Create 3-Tier Architecture using AWS

Introduction:

Part 0:
S3 Bucket Creation
IAM EC2 Instance Role Creation
Download Code from Github Repository

Download Code from Github
git clone https://github.com/aws-samples/aws-three-tier-web-architecture-workshop.git
S3 Bucket Creation
S3->create S3Bucket

IAM EC2 Instance Role Creation
Navigate to the IAM dashboard in the AWS console and create an EC2 role.

Select EC2 as the trusted entity.

When adding permissions, include the following AWS managed policies. You can search for them and select them. These policies will allow our instances to download our code from S3 and use Systems Manager Session Manager to securely connect to our instances without SSH keys through the AWS console.
AmazonSSMManagedInstanceCore
AmazonS3ReadOnlyAccess

Give your role a name, and then click Create Role.

part 1: Networking and Security

Learning Objectives:
Create an isolated network with the following components:
VPC
Subnets
Route Tables
Internet Gateway
NAT gateway
Security Groups

Create VPC and Subnets

Subnet Creation

Create 6 subnets
Public-Subnet-AZ-1, Private-Subnetdb-AZ-1, Private-subnet-AZ-1.
Public-Subnet-AZ-2, Private-Subnetdb-AZ-2, Private-subnet-AZ-2.

Your final subnet setup should be similar to this. Verify that you have 3 subnets across 2 different availability zones.

Internet Connectivity

Internet Gateway
In order to give the public subnets in our VPC internet access we will have to create and attach an Internet Gateway. On the left hand side of the VPC dashboard, select Internet Gateway.