Tuesday 16 April 2024

The goal of this lab is to illustrate how to access an S3 bucket from an EC2 instance in a private subnet using an S3 gateway endpoint.

 

Architecture Diagram

lab-014-arch-01

Overview

The architecture diagram illustrates the steps we will have to take to demonstrate how the EC2 instance in the private subnet can still access an S3 bucket even if the instance does not have access to the internet.

  1. From the client you can connect to a bastion host configured in the public subnet (see lab-002),
  2. From the bastion host you can then connect to the EC2 instance in the private subnet,
  3. From the EC2 instance you can use the S3 gateway endpoint, to ...
  4. Access the S3 bucket.

Step 1 - Initial Setup

Follow the steps described in lab-002, making sure you change all references to lab-002 with lab-014.

Step 2 - Create an S3 Bucket

Name your S3 bucket lab014-bucket. Refer to lab-013 if not sure how to do this step.

Step 3 - Create an S3 Gateway Endpoint

Go to VPC - Endpoints and click on Create Endpoint.

lab-014-scrn-01 lab-014-scrn-02 lab-014-scrn-03 lab-014-scrn-04

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)