Thank you for sending your enquiry! One of our team members will contact you shortly.
Thank you for sending your booking! One of our team members will contact you shortly.
Course Outline
Virtualization Details
- Overview of Operating System Concepts: CPU, Memory, Network, Storage
-
Hypervisor
- Supervisor of Supervisors
- "Host" Machine and "Guest" OS
- Type-1 Hypervisor and Type-2 Hypervisor
- Citrix XEN, VMware ESX/ESXi, Microsoft Hyper-V, IBM LPAR.
-
Network Virtualization
- Introduction to the 7-Layer OSI Model
- Focus on the Network Layer
- TCP/IP Model or Internet Protocol
-
Focus on a Single Vertical
- Application Layer: SSL
- Network Layer: TCP
- Internet Layer: IPv4/IPv6
- Link Layer: Ethernet
-
Packet Structure
- Addressing: IP Addresses and Domain Names
- Firewall, Load Balancer, Router, Adapter
- Virtualized Network
- Higher-Order Abstractions: Subnets, Zones.
-
Hands-on Exercise:
- Familiarize with ESXi Cluster and vSphere Client
- Create or Update Networks in ESXi Cluster, Deploy Guests from VMDK Packages, Enable Inter-Connectivity Between Guests in an ESXi Cluster
- Make Modifications to a Running VM Instance and Capture Snapshot
- Update Firewall Rules in ESXi Using vSphere Client
Cloud Computing: A Paradigm Shift for Government
- A Fast, Inexpensive Path to Make Products/Solutions Available Globally
-
Resource Sharing
- Virtualization of Virtualized Environments
-
Key Benefits:
-
On-Demand Resource Elasticity
- Ideate -> Code -> Deploy Without Requiring Infrastructure
- Rapid CI/CD Pipelines
- Environment Isolation and Vertical Autonomy
- Security Through Layering
- Expense Optimization
-
On-Demand Resource Elasticity
- On-Premise Cloud and Cloud Providers for Government
- Cloud as an Effective Conceptual Abstraction for Distributed Computing
Introduction to Cloud Solution Layers:
-
IaaS (Infrastructure as a Service)
- AWS, Azure, Google
-
Choose One Provider to Continue Later. AWS is Recommended.
- Introduction to AWS VPC, AWS EC2, etc.
-
PaaS (Platform as a Service)
- AWS, Azure, Google, CloudFoundry, Heroku
- Introduction to AWS DynamoDB, AWS Kinesis, etc.
-
SaaS (Software as a Service)
- Very Brief Overview
- Microsoft Office, Confluence, Salesforce, Slack
- SaaS Builds on PaaS That Builds on IaaS That Builds on Virtualization
IaaS Cloud Hands-on Project for Government
- The Project Uses AWS as the IaaS Cloud Provider
-
Use CentOS/RHEL as the Operating System for the Rest of the Exercise
- Alternatively, Ubuntu Will Also Do, but RHEL/CentOS Are Preferred
- Obtain Individual AWS IAM Accounts from Your Cloud Administrator
-
Each Student Must Complete These Steps Independently
- The Ability to Create an Entire Infrastructure On-Demand Is the Best Demonstration of the Power of Cloud Computing for Government
- Use AWS Wizards -- AWS Online Consoles -- to Accomplish These Tasks Unless Otherwise Mentioned
-
Create a Public VPC in the us-east-1 Region
-
Two Subnets (Subnet-1 and Subnet-2) in Two Different Availability Zones
-
See
https://docs.aws.amazon.com/AmazonVPC/latest/UserGuide/VPC_Scenarios.html for Reference.
-
See
-
Create Three Separate Security Groups
-
SG-Internet
- Allows Incoming Traffic from the Internet on HTTPS 443 and HTTP 80
- No Other Incoming Connections Allowed
-
SG-Service
- Allows Incoming Traffic Only from Security Group SG-Internet on HTTPS 443 and HTTP 80
- Allows ICMP Only from SG-Internet
- No Other Incoming Connections Allowed
-
SG-SSH:
- Allows SSH:22 Incoming Connection Only from a Single IP That Matches the Public IP of the Student’s Lab Machine. If the Lab Machine Is Behind a Proxy, Then the Public IP of the Proxy.
-
SG-Internet
-
Two Subnets (Subnet-1 and Subnet-2) in Two Different Availability Zones
- Deploy an Instance of an AMI Pertaining to Your Chosen OS -- Preferably Latest RHEL/CentOS Versions Available in AMIs -- and Host the Instance on Subnet-1. Attach the Instance to SG-Service and SG-SSH Groups.
- Access the Instance Using SSH from Your Lab Machine
- Install NGINX Server on This Instance
- Put Static Content of Your Choice -- HTML Pages, Images -- to Be Served by NGINX (on Port 80 Over HTTP) and Define URLs for Them
- Test the URL from That Machine Itself
- Create an AMI Image from This Running Instance
- Deploy That New AMI and Host the Instance on Subnet-2. Attach the Instance to SG-Service and SG-SSH Groups
- Run the NGINX Server and Validate That the Access URL for the Static Content as Created in Step (i) Works
-
Create a New “Classic” Elastic Load Balancer and Attach It to SG-Internet
- Note the Difference from Application Load Balancer and Network Load Balancer
- Create Routing Rule Forwarding All HTTP 80 and HTTPS 443 Traffic to an Instance Group Comprising the Two Instances Created Above
- Using Any Certificate Management Tool -- Java Keytool, etc. -- Create a Key-Pair and Self-Signed Certificate and Import the Certificate to AWS Certificate Manager (ACM)
Cloud Monitoring: Introduction and Hands-on Project for Government
- AWS CloudWatch Metrics
-
Go to the AWS CloudWatch Dashboard for the Instances
-
Retrieve the Relevant Metrics and Explain Their Variability with Time
-
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/viewing_metrics_with_cloudwatch.html
-
-
Retrieve the Relevant Metrics and Explain Their Variability with Time
-
Go to the AWS CloudWatch Dashboard for the ELB
- Observe the ELB Metrics and Explain Their Variability with Time
-
https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-cloudwatch-metrics.html
Advanced Concepts for Further Learning for Government
- Hybrid Cloud -- On-Premise and Public Cloud for Government
-
Migration: On-Premise to Public Cloud for Government
- Application Code Migration
- Database Migration
-
DevOps for Government
- Infrastructure as a Code for Government
- AWS CloudFormation Template for Government
-
Auto-Scaling for Government
- AWS CloudWatch Metrics to Determine Health for Government
Requirements
No specific prerequisites are required to participate in this course for government.
21 Hours
Testimonials (1)
The trainer explains you very well.
