Chapter 1: Intro to Cloud Computing & AWS Flashcards
Virtualization
Allows you to divide the hardware resources of a single physical server into smaller units.
Scalability
Allows you to meet unexpected increases in demand for your application by automatically adding resources.
Adds VM (or ‘instances’) using a Machine Image (MI)
Elasticity
Allows you to reduce capacity when the demand drops. Helps to control the costs.
Cloud changes IT Spending How?
Changes from a CapX (Capital Expenditure), to an OpX (Operational Expenditure)
TCO
“Total Cost of Ownership”
Free AWS Calculator to perform ‘apples to apples’ comparisons between your current setup and moving to AWS Cloud.
Compute (Functions)
Service replicating the traditional role of local physical servers for the cloud.
Offers advanced configurations including autoscaling, load balancing, and even serverless architecture.
Networking (Functions)
Application connectivity, access control, and enhanced remote connections.
Storage (Functions)
Various kinds of storage platforms designed to fit a range of both immediate accessibility and long-term backup needs.
Database (Functions)
Managed data solutions for use cases requiring multiple data formats: relational, NoSQL, or caching.
Application Management (Functions)
Monitoring, auditing, and configuring AWS account services and running resources.
Security and Identities (Functions)
Services for managing authentication and authorization, data an connection encryption, and integration with third-party authentication management systems.
EC2 Function
ELASTIC COMPUTE CLOUD - Compute
Server instances provide virtual versions of the servers you would run in your local data center.
Provisioned with the CPU, memory, storage, and network interface to meet your needs.
Resource-efficient and deploy nearly instantly.
Lambda Function
Serverless application - Compute
Allows you to provide responsive public-facing services without the need for a server that’s running 24/7. Network events trigger the execution of a predefined code-based operation, and when the event ends the resources are automatically shut down.
Auto Scalling
Compute
Copies of running EC2 instances can be defined as image templates and automatically launched when demand can’t be met by existing instances.
ELB
ELASTIC LOAD BALANCING - Compute
Web traffic can be directed between multiple web servers to ensure that a singe web server isn’t overwhelmed while other servers are underused.
Elastic Beanstalk
Compute
Managed service that abstracts the provisioning of AWS compute and networking infrastructure.
All you have to do is push the application code, and Beanstalk automatically launches and manages all the necessary services in the background.
VPC
VIRTUAL PRIVATE CLOUD - Networking
Highly configurable networking environments designed to host your EC2 (and RDS) instances.
Can secure and isolate your instances by closely controlling inbound and outbound traffic.
Direct Connect
Networking
Secure and fast tunnel between your local data center or office and your AWS-based VPC.
Route 53
Networking
AWS DNS service that lets you maintain domain registrations, record administration, routing protocols, and health checks.
CloudFront
Networking
Global CDN. Can store cached versions on your site’s content at edge locations around the world so that they can be delivered to customers on request with the greatest efficiency and lowest latency.
S3
SECURE SIMPLE STORAGE - Storage
Highly versatile, reliable, and inexpensive object storage that’s great for data storage and backups.
Used as part of larger AWS production processes, including through the storage of script, template, and log files.
S3 Glacier
Storage
Large data archive option, which is stored cheaply over the long term and can live with retrieval delays meanings in the hours.
EBS
ELASTIC BLOCK STORAGE - Storage
Persistent virtual storage drives that host the OS and working data of an EC2 instance.
Storage Gateway
Storage
Hybrid storage system that exposes AWS cloud storage as a local, on-prem appliance.
Great tool for migration and data backup and as part of disaster recovery operations.
RDS
RELATIONAL DATABASE SERVICE - Database
Managed service that builds a stable, secure, and reliable database instance. Can run a variety of SQL database engines on RDS, including MySQL, Microsoft SQL Server, Oracle, and Aurora.
DynamoDB
Database - Can be used for fast, flexible, high scalable and managed non-relational (NoSQL0 database workloads.
CloudWatch
Application Management
Can be set to monitor process performance and resource utilization and sometimes either send you a message or trigger an automated response.
CloudFormation
Application Management
Enables you to use template files to define full and complex AWS deployments.
The ability to script your use of any AWS resource makes it easier to automate, standardizing and speeding up the application launch process.
CloudTrail
Application Management
Collects records of all of your account’s API events. History is useful for account auditing and troubleshooting purposes.
Config
Application Management
Designed to help you with change management and compliance for your AWS account.
1st - Define a desired configuration state
2nd - Config evaluates any future states against that ideal.
Provides notification if changes pushes too far form ideal baseline.
IAM
IDENTITY AND ACCESS MANAGEMENT - Security & Identity
Used to administrate user and programmatic access and authentication to your AWS account. Through the use of users, groups, roles, and policies, you can control exactly who and what can access and/or work with any of your AWS resources.
KMS
KEY MANAGEMENT SERVICE - Security & Identity
Allows you to administrate the creation and use of encryption keys to secure data used by and for any of your AWS recourses.
Directory Service
Security & Identity
Can integrate AWS resources with identity providers like Cognito and Microsoft AD domains.
SNS
SIMPLE NOTIFICATION SERVICE - Application Integration
Notification tool that can automate the publishing of alert topics to other services, to mobile devices, or to recipients using email or SMS.
SWF
SIMPLE WORKFLOW - Application Integration
Lets you coordinate a series of tasks that must be performed using a range of AWS services or even non-digital events.
SQS
SIMPLE QUEUE SERVICE - Application Integration
Allows for event driven messaging within distributed systems that can decouple while coordinating the discrete steps of a larger process.
SQS messages will be reliably delivered, adding to the fault-tolerant qualities of an application.
API Gateway
Application Integration
Enables you to create and manage secure and reliable APIs for your AWS-based applications.
AWS Region Naming Convention
(Country/Area) - (Region) - (Number)
us-east-2 (US Ohio) ap-east -1 (Asia/Pacific Hong Kong) ca-central-1 (Canada Central) cn-north-1 (China Beijing) eu-west-1 (Europe Ireland) me-south-1 (Middle East Bahrain)
AWS Region Endpoint Naming Convention
(Country/Area)-(Region)-Number).amazonaws.com
us-east-2.amazonaws.com
When are Endpoint Addresses really needed?
To access you AWS resources remotely from within the application code or scripts.
AWS Shared Responsibility Model
AWS is responsible for the cloud itself
Customer is responsible for what’s IN the cloud.
CLI
AWS COMMAND LINE INTERFACE
Allows you to run complex operations from your local command line. Usually the easier and more efficient way to interact with AWS
SDK
AWS SOFTWARE DEVELOPMENT KIT
Allows you to use programming languages to access your resources into code.
Languages offered included, Java, .NET, and Python, including some mobile languages.
Support Plans and Cost
Basic - Free
Developer - $29/mo
Business $100+/mo
Enterprise.- $15,000/mo and adds a TAM
Availability Zone
An isolated physical data center within an AWS Region
AWS Region
Area consisting of 2+ Availability Zones
What do you need to check to make sure that the application you’re building using EC2 and S3 resources will be reliable enough to meet the regulatory standards required by your industry?
AWS Compliance Programs documentation page.
