IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

List of Experiment
Cloud Computing
1. To study cloud architecture and cloud computing model.
2. Setting up a basic virtualization environment using Virtual Box or VMware.
3. Study and Implementation of Storage as a Service Using AWS S3 Storage.
4. Study of AWS Identity and Access Management.
5. Create VPC with Amazon Web Services.
6. Launch Web Server in Virtual Private Cloud.
7. Create EC2 instance with Amazon Web Services.
8. Installation and configure Google App Engine

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Course Outcomes (Cos)

1. Explain the core concepts of the cloud computing paradigm.

2. Demonstrate knowledge of virtualization
3. Explain the core issues of cloud computing such as security, privacy, and interoperability.
4. Choose the appropriate technologies, algorithms, and approaches for the related issues.
5. Identify problems, and explain, analyze, and evaluate various cloud computing solutions.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Laboratory Regulations and Safety Rules

1. Without Prior permission do not enter the Laboratory.
2. While entering the LAB students should wear their ID cards.
3. The Students should come with proper uniform.
4. Student should not use mobile phone inside the laboratory.
5. Students should sign in the LOGIN REGISTER before entering into the laboratory.
6. Students should come with observation and record note book to the laboratory.
7. Do not change any computer setting.
8. Students should maintain silence inside the laboratory.
9. After completing the laboratory exercise, make sure to SHUTDOWN the system properly.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

INDEX

S.No. Experiment Name Date Grade Signature

1. To study cloud architecture and cloud computing model.

2. Setting up a basic virtualization environment using Virtual Box or
VMware.
3. Study and Implementation of Storage as a Service Using AWS S3
Storage
4. Study of AWS Identity and Access Management
5. Create VPC with Amazon Web Services.
6. Launch Web Server in Virtual Private Cloud
7. Create EC2 instance with Amazon Web Services.
8. Installation and configure Google App Engine

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Experiment 1
To study cloud architecture and cloud computing model.

1. Cloud Computing - An Introduction

Cloud computing is a paradigm change towards the provision and management of computing
resources. Cloud computing offers resource pools of on-demand configurable computing resources,
such as servers, storage, applications, and services, accessed over the internet. This model brings
scalability, cost efficiency, and flexibility to the way organizations deploy and manage their IT
infrastructure.

2. Cloud Computing Models

Cloud computing services have been grouped into three main models, each designed to meet different
needs and use cases, including:

2.1. Infrastructure as a Service (IaaS)

Definition: IaaS is a form of cloud computing services that provides virtualized computing resources
over the internet. Users can avail of renting IT infrastructure, like virtual machines, storage, and
networking resources, on a pay-as-you-go basis.
Key Features:

• Scalability: Resources can be scaled up or down according to demand, thereby providing

flexibility in regard to workload fluctuations.
• Scalability and Cost-Effective: The customers will pay only for the resources utilized by
them, hence reducing the capital expenditure on physical hardware.
• Management: The user is in control of operating systems, applications, and storage but is not
allowed to manage the underlying physical hardware.
Examples:

• AWS EC2 by Amazon Web Services: Provides scalable virtual servers.

• Compute Engine by Google Cloud: Provides virtual machines that come with configurable
configurations.
• Virtual Machines by Microsoft Azure: Scalable cloud computing resources.
Use Cases: Hosting websites, running enterprise applications, and large-scale data analytics.
Platform as a Service (PaaS)
Definition: PaaS provides the platform that may be used by developers to develop, deploy, and
manage applications without being bothered about the underlying infrastructure.
Key Features:

• Development Tools: Inbuilt development frameworks, databases, and application hosting

environments.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

• Integration: Ensuring integration with a plethora of databases, development tools, and other
applications.
• Automatic Updates: The platform is managed by the provider, which handles updates,
patches, and maintenance.
Examples:

• Google App Engine: Allows developers to create and deploy applications without server
management.
• Microsoft Azure App Service: A managed platform to build and deploy Web apps.
• Heroku: Enables one to build, run, and scale apps in several programming languages.
Use Cases: Development of web applications, mobile applications, and integration with other services
and APIs.
Software as a Service (SaaS)
Definition: SaaS is a model of software application delivery over the internet on a subscription basis.
Application access is through a web browser, with the provider managing the underlying
infrastructure and software.
Key Features:

• Accessibility: Applications can be accessed from any location with access to the internet.
• Maintenance: The provider is responsible for updates, patches, and general maintenance.
• Cost Model: Generally has a subscription cost, which may prove more predictable than
buying software licenses.
Examples:

• Google Workspace (formerly G Suite): Provides cloud-based applications for productivity,

including Gmail, Docs, and Drive.
• Microsoft Office 365: Provides access to Microsoft Office applications and affiliated
services.
• Salesforce: CRM software and associated services.
Use Cases: Email, customer relationship management (CRM), Collaboration Tools
Cloud Architecture
Architecture of Cloud Computing:
The components and services combined in the cloud environment together provide the capability of
cloud computing. Cloud architecture generally comprises the following layers: -
Front-End Interface
Definition: The client-side of cloud computing, where users interact with cloud services. This
includes web browsers, mobile apps, and client software.
Components:
• User Interface: Web-based portals or applications that provide access to cloud services.
• API Access: Application Programming Interfaces (APIs) that enable interaction with cloud
services programmatically.
Back-End Infrastructure

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Definition: The server-side components responsible for delivering cloud services. It includes the
physical and virtual resources that support cloud applications.
Components:
• Servers: Physical or virtual machines that run applications and services. These servers can be
dedicated or shared among multiple users.
• Storage: Systems for storing data, including object storage (for unstructured data), block
storage (for high-performance needs), and file storage (for shared access).
• Networking: Infrastructure that connects servers and storage resources, including virtual
networks, load balancers, and network security.
Cloud Services
Definition: Various services offered by cloud providers that enable users to tap computing power,
storage, and other functionalities.
Components:

• Compute Services: The VMs, containers, and serverless computing platforms provide
processing power for applications.
• Storage Services: Object storage for large amounts of unstructured data, block storage for
databases and high-performance applications, file storage for file sharing.
• Database Services: Managed relational and NoSQL databases, data warehousing, and
analytics services.
• Networking Services: Tools to create virtual networks, manage traffic flow, and encrypt data
transmissions.
Management and Security
Definition: Tools and protocols for cloud resource management and security.
Components:

• Management Tools: Dashboards, APIs, and monitoring systems to handle cloud resources
management, performance, and usage.
• Security Tools: Firewalls, encryption, IAM, and compliance monitoring in the interest of
security of data and applications.
Cloud Deployment Models
Cloud computing can be deployed in several modes for the purpose of addressing diverse needs of
organizations:
Public Cloud: This cloud service is available over the public internet, and its underlying resources are
shared between multiple organizations.
Advantages:

• Cost-Effective: Lower capital costs with pay-as-you-use pricing

• Scalability: Provides scaling of resources up or down with ease as demand changes.
• Management: Administration by the cloud provider.
Examples: AWS, Google Cloud Platform, Microsoft Azure.
Private Cloud

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

In a private cloud, the cloud infrastructure operates exclusively for one organization, whether on-
premises or hosted by a third party.
Advantages:

• Control: Full control over resources, configurations, and security.

• Customization: Can be customized to suit particular organizational needs.
• Security: Increased security of data and compliance.
Examples: VMware vSphere, OpenStack.
Hybrid Cloud
Definition: A mixture of public and private clouds that can share data and applications between them.
Advantages:

• Flexibility: Allows some workloads to run on public clouds while sensitive data is kept in a
private cloud.
• Cost Optimization: Resources are used in the most efficient manner depending on workload
demands.
• Disaster Recovery: Far greater backup and disaster recovery options.
Examples: Integration of AWS with on-premises infrastructure, Microsoft Azure Stack.
Community Cloud
Definition: Cloud infrastructure shared among multiple organizations that share mutual interests or
concerns.
Benefits:

• Cost Sharing: Shared by Organizations with Needs

• Collaboration: It allows collaboration and sharing of data between members of the
community.
• Compliance: Ensuring compliance to particular regulatory requirements shared among the
community members.
Examples: Government clouds, academic consortiums.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Experiment 2
Setting up a basic virtualization environment using Virtual Box or VMware.

Requirements:
1. A computer with a processor that supports Virtualization.
2. At least 8-20 GB of disk space(depends on what OS you are installing)
and 1 GB of RAM.
3. Installation Media: You must have the CD/DVD or the .iso file.
4. If you are creating a VM that runs Windows you will need the Product
Key.
5. An internet connection or the VirtualBox installation file.
Oracle VM Virtualbox. This software is free, open source, and multi-
platform.

Step 1: Download and Install VirtualBox

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 2: Create a Virtual Machine

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 3: Allocate Memory

This depends on how much memory you have on your host computer. Never allocate
more than half of your available RAM.

If you are creating a Windows VM I recommend at least (1-2 GB)

If you are creating a Linux VM I recommend at least (512 MB)

Step 4: Setup the Hard Drive

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 5: Select Hard Drive File Type

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 6: Select Storage on Physical Hard Drive

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 7: Setup File Location and Size

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 8: Install the Operating System

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 9: Install Guest Additions

Step 10: Update Settings for 2D and 3D Acceleration

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Experiment No. 03
Study and Implementation of Storage as a Serviceusing AWS S3 Storage.
Aim:
To study and Implement Storage as a Service using AWS S3Storage.
Theory :
Storage as a service (STaaS)Storage as a service (STaaS) is a cloud business model in which a
company leases or rents itsstorage infrastructure.
Amazon S3
(Simple Storage Service) provides object storage, which is built for storing andrecovering any amount
of information or data from anywhere over the internet. It provides thisstorage through a web services
interface. While designed for developers for easier web-scalecomputing, it provides 99.999999999
percent durability and 99.99 percent availability of objects.It can also store computer files up to 5
terabytes in size.
Benefits
●Durability: S3 provides 99.999999999 percent durability.
●Low cost: S3 lets you store data in a range of “storage classes.” These classes are basedon the
frequency and immediacy you require in accessing files
●Scalability: S3 charges you only for what resources you actually use, and there are nohidden fees or
overage charges. You can scale your storage resources to easily meet yourorganization’s ever-
changing demands
●Availability: S3 offers 99.99 percent availability of object
●Security: S3 offers an impressive range of access management tools and encryptionfeatures that
provide top-notch security.
●Flexibility: S3 is ideal for a wide range of uses like data storage, data backup, softwaredelivery, data
archiving, disaster recovery, website hosting, mobile applications, IoTdevices, and much more.
●Simple data transfer: You don’t have to be an IT genius to execute data transfers on S3.The service
revolves around simplicity and ease of us.

IMPLEMENTATION :
Step1:In AWS , Services - >Storage->S3

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 2 : Click on Create Bucket

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 3: Adding Bucket name and choosing AWS Region

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step4 : Enable Bucket Versioning

Step5 : Disable default Encryption and click create Bucket.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step6 : Bucket ‘achufirst’ is created

Step7 : Selecting ‘achufirst’ and uploading files

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step8 : Uploaded files successfully.

Step9 : After uploading the same png file one by one, clicking on ‘Show versions’, we cansee
that the Version ID is different for both.

Step10 :Copying ARN for 'achufirst'

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 11: Going to Permissions -> Edit Bucket Policy -> Policy GeneratorDo as shown

Step 12 : Click on Generate Policy and the following JSON document is obtained. It is then
copied .

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step13 :The bucket policy is updated and changes are saved .

Step14 :Successfully edited bucketPolicy .

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step15 :Delete objects inside bucket .

Step16 :Reviewing objects in bucket and confirming deletion .

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step17 :Deletion is not possible because of the policy we added .

Step18:Now, emptying bucket .

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Successfully Emptied

Step 19 : Deleting Bucket .

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Experiment 4
Study of AWS Identity and Access Management.

AWS Identity and Access Management (IAM) can be used to:

Manage IAM Users and their access: You can create Users and assign them individual
security credentials (access keys, passwords, and multi-factor authentication devices). You
can manage permissions to control which operations a User can perform.

Manage IAM Roles and their permissions: An IAM Role is similar to a User, in that it is
an AWS identity with permission policies that determine what the identity can and cannot do
in AWS. However, instead of being uniquely associated with one person, a Role is intended
to be assumable by anyone who needs it.

Manage federated users and their permissions: You can enable identity federation to allow
existing users in your enterprise to access the AWS Management Console, to call AWS APIs
and to access resources, without the need to create an IAM User for each identity.

Accessing the AWS Management Console

Task 1: Explore the Users and Groups

In this task, you will explore the Users and Groups that have already been created for you in
IAM.

4. In the search box to the right of Services, search for and choose IAM to open the IAM
console

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

5. In the navigation pane on the left, choose Users.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

6. Choose the user-1 link.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

7. Notice that user-1 does not have any permission.

8. Choose the Groups tab.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

9. Choose the Security credentials tab.

10. In the navigation pane on the left, choose User groups.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

11. Choose the EC2-Support group link.

12. Choose the Permissions tab.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

13. Choose the plus (+) icon next to the AmazonEC2ReadOnlyAccess policy to view the policy
details.

14. Choose the minus icon (-) to hide the policy details.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

15. In the navigation pane on the left, choose User groups.

16. Choose the S3-Support group link and then choose the Permissions tab.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

17. Choose the plus (+) icon to view the policy details.

18. Choose the minus icon (-) to hide the policy details.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

19. In the navigation pane on the left, choose User groups.

20. Choose the EC2-Admin group link and then choose the Permissions tab.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

21. Choose the plus (+) icon to view the policy details.

22. Choose the minus icon (-) to hide the policy details.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Task 2: Add Users to Groups

You have recently hired user-1 into a role where they will provide support for Amazon S3.
You will add them to the S3-Support group so that they inherit the necessary permissions via
the attached AmazonS3ReadOnlyAccess policy.
You can ignore any "not authorized" errors that appear during this task. They are caused by
your lab account having limited permissions and will not impact your ability to complete the
lab.

Add user-1 to the S3-Support Group

23. In the left navigation pane, choose User groups.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

24. Choose the S3-Support group link.

25. Choose the Users tab.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

26. In the Users tab, choose Add users.

27. In the Add Users to S3-Support window, configure the following:

o Select user-1.
o At the bottom of the screen, choose Add users.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

In the Users tab you will see that user-1 has been added to the group.

Add user-2 to the EC2-Support Group

You have hired user-2 into a role where they will provide support for Amazon EC2.

28. Using similar steps to the ones above, add user-2 to the EC2-Support group.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

29. user-2 should now be part of the EC2-Support group.

Add user-3 to the EC2-Admin Group

You have hired user-3 as your Amazon EC2 administrator, who manage your EC2 instances.

29. Using similar steps to the ones above, add user-3 to the EC2-Admin group.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

user-3 should now be part of the EC2-Admin group.

30. In the navigation pane on the left, choose User groups.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Task 3: Sign-In and Test Users

In this task, you will test the permissions of each IAM User.

31. In the navigation pane on the left, choose Dashboard.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

32. Copy the Sign-in URL for IAM users in this account to a text editor.

33. Open a private (Incognito) window.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

34. Paste the IAM users sign-in link into the address bar of your private browser session and
press Enter.

Next, you will sign-in as user-1, who has been hired as your Amazon S3 storage support
staff.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

35. Sign-in with:

o IAM user name: user-1
o Password: Lab-Password1

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

36. In the search box to the right of Services, search for and choose S3 to open the S3 console.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

37. Choose the name of the bucket that exists in the account and browse the contents.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

38. In the search box to the right of Services, search for and choose EC2 to open the EC2
console.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

39. In the left navigation pane, choose Instances.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

40. Sign user-1 out of the AWS Management Console by completing the following actions:
o At the top of the screen, choose user-1
o Choose Sign Out

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

41. Sign-in with:

o IAM user name: user-2
o Password: Lab-Password2

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

42. In the search box to the right of Services, search for and choose EC2 to open the EC2
console.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

43. In the navigation pane on the left, choose Instances.

o Select the instance named LabHost.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

44. In the Instance state menu above, select Stop instance.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

45. In the Stop Instance window, select Stop.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

46. Choose the X to close the Failed to stop the instance message.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

47. In the search box to the right of Services, search for and choose S3 to open the S3 console.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

48. Sign user-2 out of the AWS Management Console by completing the following actions:
o At the top of the screen, choose user-2
o Choose Sign Out

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

49. Sign-in with:

o IAM user name: user-3
o Password: Lab-Password3

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

50. In the search box to the right of Services, search for and choose EC2 to open the EC2
console.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

51. In the navigation pane on the left, choose Instances.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

52. In the Instance state menu, choose Stop instance.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

53. In the Stop instance window, choose Stop.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

54. Close your private browser window.

Submitting your work

58. To record your progress, choose Submit at the top of these instructions.
59. When prompted, choose Yes.
60. To find detailed feedback about your work, choose Submission Report.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Experiment No. 05

Create VPC with Amazon Web Services.

Task 1: Create Your VPC

In this task, you will use the VPC and more option in the VPC console to create multiple
resources, including a VPC, an Internet Gateway, a public subnet and a private subnet in a
single Availability Zone, two route tables, and a NAT Gateway.

In the search box to the right of Services, search for and choose VPC to open the VPC
console.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Begin creating a VPC.

• In the top right of the screen, verify that N. Virginia (us-east-1) is the region.
• Choose the VPC dashboard link which is towards the top left of the console.
• Next, choose Create VPC.

Note: If you do not see a button with that name, choose the Launch VPC Wizard button
instead.

Configure the VPC details in the VPC settings panel on the left:

• Choose VPC and more.

• Under Name tag auto-generation, keep Auto-generate selected, however change the value
from project to lab.
• Keep the IPv4 CIDR block set to 10.0.0.0/16
• For Number of Availability Zones, choose 1.
• For Number of public subnets, keep the 1 setting.
• For Number of private subnets, keep the 1 setting.
• Expand the Customize subnets CIDR blocks section
o Change Public subnet CIDR block in us-east-1a to 10.0.0.0/24
o Change Private subnet CIDR block in us-east-1a to 10.0.1.0/24
• Set NAT gateways to In 1 AZ.
• Set VPC endpoints to None.
• Keep both DNS hostnames and DNS resolution enabled.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

In the Preview panel on the right, confirm the settings you have configured.

• VPC: lab-vpc
• Subnets:
o us-east-1a
▪ Public subnet name: lab-subnet-public1-us-east-1a
▪ Private subnet name: lab-subnet-private1-us-east-1a
• Route tables
o lab-rtb-public
o lab-rtb-private1-us-east-1a
• Network connections
o lab-igw
o lab-nat-public1-us-east-1a

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

4. At the bottom of the screen, choose Create VPC

The VPC resources are created. The NAT Gateway will take a few minutes to activate.

Please wait until all the resources are created before proceding to the next step.

5. Once it is complete, choose View VPC

The wizard has provisioned a VPC with a public subnet and a private subnet in one
Availability Zone with route tables for each subnet. It also created an Internet Gateway and a
NAT Gateway.

To view the settings of these resources, browse through the VPC console links that display
the resource details. For example, choose Subnets to view the subnet details and choose
Route tables to view the route table details. The diagram below summarizes the VPC
resources you have just created and how they are configured.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

An Internet gateway is a VPC resource that allows communication between EC2 instances in
your VPC and the Internet.

The lab-subnet-public1-us-east-1a public subnet has a CIDR of 10.0.0.0/24, which means

that it contains all IP addresses starting with 10.0.0.x. The fact the route table associated with
this public subnet routes 0.0.0.0/0 network traffic to the internet gateway is what makes it a
public subnet.

A NAT Gateway, is a VPC resource used to provide internet connectivity to any EC2
instances running in private subnets in the VPC without those EC2 instances needing to have
a direct connection to the internet gateway.

The lab-subnet-private1-us-east-1a private subnet has a CIDR of 10.0.1.0/24, which means

that it contains all IP addresses starting with 10.0.1.x.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

In this task, you will create two additional subnets for the VPC in a second Availability Zone.
Having subnets in multiple Availability Zones within a VPC is useful for deploying solutions
that provide High Availability.
After creating a VPC as you have already done, you can still configure it further, for
example, by adding more subnets. Each subnet you create resides entirely within one
Availability Zone.

Task 2: Create Additional Subnets

10. In the left navigation pane, choose Subnets.

First, you will create a second public subnet.

11. Choose Create subnet then configure:

o VPC ID: lab-vpc (select from the menu).
o Subnet name: lab-subnet-public2
o Availability Zone: Select the second Availability Zone (for example, us-east-1b)
o IPv4 CIDR block: 10.0.2.0/24

The subnet will have all IP addresses starting with 10.0.2.x.

12. Choose Create subnet

The second public subnet was created. You will now create a second private subnet.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

13. Choose Create subnet then configure:

o VPC ID: lab-vpc
o Subnet name: lab-subnet-private2
o Availability Zone: Select the second Availability Zone (for example, us-east-1b)
o IPv4 CIDR block: 10.0.3.0/24

The subnet will have all IP addresses starting with 10.0.3.x.

14. Choose Create subnet

The second private subnet was created.

You will now configure this new private subnet to route internet-bound traffic to the NAT
Gateway so that resources in the second private subnet are able to connect to the Internet,
while still keeping the resources private. This is done by configuring a Route Table.

A route table contains a set of rules, called routes, that are used to determine where network
traffic is directed. Each subnet in a VPC must be associated with a route table; the route table
controls routing for the subnet.

15. In the left navigation pane, choose Route tables.

16. Select the lab-rtb-private1-us-east-1a route table.

17. In the lower pane, choose the Routes tab.

Note that Destination 0.0.0.0/0 is set to Target nat-xxxxxxxx. This means that traffic
destined for the internet (0.0.0.0/0) will be sent to the NAT Gateway. The NAT Gateway will
then forward the traffic to the internet.

This route table is therefore being used to route traffic from private subnets.

18. Choose the Subnet associations tab.

You created this route table in task 1 when you chose to create a VPC and multiple resources
in the VPC. That action also created lab-subnet-private-1 and associated that subnet with this
route table.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Now that you have created another private subnet, lab-subnet-private-2, you will associate
this route table with that subnet as well.

19. In the Explicit subnet associations panel, choose Edit subnet associations

20. Leave lab-subnet-private1-us-east-1a selected, but also select lab-subnet-private2.

21. Choose Save associations

You will now configure the Route Table that is used by the Public Subnets.

22. Select the lab-rtb-public route table (and deselect any other subnets).

23. In the lower pane, choose the Routes tab.

Note that Destination 0.0.0.0/0 is set to Target igw-xxxxxxxx, which is an Internet Gateway.
This means that internet-bound traffic will be sent straight to the internet via this Internet
Gateway.

You will now associate this route table to the second public subnet you created.

24. Choose the Subnet associations tab.

25. In the Explicit subnet associations area, choose Edit subnet associations

26. Leave lab-subnet-public1-us-east-1a selected, but also select lab-subnet-public2.

27. Choose Save associations

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Experiment 7
Create EC2 instance with Amazon Web Services.

Introduction to Amazon EC2

This lab provides you with a basic overview of launching, resizing, managing, and
monitoring an Amazon EC2 instance.
Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides resizable
compute capacity in the cloud. It is designed to make web-scale cloud computing easier for
developers.
Amazon EC2's simple web service interface allows you to obtain and configure capacity with
minimal friction. It provides you with complete control of your computing resources and lets
you run on Amazon's proven computing environment. Amazon EC2 reduces the time
required to obtain and boot new server instances to minutes, allowing you to quickly scale
capacity, both up and down, as your computing requirements change.
Amazon EC2 changes the economics of computing by allowing you to pay only for capacity
that you actually use. Amazon EC2 provides developers the tools to build failure resilient
applications and isolate themselves from common failure scenarios.

After completing this lab, you should be able to do the following:

• Launch a web server with termination protection enabled

• Monitor Your EC2 instance

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

• Modify the security group that your web server is using to allow HTTP access
• Resize your Amazon EC2 instance to scale and enable stop protection
• Explore EC2 limits
• Test stop protection
• Stop your EC2 instance

Accessing the AWS Management Console

1. At the top of these instructions, choose Start Lab.

2. To connect to the AWS Management Console, choose the AWS link in the upper-left corner.

3. Arrange the AWS Management Console tab so that it displays along side these instructions.
Ideally, you will be able to see both browser tabs at the same time, to make it easier to follow
the lab steps.

Task 1: Launch Your Amazon EC2 Instance

In this task, you will launch an Amazon EC2 instance with termination protection and stop
protection. Termination protection prevents you from accidentally terminating the EC2
instance and stop protection prevents you from accidentally stopping the EC2 instance. You
will also specify a User Data script when you launch the instance that will deploy a simple
web server.

4. In the AWS Management Console choose Services, choose Compute and then choose
EC2.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

5. Choose the Launch instance menu and select Launch instance.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 1: Name and tags

6. Give the instance the name Web Server .

Step 2: Application and OS Images (Amazon Machine Image)

7. In the list of available Quick Start AMIs, keep the default Amazon Linux AMI selected.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

8. Also keep the default Amazon Linux 2023 AMI selected.

Step 3: Instance type

9. In the Instance type panel, keep the default t2.micro selected.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 4: Key pair (login)

10. For Key pair name - required, choose vockey.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 5: Network settings

11. Next to Network settings, choose Edit.

12. For VPC, select Lab VPC.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

13. Under Firewall (security groups), choose Create security group and configure:
o Security group name: Web Server security group
o Description: Security group for my web server

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 6: Configure storage

14. In the Configure storage section, keep the default settings.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 7: Advanced details

15. Expand Advanced details.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

16. For Termination protection, select Enable.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

17. Scroll to the bottom of the page and then copy and paste the code shown below into the User
data box:

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

#!/bin/bash
dnf install -y httpd
systemctl enable httpd
systemctl start httpd
echo '<html><h1>Hello From Your Web Server!</h1></html>' > /var/www/html/index.html

o Install an Apache web server (httpd)

o Configure the web server to automatically start on boot
o Run the Web server once it has finished installing
o Create a simple web page

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Step 8: Launch the instance

18. At the bottom of the Summary panel choose Launch instance

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

19. Choose View all instances

o In the Instances list, select Web Server.
o Review the information displayed in the Details tab. It includes information about the
instance type, security settings and network settings.

20. Wait for your instance to display the following:

o Instance State: Running
o Status Checks: 2/2 checks passed

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

Experiment 8
Installation and configure Google App Engine

1. Installation and configure Google App Engine.

Introduction
Google App Engine is a web application hosting service. By “web application,” we
mean an application or service accessed over the Web, usually with a web browser:
storefronts with shopping carts, social networking sites, multiplayer games, mobile
applications, survey applications, project management, collaboration, publishing, and
all the other things we’re discovering are good uses for the Web. App Engine can
serve traditional website content too, such as documents and images, but the
environment is especially designed for real-time dynamic applications. Of course, a
web browser is merely one kind of client: web application infrastructure is well suited
to mobile applications, as well.
In particular, Google App Engine is designed to host
applications with many simultaneous users. When an application can serve many
simultaneous users without degrading performance, we say it scales. Applications
written for App Engine scale automatically. As more people use the application, App
Engine allocates more resources for the application and manages the use of those
resources. The application itself does not need to know anything about the resources it
is using.
The app engine is a Cloud-based platform, is quite comprehensive and combines
infrastructure as a service (IaaS), platform as a service (PaaS) and software as a
service (SaaS). The app engine supports the delivery, testing and development of
software on demand in a Cloud computing environment that supports millions of
users and is highly scalable. The company extends its platform and infrastructure to
the Cloud through its app engine. It presents the platform to those who want to
develop SaaS solutions at competitive costs .Have you ever wondered as to who
stands to benefit the most from the Google app engine? If you are a business SME or
enterprise which owns any web-based application that needs to be scaled without any
compromise on the performance then Google App Engine is a good fit. Companies
like Best Buy and Khan Academy have chosen Google App Engine for their apps.

Google App Engine

It is a platform-as-a-service (PaaS) Cloud computing platform that is fully managed
and uses inbuilt services to run your apps. You can start development almost instantly
after downloading the software development kit (SDK). You can go on to the
developer’s guide right away when you click on the language you wish to develop
your app in. As soon as you have signed up for a Cloud account, you can build your
app:With the template/HTML package in Go With Jinja2 and webapp2 in Python
With Cloud SQL in PHP With Maven in Java.

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.

 IPS ACADEMY, INSTITUTE OF ENGINEERING AND SCIENCE - INDORE

VII SEM Cloud Computing Lab [PEC-CSCL 701(A)] 2024-25.