use only or to access thru a remote desktop connections or TeamViewer , so I use a server to host the data bases and the programs.

I will use vb.net and MySQL database but I think I need a more things like a Virtual Server, maybe VPN and other things.

Does anybody have done something like this?

Please I need an advice, I'm a little lost.

Thank you very much in advance.
0
If I suspect that I am using the wrong pem key , is there a way to test a pem key to make sure it is not valid or is valid


Is there a %100 certain was to see that the pem key is wrong or mismatched "?


how can I bee %100 sure this is the issue , before I claim this to be the issues


thanks !!!!!!!!!
0
Hi,
I back up to Amazon glacier storage, which accepts winrar archive.
I have just spent two days creating the winrar archive of all my files and folders!
Going forward, how best to keep the glacier storage in sync?
0
I'm running Ubuntu 14.04.5 on a 64-bit EC2 instance.

I performed in In-Place upgrade for my OpenVPN Access Server yesterday and one of the things the instructions suggest is backing up four particular configuration files.

This is described in this link.

When I navigate to the config file location that I want to backup and run this command:

./bin/sqlite3 ./etc/db/config.db .dump > ./config.db.bak

Open in new window


I get the following result:

mp > ./config.db.bak
-bash: ./config.db.bak: Permission denied

Open in new window


When I add "sudo" in front of the command I get the same result.

Now, the instructions from OpenVPN claim that this can be done while the server is active. In other words, these can be copied while those services are running.

However, I'm a little stumped as to why I can't copy these.

As an administrator, how can I get the proper permissions to backup these configuration files?

Thanks for your help


...
0
I have a single Windows EC2 VM-instance in AWS that has 2 EBS devices attached to it. I need make periodic backups using snapshots. So far no prob. I can start them using a scheduled cmd in the AWS cli.

Te issue is how do I handle retention policies? I'd like to create a daily snapshot and then retain 10 daily snapshots and 4 weekly snapshots.

Any ideas?
0
I have a DB dump on an AWS instance I need to move to another instance.  I have tried this command in SCP and get this message.  The dump is 120 MB.

  995  [root@ip-172-31-22-236 save]# scp -3 username@x.x.x.x: /path to/dump.sql  bitnami@x.x.x.x:opt/bitnami/apache2/htdocs/
  996  ssh: connect to host x.x.x.x port 22: Connection timed out
  997  ssh: connect to host x.x.x.x port 22: Connection timed out
  998  ssh: connect to host x.x.x.x port 22: Connection timed out
  999  lost connection

Open in new window


I tried with WinSCP using a dump on my desktop.  However, it only copied over a portion of the file.  There are 250 tables and only 71 were copied over.  

There were no error messages given after the transfer was complete.
0
WatchGuard Case Study: NCR
WatchGuard Case Study: NCR

With business operations for thousands of customers largely depending on the internal systems they support, NCR can’t afford to waste time or money on security products that are anything less than exceptional. That’s why they chose WatchGuard.

HI

I have created a resource group in the proper region ,  with

az group create -l westus2 -n MyResourceGroup
{
  "id": "/subscriptions/3ca28b06-8e84-4ae7-a9d4-3ae88c5daa03/resourceGroups/MyResourceGroup",
  "location": "westus2",
  "managedBy": null,
  "name": "MyResourceGroup",
  "properties": {
    "provisioningState": "Succeeded"
  },
  "tags": null
}

but when I run "az aks create -n mycluster -g myResourceGroup --generate-ssh-keys"

I get the error  "he subscription is not registered for the resource type 'managedClusters'. Please re-register for this provider in order to have access to this resource type"

how can I fix this , I cannot find anything about this issue , please help !!!

thanks !!!!!!!!!!!
0
Hi Experts

Could you give me any explanation on this AWS error when using PHP?

It seens the feature doesn't exist in AWS - but the example was obtained in AWS's site.

img006

<?php

require '../../vendor/autoload.php';

use Aws\CloudWatchEvents\CloudWatchEventsClient;
use Aws\Exception\AwsException;

$client = new CloudWatchEventsClient([
    'profile' => 'default',
    'region' => 'us-west-2',
    'version' => '2015-10-07'
]);
try {
    $result = $client->putRule(array(
        'Name' => 'DEMO_EVENT', // REQUIRED
        'RoleArn' => 'IAM_ROLE_ARN',
        'ScheduleExpression' => 'rate(5 minutes)',
        'State' => 'ENABLED',
    ));
    var_dump($result);
    
    print_r("OK.........");
    
} catch (AwsException $e) {
    // output error message if fails
    error_log($e->getMessage());
    
     print_r($e->getMessage());
}
?>

Open in new window


Thanks in advance
0
Hi Experts

Could you point how to correctly create the credentials file to use AWS when using PHP?

I created an account in AWS obtained the credentials from this and filled the credential files with.

But certainly something is missed. I'm using Windows 7.

This error is rised:
img003
Thanks in advance!
0
Hello experts,

I need to build a MySQL database on Amazon Web Services, the application will be made in vb.net, since this is the first time I'm going to use this service, one of the main objective for this project is to send emails using the contacts that will be stored in the data base.

Is there any service I an use or I have to code using another service from Amazon?

So, I'm looking for an expert advice before continuing.

This is very important for my client, so I really appreciate the help you guys can give me.

Thank you so much in advance.
0
Hello everyone. We have setup a Windows Server 2012 r2 instance on AWS. We would like to setup Active Directory and have users be able to auth against it. I understand AWS has its own AD service available, but we run Okta in our organization and need a Windows server Okta agent running to sync against our AD, hence the windows server. I am having a hard time with the users being able to login to the domain on a computer. We would like to use the same domain name of our email (ie contoso.com) which also hosts our website. I understand we need to add something the SRV records to our domain DNS which is hosted on AWS as well.
Also, we use Ruckus APs that can authenticate against an AD, which we cannot get to reach the AD server.

Any suggestions?

Thank you.
0
Hello
We have an IPSec VPN solution for a small number of sites.  Our users remote into two of the sites via IPSec VPN too.
We are going to move supplier and looking at moving from IPSec to MPLS.  We will look to migrate to AWS and/or move CRM out to other providers.  We also will moving from our on prem phone system to a cloud solution.
Has anyone got any recomendation around security, perfornance, limitation etc of each?
Thanks
0
Hi,

Is there any similar kind of technology like snowball aws in Azure?
if not how to Transfer Petabytes of data to Azure?
0
Hi Experts

Could you point a good tutorial, preferently that you had ever used, about using AWS with PHP?

And if possible a roadmap on how to better know this tecnology.

Thanks in advance!
0
I was wondering why I should use Amazon Web Services for a relational database instead of just running the database on the server.

The application is as follows - apps will be able to enter data into this database. PHP will be able to export a CSV file.

I was going to use cryptography to secure remote access from the app. Would this be more desirable than a static IP VPN?

I'm leaning towards just having the database run on the server.
0
WatchGuard Case Study: Museum of Flight
WatchGuard Case Study: Museum of Flight

“With limited money and limited staffing, we didn’t have a lot of choices in terms of what we could do to bring efficiency. WatchGuard played a central part in changing that.” To provide strong, secure Wi-Fi access within the museum, Hunter chose to deploy WatchGuard’s AP120 APs.

Hi Experts,

I have a Windows Server 2012 instance running on AWS EC2.

The volume size is 30 GB,  but I want to increase it to 64 GB.

I have resized the volume to 64 GB via the AWS EC2 console:

AWS EC2 console
But the new volume size is not showing in Windows Server 2012:

Windows Server 2012 volume screen
Regards,
Leigh
0
I migrated some working code that I've had running on Windows 2008 R2 servers for years and years up to Amazon AWS last night and am getting the following error:

Current Recordset does not support updating. This may be a limitation of the provider, or of the selected locktype.

This is my code:
Set rsEmployee = Server.CreateObject("ADODB.Recordset")
rsEmployee.Open MySQL, MyConn, adOpenKeyset, adLockPessimistic, adCmdText

Obviously Amazon does something a little different than your typical vanilla Windows 2008 R2 build that causing it to not work.  Anyone run across this yet?
0
I have a customer that needs to access an internal load balancer on our AWS network.  The internal load balancer is not provided a static IP address.  It is given a DNS name that can be resolved to an internal IP address that is dynamically assigned from the subnet in the VPC.  If the customer creates a vpn connection and provides access to the entire subnet range they would be able to access the DNS name of the internal load balancer without issue.  Unfortunately they are not willing to support 256 random IP's on the vpn tunnel.  Is this too much to ask the customer to provide on the vpn tunnel?  Is it best practice not to create a tunnel with access to the entire subnet?
0
When you want to enter multiple source IP ranges for the same port in a security group in AWS do you need to create a separate rule for each source IP range?
0
Our server is in Amazon AWS.  Windows Server 2016.  Running Citrix VDA(XenDesktop) 7.13

Basically, Enhanced Securtiy Configuration is disabled on the host, as well as every possible place in Group Policy.  Yet, whenever a new user logs in and runs IE, it says "Internet Explorer Enhanced Security Configuration is enabled", but a refresh, or reload of the browser, and it goes to Google.com, which we set as the home page.

We're removed, re-added policies, and are stuck.
0
Setting up a site to site vpn with a partner.  We have overlapping networks so we need to setup NAT.  The partner does not want to pass private IP's over the VPN stating that it is best practice to not use private IP's.  Is this best practice?  We have created several vpn's and all have passed private IP's.  The problem we have is our end is on the AWS network and they do not allow NATing in their VPN connections.  Is passing private IP's really a bad thing?  We are limited on our end by AWS but if the partner wants to connect and pass public IP address what are our options?  Traffic will only be initiated one way....from partner to AWS network.  The partner needs to connect to a load balancing device at 192.168.5.100 using port 6500.  If I can't NAT my IP subnet and the partner needs to NAT to a private IP, what are the options?
0

AWS

976

Solutions

1K

Contributors

Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.