You will often restrict access to an AWS VPC (network) from the outside world. The default and probably most common way to gain access to this secure network is via SSH. The purpose of this post is to teach you how to connect an application on your local computer to a resource inside your AWS network. We will accomplish this goal using an SSH tunnel from Linux (Ubuntu) or Mac.
- You have an AWS private network (VPC)
- You have a database inside your AWS private network whose name/IP = INT_DB_IP. Note that in AWS, this is an internal IP address/name.
- You have a local computer whose name/IP = EXT_MYCOMP_IP.
- You have a local application that needs to connect to your AWS private database.
- One server whose name/IP = EXT_SSH_IP allows an external machine to connect to the internal network. Note that in AWS, this is an exetnal IP address/name.
If you want to give your application the ability to connect to your private database, you can create an SSH tunnel between your computer (EXT_MYCOMP_IP) through the SSH server (EXT_SSH_IP) to your internal database (INT_DB_IP). Here is the unix command to execute from EXT_MYCOMP_IP:
ssh -i ~/.ssh/YourSecrete.pem -l ubuntu -L 35432:INT_DB_IP:5432 EXT_SSH_IP
- -i allows you to specify your certificate to EXT_SSH_IP
- -l allows you to specify the username to EXT_SSH_IP
- Pattern==> local_port:final_destination:remote_port
Once this connection is open, you will have a terminal prompt to EXT_SSH_IP. When you want to close the session/tunnel, simply type ‘exit’ in the terminal to close the session.
From your local computer’s application, use ‘localhost:35432’ to connect to your database. You can also use ‘127.0.0.1:35432’.
Same Solution for Remote Desktop (RDP)
The above concepts also apply to Remote Desktop. Here would be the SSH connection command:
ssh -i ~/.ssh/YourSecrete.pem -l ubuntu -L 33389:INT_RDP_IP:3389 EXT_SSH_IP
From your local computer’s application, use ‘localhost:33389’ to connect to your RDP server. You can also use ‘127.0.0.1:33389’.
Security for iDempiere Open Source ERP
My passion is helping people learn, configure, audit, deploy, and scale iDempiere in a secure manner. This post is an example. I hope this helps!!
What is the best way to Learn iDempiere and ADempiere?
I teach an on-line class that covers how to learn, configure and audit open source ERP. It uses iDempiere as the reference ERP. Here are the course frequently asked questions. I have learned much over the last fourteen years, and I have much to share. I look forward to seeing you there!!
Why consider Open Source ERP?
Open source ERP gives you every opportunity to prove or disprove its ability to support your company’s ERP needs on a timeline that satisfies your organizational needs. With open source ERP, you do not face the same financial constraints nor do you face the same conflicts of interest as with commercial ERP. Instead, you invest in the appropriate skills and knowledge for your people and processes. Best of all – if open source ERP cannot solve your company’s needs, you can safely justify spending the additional $2K to $5K per person per year for life of your commercial ERP to help drive your organization’s success.
Open Source ERP Round Rug Effect
Open Source ERP has what I call a “Round Rug Effect”. If you were to liken the ERP evaluation process to a 10′ x 10′ room, the story would go something like this:
- Oracle, SAP, and Microsoft are a 10′ x 10′ ERP rug in a ten by ten foot room. They cover the room nicely. You will be hard pressed to find a feature or a use case that they do not cover.
- Open Source ERP is like a 10′ round rug in a ten by ten foot room. It will cover the vast majority of the room; however, it will leave the corners bare. The questions are: “Do you live and operate in the corners?” or “Is open source ERP good enough?”. For most, the answers are “sometimes” and “yes”.
If you are in the ERP evaluation mode, you should ask yourself “Should I include open source ERP in my evaluation process?” If you are less than $300M USD revenue, your answer should probably be yes! This answer comes from these concepts:
- Pillars of Cost – Since open source ERP is free, that means that all the cost of proprietary ERP should be allocated to the corners. If you use height to illustrate this allocated cost, the corners turn into tall pillers of cost.
- Cost of Innovation – At first look, the price tag of free open source ERP is the most appealing benefit; however, this benefit soon becomes overshadowed by the flexibility of open source ERP. If organizational leaders take just some of the cost that would otherwise be spent on Oracle or SAP, and they invest it back into the organization’s skills and knowledge of how ERP works, operational efficiency will never look the same again. If you know how to change the system for the better, and you know it will work. Why would you not?
- Monday to Monday Cycle – Business leaders drive innovation in a company. This innovation is no more apparent than in the traditional Monday morning business meeting where a CEO comes in and paints a picture of the next greatest thing. His or her next comments are “Will it work?” and “Make it happen!”. Open source ERP helps your business and IT teams say yes more often. You are no longer completely dependent on a high-priced Oracle Integrators. You are no longer dependent on spending 18% every year to Oracle for software that you have little control over. Your team applies its knowledge of the system and the knowledge of its world-wide resources to create a proof of concept that paints the real picture the following Monday.
- Right Pay Grade – Open source ERP puts the right tools in the right person’s hands at the right pay-grade. there is little more wasteful that paying a $150/hr integrator for something a Jr IT professional should be doing. Open Source ERP removes the artificial barriers that exist in proprietary ERP.
- ERP for Everyone – User licenses/seats are no longer a consideration. This point cannot be stated strongly enough. At first look, you might think this point is about saving money. It is much more than that. You now have the freedom and flexibility of allowing everyone in your company to interact the system that drives your operations. You simply assign the right roles to the right people to give them access to the appropriate information.
ADempiere vs iDempiere vs Openbravo vs Compiere
The ADempiere, iDempiere, Openbravo and Compiere environments are amazingly similar. iDempiere came from ADempiere. ADempiere and Openbravo came from Compiere. Compiere came from Jorg Janke. Jorg came from Oracle. As a result, iDempiere and ADempiere have much in common with Oracle’s ERP in terms of the financial feature set.
This is both good and bad. Good because iDempiere and ADempiere are quite capable to help a company grow beyond $500M USD. Bad because they tend to be more complex in that they account for multiple languages, accounting schemas, currencies, calendars, costing types, costing methods, etc…. If you are a growing organization, and you need a system that will grow with you, and you have the right internal talent/resources, iDempiere or ADempiere will be a big asset for you.
The biggest difference between these products is that ADempiere and iDempiere are pure open source. ADempiere and iDempiere make all feature available for free. Compiere and Openbravo hold back features behind a commercial or paid license.
Here is an article that discusses the differences between iDempiere and ADempiere.
iDempiere and ADempiere vs Odoo
iDempiere/ADempiere (iD/AD) and Odoo (formerly OpenERP) approach ERP from two very different directions. Odoo comes out of the box with very simple options. If you are coming from QuickBooks, and you need a simple ERP system help you manage your business, Odoo will look and feel comfortable.
iD/AD comes out of the box with every feature installed and configured to run a $200M+ USD business. If your business is growing rapidly, and you are willing to invest the time to learn an enterprise accounting system, then iD/AD will give you confidence.
Which one is best for you depends on your internal talent, growth and business complexity. Here is a post to help you learn more.