Cloud Concepts Flashcards
AWS Cloud
- Someone else owns the Server
- Someone else hires the IT resources
- Someone else pays the rents, utilities and other real estate related costs
- Client responsible for Configuration, services and cloud services (client only pays for what they use)
Advantages of Cloud
- Limit Capital Expenditure
- Benefit from Economy of Scale
- Stop guessing capacity (when provisioning servers)
- Increase speed and agility (spin up infra. in mins.)
- Limit Resource Expense (Limit IT hires and data center cost)
- Global Implementation in mins.
AWS Cloud Service Types
- SAAS - for customers - e.g. Office 360, Salesforce
- PAAS - for developers (No need to manage infra.)
- IAAS - for network admins - e.g. AWS, Azure etc.
Cloud Deployment Models
- All Cloud - SAAS Offering - e.g. Dropbix
- Hybrid - Legacy on Premise + Cloud e.g. - Banks, Funtech
- On-Premise - Regulated data centers e.g. Insurers
AWS Global Infra
22 Geographies
70 AZz
Many Edge Locations
AWS Region
- Geographic Location isolated from each other
- Each Region has at least 2 AZs
- New services always made available in US-EAST region
- Not all services available in all regions
- US -EAST-1 (Virginia) is where you see all billing
AWS AZs
- Physical location of the data center
- Multi AZ implementation helps with fail-over protection
- <10 ms latency between AZs
Gov Cloud (US)
- Store controlled unclassified information
- Only operated by employees who are US Citizens
- Only access to US entities
- Applications operational during component failure
- Built-in redundancy of components
Fault Tolerance
- Systems “always” functioning and available
- Downtime is minimized
- Without human interaction
High Availability
Scale computing resources up or down easily
Elasticity/Scalability
- Used to divide Amazon VPC
- Allows Amazon VPC to span multiple Azs
Subnets
Two fundamental characteristics you do not pay for with AWS
- Data Transfer In
- Data transfer between AWS services within the same region
Aggregated outbound AWS services charged as AWS Data Transfer Out
EC2, S3, RDS, Simple DB, SQS, SNS, VPC
EC2 Purchasing Considerations
- Runtime
- Machine Configuration
- Machine Purchase Type
AWS Cloud Compliance
AWS Cloud Compliance enables you to understand the robust controls in place at AWS to maintain security and data protection in the cloud.
AWS Cloud Complies with:
SOC 1/ISAE 3402, SOC 2, SOC 3 FISMA, DIACAP, and FedRAMP PCI DSS Level 1 ISO 9001, ISO 27001, ISO 27018 HIPPA GDPR
Benefits of EC2
- Elastic Web Scale Computing
- Completely Controlled
- Flexible Cloud Hosting Services
- Integrated (w/ S3, RDS, VPC)
- Reliable
- Secure ( works with VPC to provide security and networking functionality)
- Inexpensive
EC2 Purchasing Options
- On-demand Instances
- Reserved Instances
- Spot Instance
On-demand Instances - EC2 Purchasing feature
- Pay for compute capacity by the hour with no long-term commitments
- Frees you from the costs and complexities of planning, purchasing, and maintaining hardware
- Remove the need to buy “safety net” capacity to handle periodic traffic spikes.
Reserved Instances - EC2 Purchasing feature
- Significant discount (up to 75%) compared to On-Demand instance
- Flexibility to change families, operating system types, and tenancies while benefiting from Reserved Instance pricing
Spot Instance - EC2 Purchasing feature
- Allow you to bid on spare Amazon EC2 computing capacity
* Often available at a discount compared to OnDemand pricing
Features of S3
- Simple (easy to integrate with third party tech)
- Durable: data redundantly stored
- Scalable
- Secure
- Available
- Low Cost
- Simple Data Transfer
- Integrated (with: Amazon CloudFront, Amazon CloudWatch, Amazon Kinesis, Amazon RDS, Amazon Glacier, Amazon EBS, Amazon DynamoDB, Amazon Redshift, Amazon Route 53, Amazon EMR, Amazon VPC, Amazon Key Management Service (KMS), and AWS Lambda.)
- Easy to manage
AWS Security Features - Secure Data Center
- Staffed 24x7 with trained security
- Environmental systems built to minimize impact to operations
- Regulated Access
- AZs across geographies to minimize operational impact
- Multi - factor access control systems
EC2 Server Resource Options (Instance types)
”- App Server
- Web Server
- DataBase Server
- Mail Server
- Media Server
- File Server
- Computing Server
- Game Server
- Catalog Server
- Proxy Server”
Process to create an EC2 instance
Select AWS Region –> Launch EC2 Wiz –> Select AMI (OS like Linux with Python etc.) –> Select Instance type –> Configure networks –> Config Storage –> Config. Key pairs (for security)
Storage Types supprting EBS (Elastic Block Storage) Service
“-Magnetic : Cheap, used for logs, low performance
- SSD : Expensive, used as primary store, high performance”
What is a Snapshot of EBS instance?
“Can create a snapshot of EBS data for:
- Share an encrypted snapshot as needed
- Archive data
- To copy to a different instance and recreate a volume”
Factors for picking an AWS region
- Optimize latency
- Minimize cost
- Regulatory Requirements - HIPPA, GDPR etc.
Features of Availability Zones (AZs)
- Physically isolated from one another however logically separated
- Connected by high speed connection
- Has dedicated power supply, onsite generator
- Supplied by different utility & network provider
Edge locations
Host content delivery network of CDN - Cloud Front
* Context request is auto routed to nearest edge location to minimize latency
