# Amazon EC2 - Elastic Compute Cloud 

During todays workshop we will focus on practical usage of EC2. There are three main methods of accessing Amazon EC2:
- AWS Management Console
- AWS CLI
- Boto3

##    AWS Management Console
AWS Management Console lets you access and manage AWS through a simple and intuitive web-based user interface.

Tasks to complete in this subsection:
- Explain in details EC2 instance creation process


We will use the [instruction](https://docs.google.com/document/d/1xlA7w8_xX4aviIxzjkNf-dOul0fQIUZnZ33zkUaVlQY/edit#heading=h.yfrlhfb0nu86), that was provided for you before first meet-up and then describe all steps in details.

#### 1. Go to the [EC2 console](https://eu-west-1.console.aws.amazon.com/ec2/v2/home?region=eu-west-1#Home:)

#### 2. Open the region menu (1) and select US East (N. Virginia) (2)

<img src="img/20.png" width="900">

#### [Digression] Why choosing proper region is so important?

One of the reason is pricing, which may be completely different for various regions. 

Example:

    Instance: c5.large, 20GB gp2 EBS storage each, 5.1 TB data processed for one month of operation
    
    Monthly prices [in $USD]

        N.Virginia, Ohio, Oregon 374.8
        Mumbai 377.35
        Stockholm 395.96
        Canada 410.48
        ...
        Ireland 417.56
        ...
        London, Paris 439.21
        ...
        Sao Paulo 571.18

#### 3. Go to security group

<img src="img/21.png" width="600">

#### 4. On that screen:

(1) click Create Security Group button

(2) enter a name and a description of the group

(3) Add a rule with type All traffic and source My IP (4) 

<img src="img/22.png" width="800">

#### [Digression] Why do we need security groups?

1. They control inbound and outbound traffic.
2. You can assign an security group (which is a set of instructions) for the given instance when you lounch an instance as well as during operation.
3. The work on a level of instance, not subnet -> therefore every instance you create may have different setting.
4. You may ban the protocols and IPs you do not want to have an access to your instance.


#### 5. Go to 
(1) the Instances screen
(2) click Launch instance button

<img src="img/23.png" width="900">

#### 6. AMI
(1) select Community AMIs, put “pearson” in the search box. Remember to choose proper region

(2) click the Select button 

<img src="img/24.png" width="900">

#### [Digression] What is AMI?
Amazon Machine Image provides information required to launch an instance. 

You may launch multiple instances from one AMI (may be useful for parallel computing)

Launch permissions:
- public (launch permission to all AWS accounts)
- explicit (launch permission to specific AWS account)
- implicit (the owner has implicit permissions for an AMI)

Storage for the Root Device:
- Amazon EBS - Backed AMI - we will use that 
- Amazon Instance Store-Backed AMI (no stop stage; only running or terminate). Storage connected with instance

#### 7. Instance type
(1) Select t3.medium

#### [Digression] Why did we change the instance type?

    t3.medium price $0.0456/h
    
    p2.xlarge price $0.972/h

#### 8. Configure Instance Details
(1)  set Auto-assign Public IP to Enable, and click the Next button

<img src="img/25.png" width="900">



#### 9. Add storage
(1) Size = 100 GiB

#### 10. Add tags
(1) leave these step (Next)

#### [Digression] Why use tags?
Tags may be use for security. For example you may set tags while creating an instance, and then create subaccounts with default permissions/ban to use given tags.


#### 11. Select an existing security group

(1) select a group you created earlier 

(2) click Review and Launch

(3) in the next step click launch

#### 12. Key-pair
You should have an existing secuiruty key-pair. If no, please follow 

(1) select Create a new key pair

(2) put the name of your key

(3) click download Key Pair 

Click Launch Instances

##    AWS CLI 
The AWS Command Line Interface (CLI) is a unified tool to manage AWS services. Enable controlling multiple AWS services from the command line and automate them through scripts.

Tasks to complete in this subsection
- prerequisities
    - AWS CLI installation
    - get the access key
    - configure AWS profile
- getting familiar with EC2 commands
    - create instance
    - list your EC2 instances
    - stop instance
    - terminate instance

#### Install AWS CLI 
- Windows 
    Download and run the 64-bit or 32-bit Windows installer (website)
    
[Here you will find files if you use windows](https://aws.amazon.com/cli/)

- Mac and linux 

    `[sudo] pip3 install awscli`

#### Generate access key and secret access key

- [Instruction](https://help.bittitan.com/hc/en-us/articles/115008255268-How-do-I-find-my-AWS-Access-Key-and-Secret-Access-Key-)


#### Create AWS profile on your local machine
- Type in terminal:

    `aws --profile <profile_name> configure`
    
    for example
    
    `aws --profile wimlds configure`


- You have to provide your access key, secret acces key (generated in the previous step) and region

<img src="img/06.png" width="400">



### Creating an instance

While creating an EC2 instance using AWS CLI you may provide bunch of different parameters. 
They are available in the documentation 
[AWS CLI documentation](https://docs.aws.amazon.com/cli/latest/reference/ec2/run-instances.html). 

Here we will shortly describe the most important:

- Choose your AWS profile
    - --image-id : unique number of AMI you would like to run your instance from (we may choose Pearson public AMI used prevously ami-027a37554bbb7d7b1)
    - --count : number of instances to create. Please be careful!
    - --insance-type : provide name of instance type for example t3.medium [Available instance types](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-types.html)
    - --key-name : name of your pem file for example wimlds-tomek
    - --security-group-ids: unique number of your security group for example: sg-0527c2cf9c742ee17. Please provide your number

For example:

`aws --profile wimlds ec2 run-instances --image-id ami-027a37554bbb7d7b1 --count 1 --instance-type t3.medium --key-name wimlds-tomek --security-group-ids sg-0527c2cf9c742ee17`

### Listing your EC2 instances


In [None]:
! aws --profile wimlds ec2 describe-instances

### Stopping your EC2 instances

In [None]:
! aws --profile wimlds ec2 stop-instances --instance-ids i-0920c96ebfe1e20fa

### Terminating your EC2 instances

In [None]:
! aws --profile wimlds ec2 terminate-instances --instance-ids i-0920c96ebfe1e20fa

## Exercise (7 minutes)

1. Create instance using AWS CLI
2. Find your instance in AWS management console
3. Stop the instance using AWS CLI
4. Check your instance state in AWS management console
5. Terminate the instance using AWS CLI
6. Check your instance state in AWS management console

## Python boto3
Boto is the Amazon Web Services (AWS) SDK for Python, which allows Python developers to write software that makes use of Amazon services like S3 and EC2. Boto provides an easy to use, object-oriented API as well as low-level direct service access.

Tasks to complete in this subsection
- prerequisities
    - boto3 installation
    - boto3 documentation
- getting familiar with boto3
    - create EC2 instance
    - stop instance
    - terminate instance

### Prerquisities

#### Install boto3
- Go to terminal and type

    `pip install boto3`

    if does not work
    
    `pip3 install boto3`

    or 

    `sudo pip3 install boto3`

- [Boto 3 Documentation](https://boto3.amazonaws.com/v1/documentation/api/latest/index.html)


### Working with boto3

You have to create an object of a class you want to work with. Two main classes are:
- client (low-level)
- resource (higher-level)

### Examples

`Create EC2 instance`

In [None]:
import boto3
session = boto3.session.Session(profile_name='')
ec2 = session.resource('', region_name='')
imageid = 
instance_type = 
key_name = 
security_group_id = 

instance = ec2.create_instances(
    BlockDeviceMappings=
    [{
        "DeviceName": "/dev/sda1",
        "Ebs": {
            "VolumeSize": 100,
            "VolumeType": "gp2",
            "DeleteOnTermination": True
        }
    },
    ],
    ImageId=imageid,
    InstanceType=instance_type,
    KeyName=key_name,
    MaxCount=1,
    MinCount=1,
    Placement=
    {
        'AvailabilityZone': "us-east-1b",
        'GroupName': "",
        'Tenancy': "default",
    },

    SecurityGroupIds=[
        security_group_id,
    ],

)

`Show metadata of your instance`

In [None]:
instance

`Stop instance`

Put your parameters into empty spaces

In [None]:
session = boto3.session.Session(profile_name=)
client = session.client('ec2', region_name='us-east-1')
response = client.stop_instances(InstanceIds=[''])
response

`Terminate-instance`

Put your parameters into empty spaces

In [None]:
session = boto3.session.Session(profile_name=)
client = session.client('ec2', region_name='us-east-1')
response = client.terminate_instances(InstanceIds=[''])
response

## Exercise (5 minutes)

1. Create instance using boto3.
2. Find your instance in AWS management console.
3. Stop the instance using boto3.
4. Check your instance state in AWS management console.
5. Terminate the instance using boto3.
6. Check your instance state in AWS management console.