Skip to content

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.
  • Labs icon Lab
  • A Cloud Guru
Google Cloud Platform icon
Labs

Using AWS Config and CloudTrail

In this hands-on lab, you just started as a Cloud Engineer at a company. Your new boss has asked you to do a scream test and stop an EC2 instance as well as remove network routes and rules to validate if the Lab VPC and Corporate Server EC2 instance can be decommissioned. Very soon after the changes, the scream test fails and clients are reporting they cannot connect to their applications. Your boss reaches back out to you and asks you to revert all changes you made. In this lab, you will leverage AWS CloudTrail and AWS Config to ensure all changes are accounted for and reverted to restore the Lab environment. By the end of this exercise, you will be familiar enough with CloudTrail and Config to audit any unexpected or accidental changes to an account and determine what specifically was updated in case you need to roll back the changes.

Try for free Contact sales
Google Cloud Platform icon
Labs

Path Info

Level
Clock icon Beginner
Duration
Clock icon 30m
Published
Clock icon Sep 30, 2021

Contact sales

By filling out this form and clicking submit, you acknowledge our privacy policy.

Table of Contents

  1. Challenge

    Initiate the Scream Test

    Initiate the Scream Test by doing the following:

    1. Stop the CorporateServerEC2 instance in the us-east-1 region.
    2. Remove all outbound rules on the CorporateApplicationServersecurity group.
    3. Break networking by removing the NAT gateway route in the route table for the subnet the CorporateServerinstance is launched in.

  2. Challenge

    Review the Changes for the Scream Test in Config and CloudTrail

    In the CloudTrail logs find the 3 changes made. For the security group and route table changes, view the configuration timeline in AWS Config for specific details about the rules and route that was deleted.

  3. Challenge

    Revert the Scream Test Changes and Test Networking

    Based on the details from CloudTrail and Config, revert all 3 changes made to the CorporateServerEC2 instance, CorporateApplicationServersecurity group, and the route table associated with the subnet the CorporateServerinstance is launched in.

A Cloud Guru - Labs - Using AWS Config and CloudTrail
Author
A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Provided environment for hands-on practice

We will provide the credentials and environment necessary for you to practice right within your browser.

Guided walkthrough

Follow along with the author’s guided walkthrough and build something new in your provided environment!

Did you know?

On average, you retain 75% more of your learning if you get time for practice.

Start learning by doing today

View Plans