Name : wsi-bastion
Amazon Linux2023 선택
인스턴스 유형 : t3.small
VPC 선택 및 public-subnet-a 선택 후 EIP 활성화 및 보안그룹 선택
Admin 권한을 가진 Role 선택
종료 방지 활성화
UserData 입력
#!/bin/bash
yum install jq curl git -y --allowerasing
curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
unzip awscliv2.zip
sudo ./aws/install
aws --version
sudo yum install docker -y
sudo systemctl enable docker
sudo usermod -aG docker ec2-user
sudo usermod -aG docker root
sudo systemctl start docker
sudo chmod 666 /var/run/docker.sock
docker --version
sudo dnf update -y
sudo dnf install -y mariadb105
# mysql -h <ENDPOINT> -P 3306 -u admin -p
sed -i 's/#Port 22/Port 4272/' /etc/ssh/sshd_config
systemctl restart sshd
# aws lambda add-permission \
# --function-name wsi-bastion-sg \
# --statement-id "AddConfigPermission" \
# --action lambda:InvokeFunction \
# --principal config.amazonaws.com
Shell
복사
