Launching WordPress on Lightsail
- Visit Lightsail and setup an AWS account if you don’t already have one.
- Select “Create Instance” and select the WordPress image.
- Select your key pair; I suggest you create a new one to keep things isolated. Unless you plan on using this for things other than WordPress, you won’t need it anyway thanks to the browser-based SSH available in the Lightsail UI.
- Select your instance plan. The cool thing about AWS is they make it incredibly easy to move and scale (up or down). If you want to change the specs of your instance in the future, just take a snapshot of your existing instance , spin up your new instance, and then migrate the IP — it’s all less than 10 clicks.
- Give a relevant name to your instance and click create. Within a minute or so, it’ll be live and you’ll be able to attach your free IP.
Registering and pointing a domain name to Lightsail via Route 53
- Visit Route 53 and select Domain Registration. The pricing is very competitive for TLDs and they offer free privacy protection for WhoIs which is a nice bonus.
- After completing registration and the request is out of pending status (~5 minutes), go to “Registered Domains” and click on the new domain you just registered.
- Click the “Manage DNS” button then select “Create Record Set”.
- Flip back to the Lightsail console for your instance and select “Create a DNS zone”
- Set your A record for your domain to point to your Lightsail static IP. You should have a record for your domain with and without the www prefix. Copy the four nameservers at the bottom of the page.
- Back in the Route 53 console, set the nameservers (NS) to the four nameservers you copied from Lightsail and set the TTL to 1 minute before saving. If you don’t adjust this before saving, your changes will not be recognized until the default TTL has lapsed (which is two days). Leave the routing policy set to Simple and click Create.
- Return to the Lightsail console and copy your public IP.
- Return to Route 53 and add two new A records: 1 A record without the www prefix and 1 with the www prefix. Again, set the TTL to 60 seconds before creating.
Setting up email with Lightsail and AWS SESIf you don’t plan on sending or receiving email, this isn’t necessary. You can setup other mail configurations with Lightsail but I’m opting to utilize AWS Simple Email Service (SES) because it’s the easiest and it makes monitoring of metrics simple. These next few steps will enable you to retrieve forgotten WordPress passwords and receive email notices from your WordPress instance.
- Visit the SES page of the AWS console and select Domains from the left menu.
- Next, click the “Verify a New Domain” button, enter your domain name, and check the “Generate DKIM Settings” box – you’ll want this to give your mails additional credibility with email service providers (thus reducing your likelihood of being caught in spam filtering).
- After clicking “Verify this Domain”, the next page will share the TXT, CNAME, and MX DNS records needed but, because you purchased your domain within the AWS ecosystem, it’ll create those for you when you select “Use Route 53”.
- Ensure all four boxes are checked for “Domain Verification Record”, “DKIM Record Set”, “Email Receiving Record”, and “Hosted Zones” then click “Create Record Sets”. After a couple of minutes, the domain status in SES should reflect “Verified”/”Yes” for status, DKIM, and enabled for sending.
- Go to “Configure Sets” from the SES left menu and click “Create Configuration Set”. Give your set some general name (I called mine default), and select “Create Configuration Set” again.
- Select “Add Destination” and select “SNS” from the drop down menu. Side note: SNS (Simple Notification Service) is another AWS product that’s pretty powerful/cool – I don’t discuss it here but you should read more about it.
- To get out of Sandbox, you have to have a process for handling bounces and complaints so, at a minimum, check those two boxes and give your destination some name (such as notifyMe).
- Select “Create SNS Topic”, give your topic a name (such as emailMe), and hit “Create Topic”. Save your configuration set.
- Go to the Simple Notification Service page from the AWS console and select “Topics” from the left menu.
- Select your topic, select “Subscribe to Topic” from the “Actions” drop down menu. The protocol will be email and the endpoint will be your personal email address.
- Lastly, we’ll create a case with AWS support to request a service limit increase for SES. The configuration set and SNS topic we configured will enable you to select “Yes” for the “I have a process to handle bounces and complaints” question. Once AWS Support gets back to you, you should now be able to send/receive mail.
Using WordPress plugins to send/receive mailThe rest is really up to personal preference. Within the SES dashboard, you can view your SMTP settings which you can plug into any number of plugins available within WordPress. I personally use WP Mail SMTP. Below is the configuration needed for this particular plugin.
- From the plugin configration page within WordPress, the mailer selected should be “Other SMTP”
- The SMTP host will be the hostname in your AWS SES dashboard
- Encryption will be TLS and port is 587
- Authentication should be turned on
- The SMTP username and password will come from your AWS SES dashboard by clicking “Create My SMTP Credentials”. Side note: what you’re actually doing is creating an IAM (Identity Access and Management) role. IAM is actually yet another AWS product that you’ll be using as part of this project. Similar to SNS, I won’t go into IAM but it’s also another cool/powerful AWS product.
SummaryThis should get you fully up and running with a total time investment of less than 30 minutes and an ongoing cost of ~$5 per month. Personally, the reward is in learning more about the AWS line of products. Exploring around, you’ll see you can easily tie into other AWS services like creating CloudWatch monitors to monitor uptime/outages, expand your integration with SNS for notification of issues, etc. Many of these are within the AWS Free Tier, too. One last side note: you can create a CloudWatch monitor to monitor your costs and trigger an alert to an SNS topic when they breach a threshold. If you’re playing around, I strongly encourage this as the AWS console doesn’t notify you of costs as you’re clicking away.