Troubleshooting Amazon EC2 Network Connectivity

1 hour
  • 3 Learning Objectives

About this Hands-on Lab

The goal of this hands-on lab is to fix the broken environment and achieve the goal as outlined below. The first video in this lab presents the scenario and the goal, while the second video provides the solution (if needed). Do your best to solve the connectivity issue without viewing the solution video. **Goal:** Fix the connectivity issue in the AWS environment so that you can update the `yum` package installer (from the command line) on the provided EC2 instance (named “web server”). This environment has been created with security in mind, so the “web server” EC2 instance has been provisioned in a private subnet and placed behind a bastion host and NAT gateway.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Fix SSH Ingress to Bastion Host

The Issue

SSH traffic is being denied by the security group associated with the bastion host.

How to Fix the Issue

Add an SSH (port 22) allow rule to the security group associated with the bastion host.

Fix Egress from Web Server to Internet

The Issue

The NACL protecting the web server only allows return traffic to the public subnet, not the internet.

How to Fix the Issue

Add an outbound "all traffic" allow rule to 0.0.0.0/0 to the NACL.

Fix Web Server Route to Internet

The Issue

The web server does not have a route to the NAT gateway.

How to Fix the Issue

Add a route to the NAT gateway on the route table associated with the private subnet the web server is located in.

Additional Resources

Please make sure you are working in the us-east-1 (N. Virginia) region.

Goal: Fix the connectivity issue in the AWS environment so that you can update the yum package installer (from the command line) on the provided EC2 instance (named "web server"). This environment has been created with security in mind, so the "web server" EC2 instance has been provisioned in a private subnet and placed behind a bastion host and NAT gateway.

The Linux command to update the yum package installer is sudo yum update.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Get Started
Who’s going to be learning?

How many seats do you need?

  • $499 USD per seat per year
  • Billed Annually
  • Renews in 12 months

Ready to accelerate learning?

For over 25 licenses, a member of our sales team will walk you through a custom tailored solution for your business.


$2,495.00

Checkout
Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!