AWS Lightsail (Light Sail) Novice Unpacking: Lightweight Server Building Tutorial Best for Independent Stations
Friends who have just decided to stand on their own and go to sea, or who have just taken the cross-border SaaS commercial blueprint, have suffered a great hardship in choosing servers.
A lot of people want to save trouble and go directly to Tencent Yunguan to buy an international computer room at the original price. In the (compare AWS EC2 or Ariyun ECS), there are many hidden deductions for the dense VPC network configuration, security groups, and traffic-based fees. Before the website was launched, the whole person had already been folded and nearly collapsed.
In fact, the plan is to get a discount in the sea circle, but also to pick the basic infrastructure, the plan:
On resource sourcing; on server sourcing.
Today, we reject any official preaching and boring theoretical parameters, directly use the perspective of the actual combat of large factories, and use the "independent station artifact" recognized by Microsoft and Amazon Ecology "--
AWS Lightsail
, In 10 minutes, rise from the ground, weld to death a set of high-defense, high-speed, low-cost overseas independent station rear.
The first stage: industry insider, how to get Tencent cloud big customer discount?
Before we talk about the construction of specific servers, we first solve the most core real gold and silver problems:
How to get Tencent Cloud customer discount?
Many new bosses think that the discount must be the company's scale, Lin. In fact, this is the information difference in the cloud computing supply chain. In order to seize territory in the global market, cloud manufacturers will have a huge sales target and rebate budget ".
If you want to get a 70% discount, 50% discount or even lower reserve price for large customers, the most regular way is to go through the official agency ecology:
Master account number association. They are in the background to initiate a "connection invitation" to you ". After you click consent at your control desk, the ownership of your account number and the data inside are still 100% locked in your own hands.
Settlement discount: after the success of the association, you will be able to completely get away from the original price of the official network. At the time of renewal or new purchase, or through the agent's recharge, the amount.
The second stage: dimension reduction strike, AWS Lightsail (light sail) is the ultimate solution to stand alone and go to sea?
After getting the purchase discount thinking, if your independent station is facing Europe, America, Southeast Asia and other global overseas
Users, then the most suitable lightweight chariot for your novice on the road, absolutely not.
AWS Lightsail (Light Sail)
It goes without saying.
Many old birds often say, "When independent stations go to sea, eight out of ten die of EC2 traffic bills." In traditional cloud servers, bandwidth and traffic are charged separately by GB. Once your website encounters malicious traffic, or a high-definition commodity map explodes, a "sky-high traffic bill" of several thousand dollars at the end of the month can directly shut down your company.
The core logic of the AWS Lightsail is pure:
Package system (fixed monthly fee, super large free traffic package, simple network configuration)
.
It encapsulates the complex cloud native network and disk drive into an out-of-the-box "gift package". The minimum cost is only US $3.5/month, which not only gives you independent public network IP and SSD solid-state disk, but also gives you TB-level global top backbone network traffic every month. The most amazing thing is that it has a built-in one-click mirror image of the world's major open source e-commerce companies (such as WordPress WooCommerce and Magento). You don't need to know any Linux command line, click the mouse, a full version of the independent station has been deployed.
The third stage: actual combat exercise -10 minutes AWS Lightsail independent station out-of-the-box construction tutorial
Now, leave the cumbersome code with both hands and follow our standard process of large factories to officially set up your sea base in the cloud.
Step 1: Pick your global base camp (geographical selection)
Log into the AWS console and enter "Lightsail" in the search bar to enter the extremely clean and completely independent Lightsail console.
Click "Create instance" (create instance).
The key step in deciding life and death (Change Region and Availability Zone): If your buyers are mainly in North America, don't hesitate to choose Virginia (US East) or Oregon (US West). If you do cross-border Southeast Asia, choose Singapore (Singapore). Large factory steel printing specification: the closer the server is to your buyer, the more seconds the web page opens, the higher the conversion rate.
Step 2: Inject the soul, select the independent station mirror
Select in "Select a platform"
Linux/Unix
. Next in Select a blueprint, you'll see two genres:
System Stream (OS Only): Pure and clean Ubuntu or CentOS, suitable for teams with senior operations to toss about the environment.
Application Flow (App OS): Novice Independent Station has no brain to select WordPress or WordPress Multisite. This is by the world's leading open source packager Bitnam.
I deeply hardened security image, built-in optimized Apache web server and MySQL database.
Step 3: Select the computing power package and lift off with one click.
Swipe down to select your instance plan (Instance plan). For the fledgling independent station,
Choose from $5/month or $7/month packages that are more than enough
. It contains enough memory and 1TB to 2TB of free network traffic per month.
Name the server.
omega-shop-prod
, click on the bottom
“Create instance”
.
Only need to wait for about 1 to 2 minutes, the state of the instance will change from gray
Pending
Into a vibrant green
Running
. At this point, the system will assign you an exclusive
Overseas public IP address
.
The fourth stage: actual combat exercise ii-customs clearance lock, physical login to independent station backstage
Although the server ran, the WordPress at this time was safely locked by the Bitnami. We use the most elegant posture to get the administrator password.
1. The web version is secret-free and one-key penetration (SSH connection)
Lightsail most popular feature is that you don't need to install any complicated connection tools such as Putty or Xshell on your local computer.
In the upper right corner of your instance card, click the little orange command line icon.
The browser will pop up a very sci-fi black box, through Amazon's internal intranet, directly with administrative rights to penetrate the flesh into your Linux server.
2. Grab the "Administrator Clearance Code" from a distance"
In the black box terminal that pops up, type the following big factory standard code word for word (get the built-in initial password):
Bash
cat bitnami_application_password
A complex encrypted string of upper and lower case letters and numbers is instantly spit out on the screen. Use the mouse to copy it down, this is your website background key.
3. Landing on the beach and taking charge of the country
Open your computer's browser and enter https:// your server's public network IP/wp-admin in the address bar.
The page will instantly jump to the gorgeous WordPress official login wall.
Username: Enter the default administrator account user.
Password: Paste in the complex code you just copied in the black frame.
Click to log in, a modern e-commerce independent station with complete functions and extremely fast response speed will be perfectly and safely presented to you. You can freely install WooCommerce plug-ins, bind your Stripe credit card collection gateway, and put your explosive products on the shelves to start your global gold digging journey.
The fifth stage: the blood and tears of the old birds at sea avoid the iron law of the pit.
This set
The AWS Lightsail assembly line is extremely smooth to use and comes with the industrial pedigree of Seattle's big factory. But to survive the harsh baptism of global public network traffic, you must immediately weld the following two invisible pits in the console before closing the computer:
1. The deadly "dynamic IP play missing" tragedy
Many novices happily put their international domain names (such
www.my-shop.com
) resolved to the public network IP assigned to him by the light sail.
Disaster risks: Lightsail default allocation is "dynamic IP". If one day your server restarts due to an upgrade system, or if you force it to restart manually due to an unexpected failure, Amazon will automatically erase your public network IP and randomly change it to a new IP in the background. This means that the "old map" in the hands of global buyers is completely invalid, the website is instantly paralyzed in a large area, and the advertising fee is crazy.
Large factory standard death-free gold medal configuration: in the Lightsail details page, click the "Networking" (network) tab and click "Create a static IP" (create static IP) without hesitation. Tie it to your server. In this way, no matter how you toss, restart and reinstall the system in the future, this cloud physical IP will be as stable as Mount Tai and will never change.
2. Firewall "green light" safe suicide behavior
Many independent stations are in the follow-up development. In order to save trouble or cooperate with the debugging of some third-party tools, the network management will come to the Lightsail network security rules and create a new rule:
All protocols / All ports / Anywhere
(Allows access to any port from anywhere in the world).
Insider Exposure: Overseas hackers and automated scanning scripts drive high-power radars to scan the network segments of large factories on the public network every day. As long as you turn on the green light for 10 minutes, the underlying MySQL database port (3306) or system management port will be cracked by crazy brute force. Once it falls, not only will the website be hung with black advertisements, but it will even face the disaster of user credit card data leakage.
Hardcore reinforcement specification: not necessary, never add ports. The Lightsail only lets 80(HTTP), 443(HTTPS) and 22(SSH) by default, which is already the golden combination of security defense. Even if the docking is to be developed later, the specific IP of the collaboration server must be limited in the Source (source), and never leave the back to the entire Internet.
Summary
Using the large factory channel to find out the discount of Tencent cloud customers, and then matching the cloud native lightweight chassis Lightsail by AWS, the core industrial essence lies in 16 words:
Channel control book, mirror backing, static lock, port stuck.
You have completely bid farewell to the past, stitching up a third-party environment everywhere, and streaming for sky-high prices every day.
The original misery of being scared to measure bills and losing hair late at night for the Internet. All the most heavy security protection and network flow, fully hosted to the world's top cloud native brain. Sitting in front of the computer, putting one hundred percent of your mind on market acquisition and product polishing, watching the continuous influx of overseas orders from the backstage, gracefully welcome your big sailing era.
