AWS - Technology Flashcards
four types of elastic load balancers
-classic load balancers
-application load balancers
-gateway load balancers
-network load balancers
What does auto scaling do?
adds or replaces EC2 instances automatically across AZs, based on need and changing demand
vertical scaling
scaling up
-upgrades an ec2 instance by adding more power (cpu, RAM) to an existing server
what are the ways to log into a EC2 instance?
-UI (console)
-SSH
-EC2 instance connect
-aws systems manager
Pricing options
on-demand
spot
reserved instances
dedicated hosts
savings plans
compute service features
elastic load balancing
auto scaling
benefit of auto scaling
improves the availability of your applications not to be confused with load balancing
real-world usage of EC2 instances
deploying data base or web application
what is Lambda
serverless compute service that lets you run code without managing servers
what is the application code in lambda called?
functions
does lamda scale automatically?
true
benefit of lambda
allows developers to focus on core business logic for the apps they are developing instead of worrying about servers
Three use cases for lambda
realtime file processing
sending emails
backend business logic
features of lamda
-supports popular programming languages
-author code using favorite development environment or via console
-can execute your code in response to an event
-they have 15-minute timeouts
lambda pricing model
charged based on duration and number of requests
fargate
serverless computer engine for containers
lightsail
quickly launches all resources needed for small projects
benefits of lightsail
-deploy preconfigured applications like wordpress
-simple screens for people with no cloud experience
-includes VM, ssd-based storage, data transfer, DNS -managements and static IP
-low monthly fees (3.50)
Outposts
allows you to run cloud services in your internal data center
Benefits of outposts
-supports workloads that need to remain on-premises due to latency or data sovereignty needs
-delivers and installs servers in internal data center
-used for hybrid experience
-have access to the cloud servers and APIs to develop apps on premises
Batch (aws)
allows you to process large workloads in smaller chunks (or batches)
benefits of batch
-runs hundreds and thousands of smaller batch processing jobs
-dynamically provisions instances based on volume
S3
storage service
what are files stored in?
buckets and objects
attributes of objects in S3
-can be public or private
-can be uploaded via the console, the CLI, or programmatically from within code using SDKs
options to grant individual objects in buckets
-access control lists
-bucket policies
-access point policies
what can help prevent accidental deletion of a file
enable versioning
what do s3 access logs do
track access to your buckets and objects
what does durability mean
you can expect your data to be there
availability
access to the data
S3 standards
-general purpose storage
-data stored across multiple availbility zones
-low latency and high throughput
s3 intelligent-tiering storage class
-automatically moves your data to the most cost-effective storage class
-automatic cost savings
-no retrieval fees
-data stored across multiple availability zones
3 things about s3 standard-infrequent access storage class to keep in mind?
-data accessed less frequently but requires rapid access
-data stored across multiple availability zones
-cheaper than S3 standard
S3 glacier storage class
-long-term data storage and archival for lower costs
-data retrieval takes longer
-3 retrieval options 1-5 min, 3-5 hours, or 5-12 hours
-data stored across multiple availability zones
S3 glacier deep archive storage class
like S3 glacier but longer access times
-2 retrieval options: 12 hours or 48 hours
-cheapest of all S3 options
-data stored across multiple AZs
S3 outposts
-provides object storage on-premises
-single storage class
-store data across multiple devices and servers
What are four use cases of S3 usage in the real world?
-static websites
-data archive
-analytics systems
-mobile applications
EC2 root drives
-elastic block store (EBS)
-elastic file system (EFS)
can you attach EBS volumes to a single EC2 instance?
True
Are EBS drives persistant?
True
What does it mean for it to be a persistent drive?
can stop or terminate the instance and or even deattach and reattach
Are Instant store drives persistent?
false, they are ephemeral
Benefits of ephemeral drive
lower latency, downside: data is lost if is stopped or terminated
EFS (elastic file system) can be thought of as what?
share drive
What is EBS in EBS volumes
ELASTIC BLOCK STORE
What is one drawback of an EBS volume
Can only be attached to one instance in the same AZ (only one AZ)
3 Benefits of EBS
-quickly accessible data
-running a db on an instance
-long-term data storage
What is an EC2 Instance Store
local storage that is phyically attached to the host computer and cannot be removed
Biggest EC2 Instance Store drawback
-storage is temporary
Biggest advantage of EC2 instance store
-faster with higher I/O speeds
EC2 instance store is recommended for:
-temporary storage needs
-data replicated across instances
Highlights of EFS
-Supports Linux file system only
-accessible across different AZs in the same region
-More expensive than EBS
EFS is recommended for
-main directories for business-critical apps
-lift-and-shift existing enterprise apps
storage gateway offers what kind of storage service
hybrid storage service
Storage Gateway is recommended for:
-moving backups to the cloud
-reducing costs for hybrid cloud storage
-low latency access to data
what is aws backup
-Manage data backups across multiple AWS services
-integrates with resources like EC2, EBS,EFS, and more
-
what is content delivery network (CDN)?
is a mechanism to deliver content quickly and efficiently based on geographic location
what is content delivery network (CDN)?
is a mechanism to deliver content quickly and efficiently based on geographic location
what is cloud front?
is a CDN that delivers data and applications globally with low latency
benefits of Cloud front
-makes content available globally or restricts it based on location
-speeds up delivery of static and dynamic web content
-uses edge locations to cache content
how is cloud front used in the real world
-s3 static websites
-prevent attacks
-ip address blocking
What is Amazon Global Accelerator
sends your users through the AWS global network when accessing your content, speeding up delivery.
Things to keep in mind about amazon global accelerator
-improves latency and availability of single-region applications
-sends traffic through the aws global network infrastructure
-60% performance boost
-automatically re-routes traffic to a healthy available regional endpoints
What does amazon s3 transfer acceleration do?
improves content uploads and downloads to and from S3 buckets
what does S3 transfer acceleration offer
-fast transfer of files over long distances
-uses cloudFronts globally distributed edge locations
-customers around the world can upload to a central bucket
What does networking do
connects computers together and allows for the sharing of data and applications, around the globe , in a secure manner using virtual routers, firewalls, and network management services.
VPC stands for?
virtual private cloud
what kind of service is VPC
foundational servers that allows you to create a secure private network in the AWS cloud where you launch your resources
4 attributes of VPC
-private virtual network
-launch resources like EC2 instances inside the VPC
-Isolate and protect resources
-spans AZs in a region
what makes a subnet public?
-NACL (network access control list)
-Router | Route table
-Internet Gateway
VPC Peering?
Allows you to connect 2 VPCs together so they behave as one
what is DNS
domain name system directs internet traffic by connecting domain names with web servers
route 53
DNS service that routes users to applications
-domain name registration
-performs health checks on aws resources
supports hybrid cloud architectures
direct connect
dedicated physical network connection from on-premises data center to AWS
-data travels over a private network
-supports a hybrid model
direct connect in the real world
-large datasets
-business critical data
-hybrid model
4 things to keep in mind about
AWS VPN
-similar to direct connect but data travels over public internet
-data is automatically encrypted
-connects your on-prem data to aws
-supports hybrid environments
API Gateway
allows you to build and manage API’s
-share data between systems
-integrate with services like aws lambda
aws databases
Relational
-RDS
-Aurora
No sql
-dynamoDB
Graph
-neptune
In-memory stores
-Elasticache
Document
-documentDB
aws databases
Relational
-RDS
-Aurora
No sql
-dynamoDB
Graph
-neptune
In-memory stores
-Elasticache
Document
-documentDB
RDS
easy to launch and manage relation database
-supports pop engines
-high availability and fault tolerance
-manages DB
-read replicas across regions
Aurora
Relational DB compatible with mysql and postgreSQL
-5x faster than norm myslql and 3x faster than postgreSQL
-scales automatically
-managed by RDS
dynamoDB
fully managed noSQL key-value and document database
-serverless
-non-relational
-scales to massive workloads
documentDB
fully managed document database that support mongo
-non relational
ElastiCache
fully managed in-memory datastore compatible with Redis or Memcached
- data can be lost (stored in memory)
neptune
graph database that supports highly connected datasets
DMS stands for?
database migration service (DMS)
what does DMS help you do?
migrate databases to or within aws
-migrate on-prem db’s to AWS
-continuous data replication
-support homogeneous and heterogeneous migrations
-almost no downtime
SMS stands for?
server migration service
What does SMS allow?
-migrate on-prem servers to AWS
-server saved as a new amazon machine image
-AMI to launch servers as EC2 instances
What is the snow family
allows you to transfer large amounts of on-prem data to AWS using a physical device
snowcone
-smallest member of data transport devices
-8 terabytes of usable storage
-offline shipping
-online with datasync
4 things about snowball and snowball edge to keep in mind
-petabyte-scale data transport solution
-transfer data in and out
-cheaper than internet transfer
-snowball edge supports ec2 and lambda
snowmobile
-multi-petabyte or exabyte
-data loaded to S3
-securely transported
datasync
allows for online data transfer from on-prem to aws storage services like S3 or EFS
-copy data over direct connect or the internet
-copy data between aws storage services
-replicate data cross-region or cross account
what is a data warehouse?
is a data storage solution that aggregates massives amounts of historical data from disparate sources
benefits of data warehouse
data warehouses support:
-querying
-reporting
-analytics
-business intelligence
they are not used for transaction processing
amazon redshift?
scalable data warehouse solution
-improves speed and efficiency
-handles exabyte-scale data
Athena
query service for amazon S3
-analyze S3 data u sing sql
-pay per query
-considered serverless
Glue
prepares your data for analytics
-ETL service
-prepare and load data
-helps better understand your data
Kinesis
allows you to analyze data and video streams in real time
-supports video, audio, application logs, website clickstreams, and IoT
Elastic MapReduce (EMR)
helps you process large amounts of data (big data)
-analyze data using hadoop
-works with big data frameworks
data pipeline
helps you move data between compute and storage services running either on AWS or on-prem
-moves data at specific intervals
-moves data based on conditions
-sends notifications on success or failure
QuickSight
helps you visualize your data
-build interactive dashboards
-embed dashboards in your applications
AI
Artifical intelligence (AI) teaches computers to do things that normally require human intelligence
Rekognition
allows you to automate your image and video analysis
-identify custom labels in images and videos
-face and text detection in images and videos
Comprehend
natural-language processing (NLP)
-uncovers insights and relationships
-analyzes text
Polly
turns text into speech
-mimics natural-sounding human speech
-several voices across many languages
-can create a custom voice
Sagemaker
helps you build train and deploy machine learning models quickly
-prepare for data models
-train and deploy models
-provides deep learning AMLs
Translate
provides language translation
-real-time and batch language translation
-supports many languages
-translates many content formats
Lex
helps you build conversational interfaces like chatbots
-recognizes speech and understands language
-build highly engaging chatbots
-powers amazon Alexa
cloud9
allows you to write code within an integrated development environment (IDE) from within your web browser.
-write and debug code
-supports popular programming languages
codeCommit
source control system for private Git repositories
-create repos to store code
-commit , branch and merge code
-collaborate with other software developers
codeBuild
allows you to build and test your application source code
-compiles source code and runs tests
-enables continuous integration and delivery
-produces build artifacts ready to be deployed
CodeDeploy
manages the deployment of code to compute services in the cloud or on-prem
-deploys code to EC2, Fargate, lambda and on prem
-maintains application uptime
code pipeline
automates the software release process
-deliver new features and updates
-integrates with codebuild to run builds and unit tests
-integrates with codeCommit to retrieve source code
x-ray
helps you debug production applications
-map app components
view requests end to end
-analyze and debug production applications
codeStar
helps developers collaboratively work on development projects
-developers connect their development environments
-integrates with codecommit, codebuild, codeDeploy
-contains issue tracking dashboard
Infrastructure as Code (IaC)
allows you to write a script to provision AWS resources. The benefit is that you provision resources in a reproducible manner that saves time
cloudFormation
allows you to provision AWS resources using IaC
-provides a repeatable process for provisioning resources
-works with most AWS services
-create templates for the resources you want to provision
Elastic Beanstalk
allows you to deploy your web applications and web services to AWS
-orchestration service that provisions resources
-automatically handles the deployment
-monitors application health via a health dashboard
OpsWorks
allows you to use Chef or Puppet to automate the configuration of your servers and deploy code
-manage on-prem servers or EC2 instances in AWS Cloud
Loose Coupling is used with what?
microservices
Simple Queue Service (SQS)
message queuing service that allows you to build loosely coupled systems
-allows component-to-component communication using messages
-multiple components (or producers) can add messages to the queue
-messages are processed in an asynchronous manner
Simple notification service (SNS)
allows you to send emails and text messages from your applications
-send email and text messages
-publish messages to a topic
-subscribers receive messages
Simple Email Service (SES)
an email service that allows you to send richly formatted HTML emails from your applications
-ideal choice for marketing campaigns or professional emails
-unlike SNS, SES sends HTML emails
What kind of questions can be answered with auditing and monitoring?
1) who signed in and made changes via the AWS management console
2) what is the current load on this EC2 instance?
3) What is the root cause of this application error?
4) Which execution path resulted in this error?
cloud watch
is a collection of services that help you monitor and observe your cloud resources
-collects metrics, logs, and events
-detect anomalies in your environment
-set alarms
-visualize logs
CloudTrail
tracks user activity and API calls within your account
-activity tracked through console, SDKs, and CLI
-identify which user made changes
-detect unusual activity in your account
How many days can you troubleshoot events over?
past 90s days using cloudtrail event history log; however, custom trails can make this longer
Six things that can be tracked with cloudTrail
-user name
-event time and name
-IP address
-access key
-region
-error code
amazon workspaces
host virtual desktops in the cloud
-virtualize windows or linux desktops
-enables employees to work from home
amazon connect
cloud contact center service
-provides customer service functionality
-improves productivity of help desk agents
