Architecting for the Cloud Flashcards
Well Architected Framework
“established best practices from lessons learned with customers”
Traditional Computing vs Cloud Computing
o IT assets as provisioned resources
o Global, available, and scalable capacity
o Higher level managed services (machine
learning)
o Built in security (safer on AWS than hosting it internally/managing yourself)
o Architecting for cost (you can design your cost in cloud to be more cost efficient)
o Operations on AWS
Scalability
Scale Up = increasing amount of RAm
Scale down = adding multiple virtual machines behind an elastic load balancer
Instances of Scalability
- Stateless applications (LAMBDA eg. Think of
using alexa completely server less) - Distribute load to multiple nodes
- Stateless Components
- Stateful Components
- Implement Session Affinity
- Distributed Processing
- Implement Distributed Processing
Disposable Resources Instead of Fixed Servers
o Instantiating Compute Resources
- Bootstrapping (not having to configure
resources every time)
- Golden Images - Containers - Hybrid (containers + EC2 Instances)
o Infrastructure as Code
- CloudFormation
Automation
o Serverless Management & Deployment
(wanting to automate everything)
- Eg. AWS Elastic Beanstalk
o Alarms & Events
Removing Single Point of Failure
o Introducing Redundancy
o Detect Failures
o Durable Data Storage
o Automated Multi-Data Centre Resilience
o Fault Isolation and Traditional
Horizontal Scaling
- Horizontal Scaling = changing
the # of nodes in computing
system/adding instances
o Sharding
Optimize for Costs
o Right Sizing
o Elasticity
o Variety of Purchasing Options
Caching
o Application Caching
o Edge Caching
Security
o Use AWS Features for Defense in Depth o Shared Security Responsibility with AWS - Both customer and AWS Share Security - AWS secures the cloud, customer secures their applications & resources IN the cloud o Reduced Privileged Access o Security as Code o Real Time Auditing
Data Lakes
Architectural approach that allows you to store massive amounts of data in a central location so that its readily available to be categorized, processed, and analyzed by different groups
Global AWS Services
IAM, Route 53, CloudFront, SNS, SES
What is Global but based regionally
S3 bucketing
What AWS Services can be used on-prem
o Snowball o Snowball Edge o Storage Gateway o Code Deploy o OpsWorks o IoT greengrass
How do computers communicate`
o Linux Computer – communicate via
SSH Port 22
o MSFT Computers – communicate via
remote desktop protocol Port 3389
o HTTP – Port 80
o HTTPS – Port 443