## EC2 (Elastic Compute Cloud)

EC2 is the computing muscle behind much of AWS. EC2 servers, are racks you can spin up on demand at any time. They vary in size from the smallest Nano instance (512 mb RAM, 1 core CPU) up to the largest x1 instance (3904 gb RAM, 128 cores). Once you select your instance size, you can select from a huge number of official AMI (Amazon Machine Images). There's awesome variety in available AMIs, which makes it easy to spin up the machine image of your choice.

So, whether you want a huge machine running linux, a small machine running windows, a medium machine with Python already installed, or something else, AMIs make it really easy to get a properly imaged box up and running in no time.

In this lab, we'll spin up a small ec2 machine, log into it, and then shut it down.

In [1]:
#import boto3

import boto3

In [2]:
#initiate the ec2 client class

client = boto3.client('ec2') 

In order to access our machine, we'll need to create what's called a key for it. This key protects your instance from hackers geting into it. Don't lose this!

When you use Boto3 to create a keypair, one key from the pair is saved in your AWS account, and the other is saved locally.

In [3]:
#create a key pair

response = client.create_key_pair(KeyName='my-ec2-key')

In [4]:
#show the response from creating the key

response

{'KeyFingerprint': 'a1:c2:fe:29:26:5b:63:9b:44:b6:d6:b6:0c:84:af:72:56:33:b8:49',
 'KeyMaterial': '-----BEGIN RSA PRIVATE KEY-----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\nCGH7glfxea

In [5]:
#save the "KeyMaterial" from the response dictionary as a string

KeyMaterial = response['KeyMaterial']

In [6]:
#create a local file called 'my-aws-key.pem' and write the "KeyMaterial" to it

with open('my-ec2-key.pem','w') as key:
    key.write(KeyMaterial)

Ok - now you have a key saved. I'll save you some headache, by pointing out, thst AWS is very touchy about the permissions on their key files. An EC2 machine won't accept a key, unless its permisisons are restricted to be read only, only by the current user. Read the first answer at the StackOverflow discussion below to see how to lock the permissions down for your key.

This is a VERY common problem. If your key is getting rejected by an ec2, this should be the first thing you check.

[Change Key Permissions](https://stackoverflow.com/questions/8193768/trying-to-ssh-into-an-amazon-ec2-instance-permission-error)

In [7]:
#run the magic command from the link above

!chmod 400 my-ec2-key.pem

Now that we have a valid key - let's get an instance spun up! If you log into the AWS console and select 'ec2' from the 'Services' dropdown, you'll see a button that says 'Launch instance'. This will take you to a page where you can select your AMI. I've pasted a picture below, for ease. The first AMI that pops up is Amazon's most popular AMI. It's a super simple Linux image, so we'll use it for starters.



![image.png](attachment:image.png)

In [8]:
#initiate the ec2 resource class

resource = boto3.resource('ec2') 

In [9]:
#launch a single instance using the first ami id (make sure you use 'InstanceType=t2.micro' as that size is free)

instance = resource.create_instances(
     ImageId='ami-062f7200baf2fa504',
     MinCount=1,
     MaxCount=1,
     InstanceType='t2.micro',
     KeyName='my-ec2-key'
 )

In [10]:
#retrieve your instance status to confirm your machine is running

status = client.describe_instance_status()
status

{'InstanceStatuses': [{'AvailabilityZone': 'us-east-1a',
   'InstanceId': 'i-0b4411c31f55cce33',
   'InstanceState': {'Code': 16, 'Name': 'running'},
   'InstanceStatus': {'Details': [{'Name': 'reachability',
      'Status': 'passed'}],
    'Status': 'ok'},
   'SystemStatus': {'Details': [{'Name': 'reachability', 'Status': 'passed'}],
    'Status': 'ok'}}],
 'ResponseMetadata': {'RequestId': '07b14ca6-b0cb-4876-b493-6a4cc9194e8e',
  'HTTPStatusCode': 200,
  'HTTPHeaders': {'content-type': 'text/xml;charset=UTF-8',
   'content-length': '1139',
   'date': 'Sat, 25 Jan 2020 21:17:56 GMT',
   'server': 'AmazonEC2'},
  'RetryAttempts': 0}}

Now open a terminal and connect to your instance using ssh. You'll have to be sure to add you current ip address to the security group your instance is behind.

ssh -i "my-ec2-key.pem" your_public_dns_here
