Connecting AWS VPC Resources Using CipherGraph Cloud VPN – Part 2

In my last blog post, we discussed the advantages of using the CipherGraph Cloud VPN solution to connect the Amazon VPC environment from office LANs or homes or any other locations. In this post, we will discuss how to deploy the CipherGraph solution to connect your VPC resources.

Here are the steps to deploy the CipherGraph Cloud Access Gateway (CAG).

CipherGraph Cloud Access Gateway(CAG) Server Setup

1. Create a VPC environment with at least 1 Public subnet and Multiple Private Subnets as shown in the below diagram.

VPC Diagram showing CipherGraph Cloud VPN Gateway VM Public Subnet

2. Select the CipherGraph Cloud Access Gateway AMI from Amazon Marketplace and create an instance within your public subnet of your VPC network

3. Please create at least with an m1.small instance, and follow the launch configuration steps

4. CipherGraph will create a new Security Group and a couple of rules also as part of the launch configuration. Please keep those rules as it is for testing, for production VPC you can change the rules as per your security compliance.

5. Associate an Elastic IP Address to the Instance

6. After the Instance Launch is complete, you can now open the CAG management console. You can access it by using the https://<Assigned Elastic IP Address>:9080/. For example, if the Elastic IP Address you assigned was 54.25.190.25 then the management console is at https://54.25.190.25:9080
username : cgnadmin
Password : <Your CAG Instance ID>. Example: i-12ab3de

7. After successful login, you can see the CAG management console home page.

8. Change the admin user default password by clicking on “Admin Console” on the left pane.

9. Please go through each menu item in the left pane to make yourself comfortable with the terminology

10. By default, CipherGraph will create the test user called “testuser” and publicly allowed access rule for testing. We will cover the user management and access rules in detail in the next blog post. For now, we will use “testuser” for our testing.

11. CAG cannot apply changes as you make changes to the configurations. In the left navigation menu “Apply Changes” menu item will be visible if you have any changes that still not yet applied. Once you finish your changes, click on “Apply Changes” navigation item and then you may either click on “Apply Changes” to take effect of your changes by CAG or “Discard Changes” to ignore the changes you made

Please add rules for Private Subnets machines security groups to allow the CAG server to communicate with those machines. These are the rules which will be allowed to connect your AWS resources from your Laptop, or Home PC or Tablet

CipherGraph Cloud Access Gateway(CAG) Client Setup (Windows)

We will set up the CAG client application in your users’ laptops, or home PCs to establish a VPN connectivity with the VPC environment using CAG server. Here we will discuss how to set up the CAG client in Windows OS.

  1. Download the Client Application Installer depending on the OS type which you use and Client Configuration file (ciphergraph.cgn) from the Downloads menu. Also, distribute this installer & config file to the users who need access to the VPC environment. Here we will download the Windows Installer
CAG Client Download

Install the Client Application Installer and open the “Configure CipherGraph Cloud Access Gateway” utility from your client machine


Import the downloaded configuration file to the above open utility and restart your client machine to take the effect of the change.
CAG Config File Upload

Run the “Connect CipherGraph” application from the start menu or Desktop and then click connect
CAG Network Connect
Once connected a new browser window will be opened automatically, please enter your login/password given by your CipherGraph Admin. Here we have used the “testuser” account.
CAG Network Connect
Congratulations! You are now connected to your VPC via CipherGraph CAG. You can start using your VPC resources via SSH, RDP or HTTP, etc.

Avatar

Written by

Praveen Kumar Muppala

I have strong experience on Multiple Unix/Linux flavours, LAMP Stack, Monitoring Systems, Database, NoSQL. I love to explore the new concepts/services in Cloud Computing World. I have written 4 certifications in different flavours of Linux/Unix.


Related Posts

Vijayakumar Athithan
Vijayakumar Athithan
— March 27, 2020

What is Cognito in AWS?

Web applications usually allow a valid username and password combination for successful sign in to the application. Modern authentication flows incorporate more approaches to ensure user authentication. When using AWS, this is no exception, thanks to the abilities and features offered b...

Read more
  • AWS
  • AWS Cognito
  • Solutions Architect
Connie Benton
Connie Benton
— March 25, 2020

How To Build a Career with AWS Certifications

From Iaas and PaaS solutions to digital marketing, cloud computing reshapes the world of technology. As the influence of this technology grows, so does investment. Tens of billions of dollars are being spent on cloud computing-related services each year. This influx is continuing to inc...

Read more
  • AWS
  • Certifications
Avatar
Andrew Larkin
— March 20, 2020

The 12 AWS Certifications: Which is Right for You and Your Team?

As companies increasingly shift workloads to the public cloud, cloud computing has moved from a nice-to-have to a core competency in the enterprise. This shift requires a new set of skills to design, deploy, and manage applications in cloud computing. As the market leader and most ma...

Read more
  • AWS
  • AWS Certifications
Alisha Reyes
Alisha Reyes
— March 17, 2020

Cloud Academy’s Blog Digest: How Do AWS Certifications Increase Your Employability, How to Become a Microsoft Certified Azure Data Engineer, and more

With everything going on right now, it's likely that the only thing you've been reading lately is related to the coronavirus pandemic. It's important to stay informed during these times, but it's also good to jump into something that can take your mind off of the current situation for j...

Read more
  • AWS
  • Azure
  • blog digest
  • Certifications
  • Cloud Academy
  • programming
  • Security
Avatar
Cloud Academy Team
— March 13, 2020

Which Certifications Should I Get?

As we mentioned in an earlier post, the old AWS slogan, “Cloud is the new normal” is indeed a reality today. Really, cloud has been the new normal for a while now and getting credentials has become an increasingly effective way to quickly showcase your abilities to recruiters and compan...

Read more
  • AWS
  • Azure
  • Certifications
  • Cloud Computing
  • Google Cloud Platform
Alisha Reyes
Alisha Reyes
— March 7, 2020

New on Cloud Academy: Intro to GitOps; AWS Courses; Java, Python, Amazon Linux 2, Ubuntu, & Docker Playgrounds; and much more

New Lab Playgrounds This month, our Content Team released six new "playground labs." Our playground labs provide a safe and secure sandbox environment for you to explore your own ideas, follow along with Cloud Academy courses, or answer your own questions — all without having to instal...

Read more
  • AWS
  • Azure
  • gitops
  • Google Cloud Platform
  • lab playground
  • programming
Alisha Reyes
Alisha Reyes
— March 6, 2020

New on Cloud Academy: Intro to GitOps; AWS Courses; Java, Python, Amazon Linux 2, Ubuntu, & Docker Playgrounds; and much more

New Lab Playgrounds This month, our Content Team released six new "playground labs." Our playground labs provide a safe and secure sandbox environment for you to explore your own ideas, follow along with Cloud Academy courses, or answer your own questions — all without having to instal...

Read more
  • AWS
  • Azure
  • gitops
  • Google Cloud Platform
  • lab playground
  • programming
Patrick Navarro
Patrick Navarro
— March 4, 2020

AWS Certifications: How Do They Increase Your Employability and Progress Your Career?

AWS certifications are no walk in the park. They’re designed to validate in-depth, specialist knowledge and comprehensive experience, often requiring months of dedicated studying to earn even for those already working with the cloud platform. But the rewards that AWS professionals ca...

Read more
  • AWS
  • AWS certification
  • certification
Avatar
Chandan Patra
— February 21, 2020

Elasticsearch vs. CloudSearch: AWS Cloud Search Choices

Elasticsearch vs. CloudSearch: What's the main difference? Let's compare AWS-based cloud tools: Elasticsearch vs. CloudSearch. While both services use proven technologies, Elasticsearch is more popular, open source, and has a flexible API to use for customization; in comparison, CloudS...

Read more
  • AWS
  • Azure
  • cloudsearch
  • elasticsearch
Avatar
Andrew Larkin
— February 13, 2020

Cloud Academy Content Roadmap Updates

Welcome to our Q1 2020 roadmap. This is the content we plan to build over the next three months, between February 1 - and April 30, 2020. Let's look at some of our roadmap highlights. Atlassian Bamboo for CI/CD We had a lot of requests for practical guides on how to apply DevOps tool...

Read more
  • Artificial Intelligence
  • AWS
  • Azure
  • Docker
  • Google Cloud Platform
  • Kubernetes
  • Machine Learning
Alisha Reyes
Alisha Reyes
— February 7, 2020

New on Cloud Academy: Git Labs, CKA and CKAD Lab Challenges, AWS and Azure Learning Paths, AGILE, and Much More

We just kicked off our first Free Weekend of 2020. This means we've unlocked our Training Library for just 72 hours. Until Sunday at 11:59 pm (PST), you can get unlimited access to our industry-leading learning paths, courses, certification prep exams, and our most popular hands-on labs...

Read more
  • agile
  • AWS
  • Azure
  • Google Cloud Platform
  • Linux
  • OWASP
  • programming
  • red hat
  • scrum
Avatar
Stuart Scott
— February 6, 2020

How to Encrypt an EBS Volume

Keeping data and applications safe in the cloud is one of the most visible challenges facing cloud teams in 2020. Cloud storage services where data resides are frequently a target for hackers, not because the services are inherently weak but because they are often improperly configured....

Read more
  • AWS
  • EBS
  • Encryption