In this tutorial, you'll learn how to setup an S3 Gateway VPC Endpoint in AWS.
-
Facebook: / gokcedbsql
-
Video Transcript:
_
Hi guys, this is Abhi from Gokcedb. In this video, you're going to learn how to create a VPC endpoint in AWS. Let's start by navigating to the VPC service then click on create VPC and give it a name.
Enter a cider block and leave the tenancy to default. Select one for the Availability Zone, one for the public subnet, 0 for the private subnet, none for Nat Gateway, and none for the VPC endpoint then hit create VPC. Wait for the VPC workflow to complete then verify that you see one new public subnet, one new public route table, and one new internet gateway.
Click on endpoints in the left menu then hit the create endpoint button. Give your endpoint a name then search for S3. Choose the S3 game gateway then select the project VPC.
Select the public route table and leave the policy to full access, then hit create. Navigate to the route tab of the public route table and confirm that you see a new route for the VPC endpoint that we just created. Next, click on security groups then hit create.
Give your Security Group a name then select your project VPC. In inbound rules. I'm going to add a rule for SSH from anywhere then hit create. Now let's navigate to the ec2 dashboard then click on the instance and hit launch instance.
Give your instance a name, select an Ami, then click on edit in the network settings. Select your project VPC from the drop-down and enable auto-assign public IP. Choose the security group that we just created then click on launch instance.
Hit refresh and you should see your instance in a pending state. Next, navigate to the IAM service then click on roles. Hit create row then select ec2 under use case.
Search for S3 then select Amazon S3 full access policy then hit next give your roller name then click on create the role. Go back to the ec2 dashboard then click on the Actions drop-down and select modify IAM role from the security menu. Select the IAM role that we just created then hit update.
Use the ec2 instance to connect SSH into your ec2 instance. Here, if I type the AWS S3 LS command I should see all 5 S3 buckets in my account. Let's confirm this by navigating to the S3 service.
Watch what happens if I navigate to the policy tab of my endpoint and change the effect to deny from a now. Now if I type the AWS S3 LS command I get the access denied error. There you have it.
Make sure you like, subscribe, and turn on the notification bell. Until next time.
Негізгі бет How To: VPC Endpoint In AWS (3 Min) | S3 Gateway VPC Endpoint
Пікірлер: 4