# Running a Jupyter Notebook on an AWS EC2 Instance and Connecting with VS Code

This tutorial covers the steps to run a Jupyter Notebook on an AWS EC2 instance and connect to it using Visual Studio Code (VS Code).

## Prerequisites

1. **AWS EC2 Instance Setup:**
   - An Ubuntu EC2 instance running on AWS.
   - The necessary security group rules to allow SSH and Jupyter Notebook access (typically ports 22 for SSH and 8888 for Jupyter).

2. **Local Machine Setup:**
   - Visual Studio Code installed.
   - Python and Jupyter installed locally.
   - SSH client installed (e.g., OpenSSH).


## Steps to Follow

### 1. Set Up the EC2 Instance

1. **Connect to the EC2 instance:**
   ```sh
   ssh -i /path/to/your-key.pem ubuntu@your-ec2-public-dns
   Example- ssh -i 'C:/Users/nqg26/Downloads/ssh_VSC.pem' ubuntu@ec2-54-161-7-94.compute-1.amazonaws.com   ```

2. **Install Jupyter Notebook on the EC2 instance:**
   ```sh
   sudo apt update
   sudo apt install python3-pip
   pip3 install jupyter
   ```

3. **Start Jupyter Notebook:**
   ```sh
   jupyter notebook --no-browser --port=8888
   ```
   You'll see output similar to:
   ```
   http://localhost:8888/?token=your-token
   ```


### 2. Set Up an SSH Tunnel from Your Local Machine

1. **Open a new terminal on your local machine and set up an SSH tunnel:**
   ```sh
   ssh -i /path/to/your-key.pem -L 8888:localhost:8888 ubuntu@your-ec2-public-dns
   ```
   This command forwards traffic from your local port 8888 to the EC2 instance's port 8888.


### 3. Connect to Jupyter Notebook in VS Code

1. **Install the Jupyter Extension in VS Code:**
   - Open VS Code.
   - Go to the Extensions view by clicking the square icon in the sidebar or pressing `Ctrl+Shift+X`.
   - Search for "Jupyter" and install the extension.

2. **Access the Remote Jupyter Notebook:**
   - Open VS Code Command Palette by pressing `Ctrl+Shift+P`.
   - Type `Jupyter: Enter the URL of the local running Jupyter server`.
   - Enter the URL you got from the Jupyter Notebook running on the EC2 instance (e.g., `http://localhost:8888/?token=your-token`).

3. **Create and Run Notebooks:**
   - You can now create new notebooks or open existing ones from the Jupyter server running on your EC2 instance and work on them directly in VS Code.


### 4. Optional: Configure Jupyter Notebook to Run on Startup (if needed)

1. **Create a script to start Jupyter Notebook automatically:**
   ```sh
   nano start_jupyter.sh
   ```
   Add the following lines:
   ```sh
   #!/bin/bash
   jupyter notebook --no-browser --port=8888
   ```

2. **Make the script executable:**
   ```sh
   chmod +x start_jupyter.sh
   ```

3. **Set up a cron job to run this script on startup:**
   ```sh
   crontab -e
   ```
   Add the following line:
   ```sh
   @reboot /home/ubuntu/start_jupyter.sh
   ```


## Security Group Configuration

To configure the security groups for your AWS EC2 instance to allow access to Jupyter Notebook, you need to add rules to permit traffic on the necessary ports.

### Steps to Update Security Groups

1. **Navigate to the AWS Management Console:**
   - Log in to your AWS account.
   - Open the EC2 Dashboard.

2. **Select Your Instance:**
   - In the EC2 Dashboard, click on "Instances" in the left-hand menu.
   - Select the instance you are using for Jupyter Notebook.

3. **View Security Groups:**
   - In the instance description section at the bottom, find the "Security groups" field.
   - Click on the security group link to open the security group settings.

4. **Edit Inbound Rules:**
   - In the security group settings, click on the "Inbound rules" tab.
   - Click the "Edit inbound rules" button to modify the rules.

5. **Add Rules:**
   - Add a rule to allow SSH access:
     - Type: `SSH`
     - Protocol: `TCP`
     - Port Range: `22`
     - Source: `Your IP` (recommended) or `0.0.0.0/0` (allows access from any IP address, not recommended for security reasons)

   - Add a rule to allow Jupyter Notebook access:
     - Type: `Custom TCP`
     - Protocol: `TCP`
     - Port Range: `8888`
     - Source: `Your IP` (recommended) or `0.0.0.0/0` (allows access from any IP address, not recommended for security reasons)

     **Note:** Using `0.0.0.0/0` allows anyone on the internet to access your Jupyter Notebook, which poses a security risk. It's better to specify your own IP address or a specific range of IP addresses.

6. **Save Rules:**
   - After adding the necessary rules, click the "Save rules" button.


### Example of Updated Security Group Inbound Rules

- **Rule 1: SSH Access**
  - **Type:** SSH
  - **Protocol:** TCP
  - **Port Range:** 22
  - **Source:** Your IP (or `0.0.0.0/0` for wide access, not recommended)

- **Rule 2: Jupyter Notebook Access**
  - **Type:** Custom TCP
  - **Protocol:** TCP
  - **Port Range:** 8888
  - **Source:** Your IP (or `0.0.0.0/0` for wide access, not recommended)

### Additional Security Considerations

- **Limit Access to Specific IPs:** Instead of using `0.0.0.0/0`, you can limit access to specific IP addresses or a range of IP addresses. For example, you can use `203.0.113.0/24` to allow access only from that specific subnet.
  
- **Use a VPN or SSH Tunnel:** For additional security, you might consider setting up a VPN or using an SSH tunnel to access Jupyter Notebook without exposing port 8888 directly.

### Establishing an SSH Tunnel (if not using wide-open access)

If you choose not to open port 8888 to the world, you can set up an SSH tunnel to securely connect to Jupyter Notebook:

1. **SSH into your EC2 instance and start Jupyter Notebook:**
   ```sh
   ssh -i /path/to/your-key.pem ubuntu@your-ec2-public-dns
   jupyter notebook --no-browser --port=8888
   ```

2. **Set up the SSH tunnel from your local machine:**
   ```sh
   ssh -i /path/to/your-key.pem -L 8888:localhost:8888 ubuntu@your-ec2-public-dns
   ```
   
By following these steps, you ensure that your Jupyter Notebook is accessible while maintaining the necessary security.
