AWS Development Certification Training www.edureka.

co/aws-development

Module 8: Network and Security

Hands-on

© Brain4ce Education Solutions Pvt. Ltd.

Module 8: Network and Security www.edureka.co/aws-development

Table of Contents
Creating a Network ALCs.............................…………………………………………………….1
Adding and Deleting rules to Network ALC..........................……………………………….1
Deleting rule from Network ALC...........................................................................1

©Brain4ce Education Solutions Pvt. Ltd Page 1

Module 8: Network and Security www.edureka.co/aws-development

Creating customized AMI for EC2 and RDS

1) Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/

2) In the navigation bar, verify that US West (Oregon) is the selected region

3) In the navigation pane, click Instances

4) On the Instances page, select your instance, click Actions, select Image, and then
click Create Image

5) In the Create Image dialog box, specify a unique image name and an optional
description of the image (up to 255 characters), and then click Create Image.
Click Close

6) To view the status of your AMI, go to the AMIs page

7) While the AMI is being created, its status is pending

8) If you go to the Snapshots page, you'll see that we created a snapshot that is used
to create the root device volume of any instance that you launch using your new
custom AMI

9) To terminate the instance, go to the Instances page, select it, click Actions,
select Instance State, and then click Terminate, and then click Yes, Terminate

How to take a backup of the RDS instance?

Amazon RDS provides two different methods for backing up and restoring your Amazon
DB instances:
1) Automated backups
2) DB snapshots

©Brain4ce Education Solutions Pvt. Ltd Page 2

Module 8: Network and Security www.edureka.co/aws-development

Automated Backup

1) Automated backup is an Amazon RDS feature that automatically creates a backup of

your database

2) Automated backups are enabled by default for a new DB instance

3) An automated backup occurs during a daily user-configurable period of time known

as the preferred backup window

4) Backups created during the backup window are retained for a user-configurable
number of days (the backup retention period)

5) Note that if the backup requires more time than allotted to the backup window, the
backup will continue to completion

6) Changes to the backup window take effect immediately

7) The backup window cannot overlap with the weekly maintenance window for the DB
instance

DB Snapshots

1) DB snapshots are user-initiated and enable you to back up your DB instance in a

known state as frequently as you wish, and then restore to that specific state at any
time
2) DB snapshots can be created with the Amazon RDS console or
the CreateDBSnapshot action in the Amazon RDS API
3) DB snapshots are kept until you explicitly delete them with the Amazon RDS console
or the DeleteDBSnapshot action in the Amazon RDS API

©Brain4ce Education Solutions Pvt. Ltd Page 3

Module 8: Network and Security www.edureka.co/aws-development

How to enable to auto snapshots for the RDS instance

1) Amazon RDS can automatically back up all of your DB instances

2) You can set the backup retention period when you create a DB instance
3) If you don't set the backup retention period, Amazon RDS uses a default period
retention period of one day
4) You can modify the backup retention period; valid values are 0 (for no backup
retention) to a maximum of 35 days
5) Manual snapshot limits (50 per region) do not apply to automated backups
6) All automated backups are deleted and cannot be recovered when you delete a DB
instance
7) Manual snapshots are not deleted

Disabling Automated Backups

1) Sign in to the Amazon RDS console at https://console.aws.amazon.com/rds/

2) In the navigation pane, click DB Instances, and then select the check box next to the
DB instance you want to modify
3) Click the Modify button
4) Select 0 in the Backup Retention Period drop-down list box
5) Check the Apply Immediately check box
6) Click the OK button

Enabling Automated Backups

1) If your DB instance doesn't have automated backups enabled, you can enable them
at any time
2) The same request used to disable automated backups can be used to enable them
by using a non-zero value for the backup retention period
3) When automated backups are enabled, a backup is immediately created
4) Sign in to the Amazon RDS console at https://console.aws.amazon.com/rds/
5) In the navigation pane, click DB Instances, and then select the check box next to the
DB instance you want to modify

©Brain4ce Education Solutions Pvt. Ltd Page 4

Module 8: Network and Security www.edureka.co/aws-development

6) Click the Modify button or right-click the DB instance and select Modify from the
context menu
7) Select 3 in the Backup Retention Period drop-down list box
8) Check the Apply Immediately check box
9) Click the OK button

Recovering an instance from Disaster

1) Disaster recovery (DR) is one of most important use cases that we hear from our
customers
2) Having your own DR site in the cloud ready and on standby, without having to pay
for the hardware, power, bandwidth, cooling, space and system administration and
quickly launch resources in cloud
3) When you really need it (when disaster strikes in your datacenter) makes the AWS
cloud the perfect solution for DR
4) You can quickly recover from a disaster and ensure business continuity of your
applications while keeping your costs down
5) Disaster recovery is about preparing for and recovering from a disaster
6) Any event that has a negative impact on your business continuity or finances could
be termed a disaster
7) This could be hardware or software failure, a network outage, a power outage,
physical damage to a building like fire or flooding, human error, or some other
significant disaster

©Brain4ce Education Solutions Pvt. Ltd Page 5

Module 8: Network and Security www.edureka.co/aws-development

Read Replicas with MySQL RDS across Regions

1) This feature builds upon our existing support for read replicas that reside within the
same region as the source database instance
2) You can now create up to five in-region and cross-region replicas per source with a
single API call or a couple of clicks in the AWS Management Console

Improve Disaster Recovery

1) You can operate a read replica in a region different from your master database region
2) In case of a regional disruption, you can promote the replica to be the new master
and keep your business in operation

Scale Out Globally

If your application has a user base that is spread out all over the planet, you can use
Cross Region Read Replicas to serve read queries from an AWS region that is close to
the user

Migration between Regions

1) Cross Region Read Replicas make it easy for you to migrate your application from
one AWS region to another
2) Simply create the replica, ensure that it is current, promote it to be a master
database instance, and point your application at it

Creating Cross-Region Read Replicas

1) The cross-region replicas are very easy to create

2) You simply select the desired region

©Brain4ce Education Solutions Pvt. Ltd Page 6

Module 8: Network and Security www.edureka.co/aws-development

Storing Log Files and Backups from glacier service

1) Amazon Glacier is an extremely low-cost storage service that provides durable

storage with security features for data archiving and backup
2) With Amazon Glacier, customers can store their data cost effectively for months,
years, or even decades
3) Amazon Glacier enables customers to offload the administrative burdens of operating
and scaling storage to AWS
4) So they don't have to worry about capacity planning, hardware provisioning, data
replication, hardware failure detection and recovery, or time-consuming hardware
migrations

Create a Vault in Amazon Glacier

1) Sign into the Amazon Glacier console at https://console.aws.amazon.com/glacier

2) Select a region from the region selector
3) If you are using Amazon Glacier for the first time, click Get started
4) Enter example vault as the vault name in the Vault Name field and then click Next
Step
5) Select Do not enable notifications
6) If the region and vault name are correct, then click Submit
7) Your new vault is listed on the Amazon Glacier Vaults page

©Brain4ce Education Solutions Pvt. Ltd Page 7

Module 8: Network and Security www.edureka.co/aws-development

Delete a Vault in Amazon Glacier

1) Sign into the Amazon Glacier console at https://console.aws.amazon.com/glacier

2) From the region selector, select the AWS region where the vault exists that you want
to delete
3) Select the vault that you want to delete
4) Click Delete Vault

©Brain4ce Education Solutions Pvt. Ltd Page 8