DEN 302 Cloud InfrastructureAssessment 3 Individual Assessment Weightage 40%Assessment type: Report submission (30%) + Presentation 5-10 minutes (10%) – Individual assignmentDue Date: Report...

1 answer below »






DEN 302 Cloud Infrastructure



Assessment 3 Individual Assessment Weightage 40%



Assessment type: Report submission (30%) + Presentation 5-10 minutes (10%) – Individual assignment



Due Date: Report submission 2nd of February 2023 11:59 PM, Presentation 9th of February 2023 11:59 AM.



Submission: Word file report containing all screenshots to be submitted via Moodle LMS + PowerPoint presentation submitted via Moodle LMS



Assessment Details: Setting up a VPC and S3 bucket in AWS.



Objective: This assignment aims to set up a Virtual Private Cloud (VPC) and an Amazon S3 bucket in



AWS and connect them.



Instructions:



- Create a VPC in the AWS Management Console (VPC name: Your full name) and configure it with a public and a private subnet (Private Subnet name: Your first name, Public subnet name: Your last name).



- Create an S3 bucket (Bucket name: Combination of your name and student ID) in the AWS Management Console.



- Create a VPC endpoint for S3, which allows resources in the VPC to access S3 without going over the internet.



- Test the setup by uploading a file to the S3 bucket from within the VPC's private subnet and by attempting to access the S3 bucket from outside the VPC.



Evaluation Criteria (report 30 marks):



- The VPC and S3 bucket are set up correctly and are accessible from the specified IP addresses and ports. Take screenshots and put them in your report (6 marks)



1
















- The VPC endpoint for S3 is set up correctly and allows resources in the VPC to access S3 without going over the internet. Take screenshots and add them to your report (8 marks)



- The test of uploading a file to the S3 bucket from within the VPC's private subnet is successful. Take screenshots and add them to your report (10 marks)



- Test of attempting to access the S3 bucket outside the VPC is unsuccessful. Take screenshots and add them to your report (6 marks)



- Submit your word file report containing all the screenshots with an explanation about them via Moodle LMS.



Evaluation Criteria (Presentation 10 marks):



- The VPC and S3 bucket are set up correctly and are accessible from the specified IP addresses and ports. (2 marks)



- The VPC endpoint for S3 is set up correctly and allows resources in the VPC to access S3 without going over the internet. (2 marks)



- The test of uploading a file to the S3 bucket from within the VPC's private subnet is successful. (4 marks)



- Test of attempting to access the S3 bucket outside the VPC is unsuccessful. (2 marks)



2










assessment-3-mjt3yjsi.pdf
Answered 9 days AfterFeb 04, 2023

Answer To: DEN 302 Cloud InfrastructureAssessment 3 Individual Assessment Weightage 40%Assessment type: Report...

Deepak answered on Feb 13 2023
33 Votes
1.
Go to https://console.aws.amazon.com/vpc/ to access the Amazon VPC console.
Select Endpoints from the navigation pane.
Select Create endpoint.
Select AWS services from the Service category.
Add the Type: Gateway filter to Services and choose com.amazonaws.region.s3.
Select the VPC in which you want to construct the endpoint.
Select the route tables that will be utilised by the endpoint under Route tables. We immediately add a route that directs traffic to the service's endpoint network interface.
Select Full access for Policy to allow all activities by all principals on all resources across the VPC endpoint. Otherwise, choose Custom to attach a VPC endpoint policy that governs principals' ability to conduct actions on resources via the VPC endpoint.
2.
S3 Access Points are one-of-a-kind hostnames that you may use to enforce certain permissions and network constraints on each request made through the Access Point.
S3 Access Points include the following major features:
A hostname, an AWS ARN, and an AWS IAM resource policy are all part of an Access Point.
Access Points are configured by default to block public access.
Accounts and Regions have their own set of Access Points.
Custom IAM permissions may be assigned to Access...
SOLUTION.PDF
SOLUTION.PDF

Answer To This Question Is Available To Download

Related Questions & Answers

More Questions »

Submit New Assignment

Copy and Paste Your Assignment Here
Have files?