AWS

893

Solutions

23

Articles & Videos

1K

Contributors

Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.

Share tech news, updates, or what's on your mind.

Sign up to Post

When my site are in development I have always gotten the IP address from AWS, then accessed them from my browser. But here's an article I would read if there is a secret exposure...

https://www.imore.com/how-edit-your-macs-hosts-file-and-why-you-would-want

I do not take lightly to changing my Hosts file because I do not want to put myself into an unstable condition, if I missed something in the directions.

Is there risk to using an IP address to directly access my PC? I assume the biggest benefit is that the site can be kept private from public view, but is there any way in the world that someone cold guess that address?

Are the scrapers out there pinging billions of IP addresses?

As far as keeping it private, it is mainly that I can use my real domain name and keep that private? That's nt important to me since I can buy the SSL cert and do that before launch. AT the moment, I just need to look at the sire and test it, so by adding my IP into the browser, does that expose my IP to scrapers?

Thanks.
0
Free Tool: Site Down Detector
LVL 8
Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

I setup OpenVPN Access Server using the public AMI available on Amazon about a year ago.

Part of this includes the ability for Users to sign-in to an OpenVPN Connect webpage. On this page the Users can download the a client to run on their local systems.

The client the Users download is OpenVPN Connect Client 2.1.1.102.

The latest version is 2.4.2 that is available on the OpenVPN Downloads page.

How can I replace the older client on my Server with the newer client so that Users are getting the latest version?

Thanks in advance for your assistance.



...
0
Hi everyone,

Has anyone of you implement these two aws services?

I have the same scenario about this guy. https://stackoverflow.com/questions/40660618/aws-api-gateway-elastic-beanstalk-and-microservices

Thanks in advance for you help
0
Which are the best training sites for IT?

I have been using -

Pluralsight
Testout
CloudAcademy
Lynda

Most engaging so far and helpful for certification was Testout which does not have all content. But still all training gets less engaging.

I have seen Stormwind which is less engaging and am looking for company like Stormwind which has all training module and more engaging it look go on preview but I have not heard much good feedback on internet and it is a big investment
0
Hi Expert,

One of our client requested me that they want to access SQL Database from Amazon Web Services . Is it possible. If yes/no please explain. They are already using AWS for their new systems and it really working well. New tooling, technology, TpaaS infrastructure etc. what are our options if they want to keep using the current DB back ends

They also told me they can also migrate their DB back end needs to AWS.
0
we received this error transferring a VM to Amazon Web services. The VM is 2TB.

IO error: NO space left on device when importing VM from Vmware to AWS

This error shows up in the amazon Web Services plugin for Vpshere.

Does anyone know what this means? does this mean that the connector VM is out of space? how do we resolve?
0
Hello EE,

I needed some direction and insight on which load balancer service would be most effective to load balance com+ application traffic . I would need to distribute remote procedure call traffic on tcp 135 , that would then redistribute to a DCOM range of 3500-3900 . The persistence should be Source address affinity persistence " Also known as simple persistence, source address affinity persistence supports TCP and UDP protocols, and directs session requests to the same server based solely on the source IP address of a packet" .

If anyone has some experience and insight into which Elastic Load Balancing service is best to distribute to ec2 instances and a general road map to get this working that would be great .
0
I'm setting up an AWS instance to test run software on.  Unfortunately I'm not able to RDP to the machine.

I've set a public IP and opened up all ports.

Here is the instance settings:
ice_screenshot_20170524-124110.png
Here are the security settings.
ice_screenshot_20170524-124218.png(same for outbound)

Errors are here:
ice_screenshot_20170524-124307.pngice_screenshot_20170524-123932.png
Any assistance on how to troubleshoot further would be appreciated!
0
I have a WP site and am considering hosting a video there. What is required for this to happen? If I use Amazon Web Services to host my site, might many views of the video cost me a fortune?
0
Hi, I am new to powershell so would like some help with my script on Server 2012 R2 version 4.0.

My ps1 script is in a folder D:/data.  I need it to check all sub-folders and upload a file to AWS s3 cloud bucket but I want it to fetch the sub-folder name and add that as a location to the s3 bucket, (e.g. D:/data/sub1, D:/data/sub2, D:/data/sub3) I dont want the full path, just the sub folder (sub1, sub2 etc).  

I have tried split-path and -leaf and stored it in a variable but have been unsuccessful, and this may have simply been the wrong approach...  Sample file below.

#upload of multiple files from folder
$results = Get-ChildItem "D:\DataIn\" -Recurse -Include "*.txt"

foreach ($path in $results) {
      Write-Host "Transferring: " $path
      $filename = Get-Item $path
      Write-S3Object -BucketName myS3bucket-name -Key "$($filename.Name)" -File $filename.FullName
}

I'd also like to zip the raw files before the upload, they are in .txt format.  I had planned to do this via a separate script with 7zip but wonder if there is a better way such as incorporating it into the attached ps1?

And finally i'd like some confirmation the upload has been completed successfully, or better still a check on the bucket, if the file is not there an email to let me know the upload failed.

I intend to run the script via Task Scheduler.  Please provide full details / example of each step...
0
Retailers - Is your network secure?
Retailers - Is your network secure?

With the prevalence of social media & networking tools, for retailers, reputation is critical. Have you considered the impact your network security could have in your customer's experience? Learn more in our Retail Security Resource Kit Today!

I created an amazon instance for SQL 2012 express.
I then created a master key and a certificate for the database. When I run the code to create a symmetric key locally it works fine, but when I run it in the amazon DB I get an error.
This is my query:

--create symetric key
CREATE SYMMETRIC KEY bdotpassword
WITH ALGORITHM = TRIPLE_DES
ENCRYPTION BY CERTIFICATE bluedot;
GO

Open in new window


This is the error I get in the amazon DB

Msg 102, Level 15, State 1, Line 17
Incorrect syntax near 'TRIPLE_DES'.

Open in new window

0
Guys:

This is the direction we are heading; good ole' AWS. Thinking ahead; (kind of hard to ask with providing you more) do you guys who have done this have a road map or sample config that would show how to setup a Site to Site VPN to Amazon Web Services?

Thanks ahead of time Experts!!!
0
Hello All ,

I was wondering if anyone has experience transferring virtual machines from a private hosted vmware 5 esx environment to AWS . Do you have a migration roadmap you can share and / or supporting documents and any comments or stories you wish to share.
0
Hello Experts,

I've setup a tunnel to AWS. The tunnel is showing as up on the AWS side and the initiator and ipsec tunnels are up on our customer gateway. I cannot however ping from our site to the VPC subnet. The error message we are getting is this anytime we try to send traffic through the tunnel.

IPSEC: Received an ESP packet (SPI= 0x8A6AB546, sequence number= 0x113) from 52.37.217.122 (user= 52.37.217.122) to "outside interface ip" that failed authentication.

Those messages repeat with difference Sequence numbers.

I've checked ACL's on the AWS side and they are all correct. I've also checked the static routes on the AWS side and they all look correct. The odd thing is that this was all working and then all the sudden it just stopped. Nobody changed anything.


we are running ASA version 8.0.5

our internal lan is 10.99.248.0/22

the VPC network is 192.168.0.0/22



Here is the config from AWS that was given to us,


 crypto isakmp identity address
crypto isakmp enable outside
crypto isakmp policy 201
  encryption aes
  authentication pre-share
  group 2
  lifetime 28800
  hash sha
exit
!

tunnel-group 52.37.217.122 type ipsec-l2l
tunnel-group 52.37.217.122 ipsec-attributes
pre-shared-key *
isakmp keepalive threshold 10 retry 10
exit

tunnel-group 52.43.26.15 type ipsec-l2l
tunnel-group 52.43.26.15 ipsec-attributes
pre-shared-key *
isakmp keepalive threshold 10 retry 10
exit



access-list ACL-OUTSIDE extended …
0
We are looking at a new application which will be hosted on the cloud. There will be some sensitive information the provider holds. We haven't decided on Azure or AWS yet

Our INFOSEC people are asking if the data will be held on servers that are multi-tenant?

From a cloud perspective, what does this really mean? What is the real risk here?
0
I want to install some backup software on a  Windows SBS 2003 server (although I could use a windows PC if really necessary). It needs to backup data from a network drive (a NAS drive) to an external hard drive connected to the SBS 2003 server.  I was thinking of buying SyncBackPro. It seems good. But I have recently come across easeUS Todo Backup software which also seems good. Unfortunately I would have to pay for the more expensive server version. Which of the two would you say is best? Do you have any other recommendations?

I need it to be able to backup data from a network drive.
I need incremental and differential backups
I need to keep different versions of the files.
I like the fact that it is compatible with Amazon S3. That could come in handy in the future.

Thank you
0
hey everyone
I have a very simple need and am trying to figure out the best way to accomplish it

I have a few medical doctors that need access to a website we host.  I want to be able to provide them a "published app" of Internet Explorer and lock that down so they can not save or download anything from the one website that it would be used for.

with Azure RemoteApp disappearing, I am wondering what the best way to do this would be.  I realize it is probably way overkill to go this route but I have to ensure they can not download or save anything from the website so I figured the published app would be the easiest way to restrict the browser session.


Azure or Amazon AWS Appstream or what.  I know Azure is offering XenApp but that seems to work out to be about $20 a month per user which seemed a bit high since I only need a simple published browser.

any thoughts?
0
Hi can any body help in creating the aws cloud formation stack manually or there ia any url that i can use to learn how to create the code for cloud formation stack
0
Hi folks,

I serve a ton of files via Amazon S3, and only want to allow access from my website.  I've already created a policy to do that (prevent hotlinking).

My user permissions for the bucket are set to public currently - do I now change it to private and rely on the policy to allow traffic?  

Thank you
0
The Ultimate Checklist to Optimize Your Website
LVL 1
The Ultimate Checklist to Optimize Your Website

Websites are getting bigger and complicated by the day. Video, images, custom fonts are all great for showcasing your product/service. But the price to pay in terms of reduced page load times and ultimately, decreased sales, can lead to some difficult decisions about what to cut.

( SQL Server 2008R2, upgrading to AWS 2014 sometime soon)

Howdy

I have a 15 million row table with a full text index and a SP that executes this fragment

CREATE PROC foo (@ConfirmationNumber nvarchar(32)) AS

-- @ConfirmationNumber contains airline trip values, i.e. '8G7YXR'

SELECT blah, blah, blah
FROM my_table
WHERE (
   CONTAINS(ConfirmationNumberColumnOne, @ConfirmationNumber) OR
   CONTAINS(ConfirmationNumberColumnTwo, @ConfirmationNumber) OR
   CONTAINS(ConfirmationNumberColumnThree, @ConfirmationNumber))

GO

Question:  Is there a faster way in T-SQL to do a 'WHERE @single value = (any one of three columns) ?

Thanks.
Jim
0
I have an AWS EC2 linux instance running a PHP app for use by anyone from their browser, and developed by myself as owner.

The directory tree is:

/var
/var/www

/var/www/html
/var/www/html/AWS_s
/var/www/html/AWS_s/nm-app
/var/www/html/AWS_s/cr-app
/var/www/html/AWS_s/cr-app/temp-uploads

Open in new window

The permissions are:

drwxrwsr-x 10 root www 4096 Dec 25 01:03 /var/www
drwxrwsr-x 5 root www 4096 Feb 26 22:42 /var/www/html
drwxr-xr-x 6 ec2-user www 4096 Feb 25 22:14 /var/www/html/AWS_s
drwxr-xr-x 7 ec2-user www 4096 Feb 24 20:29 /var/www/html/AWS_s/nm-app 
drwxr-xr-x 4 ec2-user ec2-user 4096 Apr 9 19:05 /var/www/html/AWS_s/cr-app 
drwxr-xr-x 2 ec2-user ec2-user 4096 Apr 20 19:33 /var/www/html/AWS_s/cr-app/temp-uploads 

Open in new window

Why was /cr-app given the group ec2-user rather than the same group as /nm-app which is www?
0
I am designing a web application using HTML5, bootstrap and javascript using .net core.
I need to take the data gathered (saved from the web form) and get it to print in a word (.docx) template.

This word template will have static text and need to accept the data from the the web form.
I was "thinking" about trying to save the data as .xml...

I also need for the word template to handle "if" statements because some things may or may not print based on certain variables or flags.

The challenge here is all this needs to use aws and formatted for the cloud. NO IIS!!!!!

Please help!!!!!!!!!!!!!!
1
I'm running my PHP script on an AWS EC2 instance under Linux Apache. The directory structure follows with [permissions]:

/ <root>
    var [rwx r-x r-x]
        www [rwx rws r-x]
            html [rwx rws r-x]
                my_dir_1 [rwx r-x r-x]
                    :
                    my_dir_1_1 [rwx r-x r-x] -> image_file_from_browser [rw- r-- r--]
                    :
                    :
            my_private_dir (meaning it's outside the web root 'html' directory) [rwx rwx r-x]
                my_private_dir_1 [rwx rwx r-x]
                    :
                    my_private_dir_1_1 [rwx rwx r-x] -> image_file_copy [rw- r-- r--]
                    :
                    :

The permissions are the default permissions for both directories and files.

The purpose of using my_private_dir is that I understand that web app users cannot have access to it since it is outside /html, this making for more security from hackers - correct me if I'm delusional here ;)

My objective is for my users to upload an image file from the app in the browser to my_dir_1_1, and from there use the PHP script to copy the image file to my_private_dir_1_1. The image would then be the file that PHP could use later in the script.
However, I cannot seem to write the file to my_dir_1_1, and if I ftp the image file to my_dir_1_1 I cannot copy it to my_private_dir_1_1. Both errors state that the permissions are denied.

I've read up on permissions but I seem to have a …
0
I have a terminal server on AWS that I would like to block access to websites like Facebook.com etc for the users that connect to the server. I considered IE Block option but this will not work with Chrome. I would like to add an entry to the current Security Group blocking access to the sites. Is this possible and if so, what's the best way to configure the security group. Thanks
0
I'm following the steps to upload an image here:
http://docs.aws.amazon.com/vm-import/latest/userguide/import-vm-image.html

When I run the following command:
aws iam create-role --role-name vmimport --assume-role-policy-document file://trust-policy.json

I get this error:
H:\>aws iam create-role --role-name vmimport --assume-role-policy-document C:\Users\Stuart.Saxby\Desktop\trust-policy.json
An error occurred (MalformedPolicyDocument) when calling the CreateRole operation: This policy contains invalid Json


I've copied the JSON exactly and verified it in a JSON validator.  Any ideas on how I can troubleshoot this?
0

AWS

893

Solutions

23

Articles & Videos

1K

Contributors

Amazon Web Services (AWS), is a collection of remote computing services, also called web services, that make up a cloud-computing platform  operated from 11 geographical regions across the world. The most central and well-known of these services include Amazon Elastic Compute Cloud, also known as "EC2", and Amazon Simple Storage Service, also known as "S3". Other services include Elastic MapReduce (EMR), Route 53 (a DNS web service),  provides a highly available and scalable Domain Name System (DNS) web service, Virtual Private Cloud (VPC), storage, database, deployment and application services.