Careervira Logo
Careervira Logo

USD $

Courses

Roles & Skills

Lists

Learn Paths

Career Paths

Information Technology
Hands on Training icon
Hands On Training
Hands on Training icon

Amazon VPC Flow Logs Challenge

Course Cover
Whizlabs
compare button icon

Course Features

icon

Duration

90 minutes

icon

Delivery Method

Online

icon

Available on

Lifetime Access

icon

Accessibility

Desktop, Laptop

icon

Language

English

icon

Subtitles

English

icon

Level

Intermediate

icon

Teaching Type

Self Paced

icon

Video Content

90 minutes

Course Description

Instructions for Challenge

Region: Be sure to use us-east-1 Region to create all the resources The requirements for the challenge will be given to you. Before you take on this challenge, we recommend that you review our hands-on Labs if you are not familiar with AWS Cloud. Challenge Duration: 60 minutes

How do you submit the challenge?

To validate that you have successfully completed the challenge and built the necessary infrastructure, click the Validate button. Status of validation Congratulations! You've successfully completed the challenge. Failed - This means that you have not completed the challenge. After you have validated the challenge successfully, click on End Lab.

Cloud Challenge Details

This lab challenge will test your Amazon VPC skills and VPC flow logs knowledge. A requirement will be presented to you and you must meet it using your knowledge about AWS VPC, other AWS services and cloudWatch logs. The Lab Challenge will help you to understand real-world scenarios.

Company XYZ is deploying a web application. They will need logs to verify that everything is running in their Testing Environment. Your challenge now is to create logs using SSH on EC2 Instances, and then put them into CloudWatch logs.

Create a CloudWatch Log Group. Once traffic has been generated, logs will be processed by EC2 Instances. It will be visible there.

You can create VPCs and subnets. This lab will not be using the default VPC that is in your account. Instead, you will create a custom subnet and a VPC for the custom VPC.

Attach an Internet Gateway to your Custom VPC. Only after you have added the routes to the Route table, your Internet gateway will allow you to access the Internet.

Add 0.0.0.0/0 to your Custom VPC default route table as a route. This step will allow EC2 Instances that were launched using this VPC to access the Internet. Make sure you enable Auto-assign Public IP in the Subnet settings and when configuring the EC2 Instance.

You can create an IAM role by using the new policy in the Resources section. Next, change the service name to "vpc-flow logs" and update the trust policy.

CloudWatch Logs can be used to create VPC Flow logs. Select IAM Role to create the role. Otherwise, logs may not appear in CloudWatch logs for up to 10 minutes.

Start an EC2 Instance with Amazon Linux 2 as the AMI, t2.micro As Instance Type, Newly Created VPC as Network and enable Auto-assignment Public IP. Also, create a key pair of type RSA for SSH.

To generate traffic, you can SSH into an EC2 Instance with Key pair.

You can view the logs created by EC2 Instance within the CloudWatch Logs group.

To complete the challenge, click on Validate

Course Overview

projects-img

Virtual Labs

projects-img

Post Course Interactions

projects-img

Hands-On Training

Skills You Will Gain

What You Will Learn

Learn how to create a CloudWatch log group Once traffic has been generated, and logs have been processed by EC2 instances, it will be visible here

This lab will teach you how to create VPCs and subnets

This tutorial will show you how to create an Internet Gateway Once it is attached to the Custom VPC Internet Gateway, you will be able to access the Internet

This tutorial will show you how to add 0000/0 to your default route table for Custom VPC After this step is completed, EC2 Instances that were launched with this VPC are able to access the Internet Make sure you enable Auto-assign Public IP in the Subnet

Learn how to create an IAM role using a new policy as described in the Resources section Next, update the trust policy by changing its service name to vpcflow-logs

Learn how to create VPC flow logs using CloudWatch logs as a destination Select IAM Role to be the newly created role and limit the maximum aggregation interval at 1 minute Otherwise, logs may not appear in CloudWatch logs for up to 10 minutes

This course will teach you how to launch an EC2 Instance with Amazon Linux 2 as the AMI, t2micro As Instance type, and a newly created VPC as Network You'll also learn how to enable Auto-assign public IP and create a key pair of type RSA for SSH

This course will teach you how to SSH into EC2 Instance with Key pair It also includes some examples of commands that can be used to generate traffic

Learn how to view logs created by EC2 Instance within the CloudWatch Logs group

To complete the challenge, you will need to click on Validate

Course Cover
Home
Search
Wishlist