Getting Started#
1. Methods Of Access#
Resources that are located in the Pilot section aren’t accessible via the public internet. To access them, connection is required with either Amazon Workspaces, AWS CientVPN or Bastion Host, so one of the three will suffice. If a user has access to WorkSpace then this will be the way to connect to the DSL section. When there is no access to WorkSpaces, the use of the Bastion Host is most common. In the following sections there will be an explanation on how to connect to these services.
1.1. WorkSpaces#
Amazon Workspaces is used to connect via your local client desktop to your personal workstation in the cloud. When utilizing the WorkSpace, all private resources in a Pilot Section can be accessed via their private IP addresses form within your WorkSpace. How to connect via Workspaces:
A. Install the WorkSpaces client (https://clients.amazonworkspaces.com/).
B. When accessing WorkSpaces for the first time, a registration code is asked. This will be sent to you together with your credentials.
C. Log in with your BDTI account credentials
A more thorough explanation (with screenshots) is given in: https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_virtual_desktop/
1.2 Bastion Host#
Each DSL Section provides a Bastion Host that’s used to connect to the resources. The connection is made via SSL tunneling which is available on port 22. The user accounts of the Bastion Host are synced with the Active Directory so your BDTI accounts can be used to access the Bastion Host. How to connect via Bastion Host:
A. Download and install PuTTy (https://www.putty.org/).
B. In the 'Session' tab, enter as Host Name: IP Adress of your Pilot Section's Bastion Host.
C. Go to tab "Connection-SSH-Tunnels".
D. Enter as Destination, private_host_ip_adress:port
- private_host_ip_adress: this is the IP Adress or DNS of the web interface that you want to access
- port: : This is the port where the web interface is running on. For regular web applications that use HTTPS, use port 443. If a specific port is mentioned in the documentation of the resource, use that port. For example, Apache Hue uses port 8888
E. Enter as source port: local_port, an available free port on your local system (e.g. 10000)
F. Click on Add
A more thorough explanation (with screenshots) is given in: https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_bastion_host/.
1.3 AWS ClientVPN#
When the private network of your Pilot Section allows access via OpenVPN connections, the AWS ClientVPN can be used to make a connection. This allows you to directly access your resources in the DSL from your local desktop. How to connect with AWS ClientVPN:
A. First off, the AWS Client VPN is freely available via the following link: https://aws.amazon.com/vpn/client-vpn-download/
B. Create a profile in AWS Client VPN by using “File > Manage Profiles”. Enter a display name and add the VPN Configuration File. This configuration file will be distributed to users of the DSL after deployment.
C. Once the profile has been added, click on “Connect” and enter your BDTI credentials. If your account is username@bdti.cef.eu, enter username with your password
A more thorough explanation (with screenshots) is given in: https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_client_vpn/.
2. Amazon Web Services#
| Category | Building Block | How To Connect | Source | Detailed Explanation Link |
|---|---|---|---|---|
| Analytic Workbenches | Data Science Virtual Machine | Connect with WorkSpaces, Bastion or VPN via Private IP Address to the resource (see "Methods of Access") | Local Computer or WorkSpaces | https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_data_science_virtual_machine/ |
| Big Data Analytics Solutions | Spark/Hive Cluster | Connect with WorkSpaces, Bastion or VPN via Private IP Address to the resource (see "Methods of Access") | Local Computer or WorkSpaces | https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_spark_hive_cluster/ |
| Database Solutions | Relational Databases | Connect with WorkSpaces, Bastion or VPN via Private IP Address to the resource (see "Methods of Access") | Local Computer or WorkSpaces | https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_relational_databases/ |
| Database Solutions | Document Databases | Connect with WorkSpaces, Bastion or VPN via Private IP Address to the resource (see "Methods of Access") | Local Computer or WorkSpaces | https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_document_databases/ |
| Data Lake Solutions | Object Storage | Initialize desktop with AWS permissions or use a deployed Pilot resource with attached permissions (in both scenario's use AWS CLI or AWS SDK) | Local Computer or WorkSpaces | https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_object_storage/ |
| Graph Database | Virtuoso | Connect with WorkSpaces, Bastion or VPN via Private IP Address to the resource (see "Methods of Access") | Local Computer or WorkSpaces | http://docs.openlinksw.com/virtuoso/ |
| AI Solutions | Machine Learning Platform (h20.ai) | Connect with WorkSpaces, Bastion or VPN via Private IP Address to the resource (see "Methods of Access") | Local Computer or WorkSpaces | https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_machine_learning_platform/ |
| Search Analytics Solutions | Elasticsearch & Kibana | Connect with WorkSpaces, Bastion or VPN via Private IP Address to the resource (see "Methods of Access") | Local Computer or WorkSpaces | https://ec-europa.github.io/bdti-infrastructure/user-docs/ud_elastic_search/ |
| Test Beds | Interoperability Test Bed | Connect via EU Login | Local Computer or WorkSpaces | https://www.itb.ec.europa.eu/docs/guides/latest/overview/index.html |