2.6. Review the Deployment in AWS Console

Now, you will check the objects that were created by Terraform. The deployment includes the following:

  • VPC and Subnets

  • Route Tables

  • Transit Gateway

  • Network Interfaces

  • Elastic IP Addresses

  • SSH Keypair

  • EC2 Instances

Return to your web browser and ensure that you are logged into the AWS Console.

2.6.1. VPC Dashboard

Type vpc in the AWS Console search box at the top of the page and select VPC from the search results.

../../_images/aws-vpc-1.png

The VPC Dashboard will show a summary of your resources.

../../_images/aws-vpc-1a.png

2.6.2. VPC and Subnets

Click on Your VPCs from the left panel menu.

../../_images/aws-vpc-2.png

Two (2) VPCs were created.

../../_images/aws-vpc-3.png

Click on the sslo-sslo-securitystack VPC ID to view the configuration.

../../_images/aws-vpc-4.png

You may ignore the "Failed to load rule groups" error.

Click on Your VPCs to return to the VPCs list and then click on the sslo-sslo-appstack VPC ID.

../../_images/aws-vpc-5.png

You may ignore the "Failed to load rule groups" error.

Click on Subnets from the left panel menu and confirm that following resources were created:

../../_images/aws-vpc-subnets.png

2.6.3. Route Tables

Click on Route Tables from the left panel menu and confirm that the following resources were created:

../../_images/aws-vpc-rt.png

2.6.4. Internet Gateway

Click on Internet Gateways from the left panel menu and confirm that the following resource was created:

../../_images/aws-vpc-igw.png

2.6.5. Security Groups

Scroll down in the left panel menu to the SECURITY section and click on Security Groups.

Confirm that the following resources were created:

../../_images/aws-vpc-sg.png

2.6.6. Transit Gateway

Scroll down in the left panel menu to find and click on Transit Gateways.

Confirm that the following resources were created:

../../_images/aws-vpc-tgw.png

2.6.7. EC2 Dashboard

Type ec2 in the AWS Console search box at the top of the page and select EC2 from the search results.

../../_images/aws-ec2-1.png

The EC2 Dashboard will show a summary of your resources.

../../_images/aws-ec2-2.png

2.6.8. Network Interfaces

Scroll down in the left panel menu to find and click on Network Intefaces.

Confirm that the following resources were created:

../../_images/aws-ec2-net.png

The BIG-IP (SSL Orchestrator) uses 7 NICs (management, external, internal, dmz1, dmz2, dmz3, dmz4).

The first inspection device uses 3 NICs (management, dmz1, dmz2).

The second inspection device uses 3 NICs (management, dmz3, dmz4).

The webapp server uses 1 NIC (application).

2.6.9. Elastic IP Addresses

Click on Elastic IPs from the left panel menu and confirm that the following resources were created:

../../_images/aws-ec2-eip.png

2.6.10. SSH Key

Click on Key Pairs from the left panel menu and confirm that the following resource was created:

../../_images/aws-ec2-keypair.png

2.6.11. EC2 Instances

Click on Instances from the left panel menu and confirm that the following resources were created:

../../_images/aws-ec2-instance-1.png

Attention

The sslo-vm_bigip_sslo instance might still be in Initializing state (look at the Status check column). Eventually, this will transition to 2/2 checks passed.

../../_images/aws-ec2-instance-2.png

Do not proceed until the Status check column is green for all instances.