AWS CLI: A Powerful Tool for Interacting with AWS Services
The AWS Command Line Interface (AWS CLI) is a robust tool that provides a command-line interface to interact with Amazon Web Services. It allows you to manage and automate various AWS resources, from creating EC2 instances to configuring S3 buckets.
Installation and Configuration
Before you can start using the AWS CLI, you'll need to install it on your system. You can download the installer for your operating system from the official AWS website.
Once installed, you'll need to configure your AWS credentials. This involves providing your AWS Access Key ID and Secret Access Key. You can do this by running the following command:
aws configure
You'll be prompted to enter your credentials and the default region and output format.
Basic Commands and Usage
The AWS CLI uses a simple syntax based on commands, options, and arguments. For example, to list all running EC2 instances, you would use:
aws ec2 describe-instances --filters "Name=InstanceState.Name,Values=running"
This command describes instances, filtering for those in the "running" state.
Common Use Cases
The AWS CLI is used for a wide range of tasks, including:
Additional Features and Considerations
More Code Examples
Creating an S3 Bucket with Public Read Access
aws s3 mb s3://my-public-bucket --grant-read 'public-read'
This command creates an S3 bucket named my-public-bucket and grants public read access to all objects within it.
Uploading a File to S3
领英推荐
aws s3 cp my-file.txt s3://my-bucket/
This command uploads the file my-file.txt to the root directory of the my-bucket bucket.
Listing EC2 Instances in a Specific Availability Zone
aws ec2 describe-instances --filters "Name=AvailabilityZone,Values=us-west-2a"
This command lists EC2 instances running in the us-west-2a availability zone.
Terminating an EC2 Instance
aws ec2 terminate-instances --instance-ids i-12345678
This command terminates the EC2 instance with the ID i-12345678.
Creating a Security Group
aws ec2 create-security-group --description "My security group" --group-name "my-security-group"
This command creates a security group named my-security-group with the description "My security group".
Adding an Ingress Rule to a Security Group
aws ec2 authorize-security-group-ingress --group-id sg-12345678 --protocol tcp --port-range 22:22 --cidr 0.0.0.0/0
This command adds an ingress rule to the security group with the ID sg-12345678, allowing inbound SSH traffic from any IP address.
Creating a CloudWatch Alarm
aws cloudwatch create-alarm --alarm-name "MyAlarm" --comparison-operator GreaterThanThreshold --threshold 80 --metric-name CPUUtilization --namespace AWS/EC2 --statistic Average --period 60 --evaluation-periods 3 --alarm-actions arn:aws:sns:us-west-2:123456789012:MyTopic
This command creates a CloudWatch alarm named "MyAlarm" that triggers when the average CPU utilization of an EC2 instance exceeds 80%. When the alarm triggers, it sends a notification to the specified SNS topic.
Using a Waiter to Wait for an EC2 Instance to Be Running
aws ec2 wait instance-running --instance-ids i-12345678
This command waits for the EC2 instance with the ID i-12345678 to reach the running state before continuing.
Creating a Custom Command
aws configure set cli.custom-command.create-s3-bucket "s3 mb s3://my-bucket --grant-read public-read"
This command creates a custom command named create-s3-bucket that creates an S3 bucket with public read access. You can then use this command like this:
aws custom create-s3-bucket