Projects

Project - Building a small project with AWS

By Bruce Wu 26 November 2023

In today’s fast-paced digital landscape, integrating various cloud services into small projects has become crucial for streamlined and efficient project management. This article delves into the world of Amazon Web Services (AWS), providing a comprehensive guide on how to harness its capabilities for your projects. We will explore how to set up and manage key AWS services, including IAM for user and policy configuration, VPC for network setup, RDS for database management, EC2 for server instances, and S3 for storage solutions.

Table of Contents

1. Setting Up IAM Users Policies, and User Group:

In the world of AWS, security is paramount. This step involves creating new IAM policies, granting specific access permissions to services like EC2, VPC, RDS, and S3. It’s essential to configure roles and permissions related to EC2 and RDS, focusing on capabilities like ListRole, CreateRole, PassRole, and ListInstanceProfiles. To effectively demonstrate a demo, we’ll create two IAM users: ‘bruce-demo’ and ‘kuang-demo’. These users will be assigned appropriate policy permissions, serving as practical examples in our demonstration.

Policies: policies

User Group: user_group

2. Configuring VPC and Subnets:

The creation of a VPC, dubbed ‘aws-demo-vpc’ with an IP range of 10.0.0.0/16, lays the foundation of your network infrastructure in AWS. Subnet configuration, including the setup of public and private subnets, plays a significant role. Establishing an Internet Gateway (IGW) for the public subnet and configuring the Route Table ensures seamless internet connectivity.

VPC: VPC2

Subnets: subnets

IGW: IGW

3. Security Group and RDS Configuration:

Security is not just a feature but a necessity. Setting up a security group named ‘aws-demo-review-rds-sg’ with appropriate inbound and outbound rules facilitates the connection to a MySQL database. The creation of a Subnet Group and a database instance named ‘aws-demo-rds’ in RDS, with MySQL as the database engine, enhances the security posture. Adjusting settings like IOPS, storage auto-scaling, and Multi-AZ configurations ensures a robust and resilient database setup.

Security Group: subnet_group

RDS_SG: rds_sg

RDS: rds_create

4. EC2 Instance Configuration:

Launching EC2 instances is a crucial aspect of this setup. We initiate two instances, both derived from the Amazon Linux AMI. These are placed within the public subnet and assigned public IP addresses to ensure network accessibility. To tailor their accessibility, we configure security groups, setting up distinct ports for each: port 8080 for the first instance (EC2-1), designated for front-end simulation, and port 3000 for the second instance (EC2-2), intended for back-end simulation.

The functionality of these instances is further enhanced by installing Docker and docker-compose, which aid in the deployment and management of applications, along with GIT for version control. This arrangement effectively creates a practical environment, where one VM (EC2-1) acts as a front-end server and the other (EC2-2) as a back-end server, demonstrating a typical web application infrastructure.

5. S3 Storage Configuration and Usage:

The configuration of S3 storage is vital for managing resources effectively. In EC2-1, creating an S3 Bucket for storing frontend resources, such as cover images, and implementing version control to prevent data loss demonstrates a well-thought-out storage strategy. Configuring IAM roles for EC2 instances to interact with S3 services further integrates your storage solutions.

S3: S3

6. Frontend and backend Integration:

The photograph provided illustrates a successful implementation using AWS services, particularly with EC2 instances and RDS.

In this setup, EC2-2 (backend) plays a crucial role in connecting to the RDS (Relational Database Service) to retrieve data. This data management is fundamental, as RDS offers scalable and efficient database storage, essential for dynamic web applications.

Meanwhile, EC2-1 (frontend) is configured to fetch database data through the backend API. This architecture allows the front-end of the application to display data on the webpage dynamically and interactively. The separation of concerns between the frontend and backend ensures a more secure, efficient, and manageable system.

Additionally, the use of Amazon S3 (Simple Storage Service) is highlighted for image hosting. By storing images in S3 and retrieving their public OBJECT URLs, the application can easily embed these images on the web pages. This approach not only simplifies the management of web resources but also leverages the high availability and durability of AWS S3.

Furthermore, the interface includes a dialog box where users can insert new data into the database directly from the webpage. This feature enhances user interaction and data input efficiency.

EC2-1 (frontend): frontend

EC2-2 (backend): backend

7. Pausing and Resuming Projects:

The ability to pause and resume resources efficiently is crucial. Stopping RDS and EC2 resources, creating snapshots and AMIs, and restoring databases and instances from these snapshots and AMIs are essential for maintaining service continuity. Updating connection parameters and restarting services ensures minimal downtime and efficient resource management.

RDS-Snapshot: Snapshot

8. Resource Cleanup:

Finally, effective resource management involves cleaning up after project completion. Deleting RDS instances, snapshots, and subnet groups; terminating EC2 instances and deleting related AMIs and snapshots; removing S3 buckets; and cleaning up the VPC and associated resources are critical steps to avoid unnecessary costs and maintain a clutter-free AWS environment.

9. Data Backup:

Regularly creating snapshots or AMIs of RDS and EC2 ensures that you are prepared for disaster recovery. This proactive approach to data backup is key to maintaining data integrity and business continuity in the face of unforeseen challenges.

This guide offers a structured approach to setting up and managing your AWS environment, ensuring that each component is configured for optimal performance and security. By following these steps, you can establish a robust and scalable AWS infrastructure tailored to your specific project needs.

comments powered by Disqus