Cloud Technology and Services Flashcards
1
Q
Cloud Technology and Services Domain
A
- Define the AWS global infrastructure and methods of deploying and operating in the AWS Cloud
- Identify compute, database, network, storage, AI/ML, analytics services, and “services from other in-scope AWS service categories”
2
Q
AWS Management Console
A
- Graphical interface that supports most AWS services
- Access billing statements, launch new services, etc
3
Q
AWS Command Line Interface (CLI)
A
- Access AWS services via the command line
- Programming-language agnostic
4
Q
AWS Software Development Kits (SDKs)
A
- Incorporate connectivity and functionality of AWS services into your code
- Deploy AWS services and resources using a variety of languages
- Use AWS resources in existing applications
5
Q
AWS Infrastructure as Code
A
- AWS Elastic Beanstalk
- AWS Lambda
- AWS CloudFormation
6
Q
Virtual Private Network (VPN)
A
- Creates an encrypted private network between your device and the resource you are connected to
- AWS VPN
7
Q
AWS Direct Connect
A
- Creates a secure, private connection from your local network directly to AWS Cloud
- Considered “shortest path” between local network and AWS, providing lower latency and reducing bandwidth costs
- Uniquely suited for large-scale data transfers, rapid data backups, and broadcast media processing
- Bypasses the public internet
8
Q
Cloud Native Deployment
A
- All parts of the infrastructure reside and run in the cloud
- All applications/resources are migrated to or created in the cloud
- Relies on internet and cloud service providers for computational/IT requirements
- Often used by startups
9
Q
Hybrid Deployment
A
- Connects on-premises technology with cloud-based resources
- Might be in the process of migrating to the cloud
- Allows organizations to scale into the cloud while maintaining access to on-premises resources
- Cloud deployment as backup/disaster recovery solution
10
Q
On-Premises Deployment
A
- Utilizes virtualization technologies and application management to increase efficiency
- Lacks the benefits of cloud computing
- Very low latency because resources are on-site
- Provides dedicated resources, which may be an industry requirement
11
Q
AWS Availability Zones (AZs)
A
- Discrete data centers around the world, separated from each other by network, power source, and meaningful distance
- Increase availability by hosting resources in multiple AZs
- Fault tolerance: ability to provide uninterrupted performance even during natural/human-made disasters
Resiliency: capacity to recover from disasters quickly
12
Q
AWS Regions
A
- Two or more AWS Availability Zones
- All AZs within a region are interconnected and high-bandwidth, low-latency networking
- Different regions have different AWS Cloud offerings
- Can host resources in multiple Regions
13
Q
AWS Local Zones
A
- Place compute, storage, database, and other AWS resources close to large populations when there are no regions close by
- Connected with high-bandwidth secure network connections to local AWS regions
14
Q
AWS Wavelength Zones
A
- Ultra-low-latency user experience for application end users by embedding AWS compute and storage services within 5G networks
15
Q
Deploying and Operating in AWS
A
- Deploying: how IT infrastructure is brought into action
- Operating: how IT infrastructure is run and maintained
16
Q
Amazon Elastic Compute Cloud (EC2)
A
- Fully customizable virtual server (“instance”)
- Charged for what you use
17
Q
AWS EC2 Instance Types
A
- General purpose: good for general-purpose workloads that utilize resources in equal proportions
- Compute optimized: good for compute-intensive applications
- Memory optimized: good for processing large datasets in memory
- Storage optimized: good for high, sequential read and write access to very large datasets on local storage
- Accelerated computing: good for functions requiring high processing capabilities
18
Q
Containers
A
- Similar to VMs with their own file system, CPU, memory, etc
- Decoupled from underlying infrastructure and portable
19
Q
Amazon Elastic Container Service (Amazon ECS)
A
- Fully managed container orchestration service
- Deploy, manage, and scale containerized applications on-premises and in the cloud
20
Q
Amazon Elastic Kubernetes Services (Amazon EKS)
A
- Fully managed Kubernetes management service on AWS Cloud
- No need to install/operate your own Kubernetes clusters
21
Q
AWS Elastic Beanstalk
A
- Handles the deployment process
- You retain control over resources
- Free to use; pay only for other AWS resources consumed to deploy
- Autoscaling
- Provisions and operates the infrastructure but allows manual management
22
Q
Elastic Load Balancing
A
- Automatically distributes traffic across multiple replicated servers
- Fault tolerant
- Scalable and secure
- Monitors health of servers
23
Q
AWS Lambda
A
- Run code without having to provision or manage servers
- Event-driven, pay-as-you-go compute service
24
Q
AWS Fargate
A
- Serverless compute engine for containers
- Compatible with Amazon ECS and Amazon EKS
25
Amazon Lightsail
- Preconfigured operating systems, web apps, and development stacks
- Scalable, cost-effective monthly fees, and easy to deploy
26
Types of Storage
- Object storage
- File storage
- Block storage
27
Object Storage
- Files are broken down into pieces called objects and placed in buckets
- Stores unstructured data (photos, videos, etc)
- Best for static data
- Components of an object include the data, metadata, and identifier
- Amazon Simple Storage Service (S3)
28
File Storage
- Data is stored as pieces of information in a folder
- Stored files have hierarchy
- Amazon Elastic File System (Amazon EFS)
29
Block Storage
- Stores data in units of blocks
- Utilizes unique identifiers
- Distributes and stores blocks in multiple places
- Blocks are reassembled when data is requested
- Amazon Elastic Block Store (Amazon EBS)
30
Amazon Simple Storage Service (Amazon S3)
- Object storage service
- Scalability: change usage with flexibility and be charged only for what you use
- Nearly 100% durability
31
Amazon S3 Intelligent-Tiering
- Automatically moves objects between cost-optimized access tiers
32
Amazon S3 Standard
- General-purpose storage for frequently accessed data requiring millisecond access
33
Amazon S3 Standard IA
- For data that is accessed monthly with millisecond retrieval
34
Amazon S3 Glacier Instant Retrieval
- For rarely accessed long-term data with millisecond retrieval
35
Amazon S3 Glacier Flexible Retrieval
- Low-cost storage for archived or backed-up data with 1-5 minute, 3-5 hour, or 12 hour retrieval times
36
Amazon S3 Glacier Deep Archive
- For long-term archives with 12 or 48 hour retrieval times
37
Amazon S3 One Zone-IA
- For infrequently accessed objects with rapid retrieval that doesn't require multi-AZ redundancy
38
Amazon S3 on Outposts
- For on-premises AWS Outposts environments
39
Amazon Elastic Block Store (EBS)
- Raw, unformatted block device attached to an EC2 instance
- Can add multiple EBS volumes to one EC2 instance
- Automatically replicated within its availability zone
- Different EBS storage types
- Independent of EC2 instances so can be moved to other instances, and does not disappear when EC2 instances are rebooted
40
AWS Hybrid Cloud Service
- Extends AWS infrastructure and services into the edge where customers physically reside
41
AWS Snowcone
- Tiny, 8TB HDD or 14TB SSD, 4GB memory
- Provides edge computing, data storage, and data transfer services in environments with little or no internet
- Collet and process data
- Online data transfer via AWS DataSync
- Offline data transfer by shipping to AWS
42
AWS Snowball Edge
- 80-210 TB storage, 80-416 GB memory
- Choose compute-optimized or storage optimized
- Transfer data to ship to AWS or utilize compute capabilities to do local processing
43
AWS Snowmobile
- 45 foot shipping container
- Exabyte-scale data migration service to migrate up to 100 petabytes of data
44
AWS Storage Gateway
- Hybrid storage solution that connects AWS Cloud storage with on-premises storage
- Pay for storage and retrieval
- Quicker access is more expensive
45
AWS Storage Gateway: File Gateway
- Files stored as objects in S3
- One-to-one representation of each file
- Asynchronously updates objects to S3 as local files are updated
- Local cache to minimize latency
46
AWS Storage Gateway: Volume Gateway
- Upload volumes in blocks (like virtual hard drives)
- Asynchronously backed-up as point-in-time snapshots and stored as Elastic Block Store snapshots
- Stored volume: complete copy on-premises; sends snapshots to AWS
- Cached volume: recently accessed data on-premises; complete copy on AWS
47
AWS Storage Gateway: Tape Gateway
- Uses existing tape-based backup infrastructure to backup to virtual tapes
- Data stored locally then asynchronously uploaded to S3
- Data can be archived using Amazon S3 Glacier
48
AWS Backup
- Fully-managed backup service that protects backed up data across all AWS services and hybrid environments according to your backup policies and settings
- Data protection, ransomware recovery, and compliance insights
49
Relational Databases
- Store and organize data in tables
- Data is related to each other with predefined relationships
- Commonly uses SQL
50
Amazon Relational Database Service (Amazon RDS)
- Collection of managed services to set up and operate relational databases
- Supports Amazon Aurora, Oracle, Microsoft SQL Server, MySQL, PostgreSQL, and MariaDB
- Deploy on-premises with Amazon RDS on AWS Outposts
51
Amazon Aurora
- Fully managed relational database engine
- Supported by Amazon RDS
52
AWS Database Migration Services
- AWS Database Migration Service (AWS DMS)
- AWS Schema Conversion Tool (AWS SCT)
53
NoSQL Databases
- Non-relational databases
- Built for lots of data
- Key-value, document, graph models
54
Amazon DynamoDB
- NoSQL database service
- Fully managed, serverless key-value database
55
In-Memory Databases
- Rely on RAM for storage
- Ideal for applications that require microsecond response times or have large spikes in traffic
- Low-latency, high throughput, and high scalability
- Amazon MemoryDB for Redis, Amazon DAX, and Amazon ElastiCache
56
Hosted vs Fully Managed
- Managed services with save you time and money, but you lose control over your infrastructure
57
Amazon Redshift
- Fully managed, petabyte-scale data warehouse service
- Data warehouse: stores extremely large amounts of data collected from a wide range of sources to analyze
58
Amazon Virtual Private Cloud (Amazon VPC)
- Logically isolates section in the cloud to provision resources
- Control almost every aspect of your virtual network
- Automatically provisioned at AWS account sign-up
59
Amazon CloudFront
- Global content delivery network (CDN)
- Based on user location, origin of the website/app, and location of the content delivery server
- Loads websites/apps faster for users by using edge locations to cache files and resources
- Origin (S3, EC2, ELB, etc) => edge location (data center, cache, temporary download) => user
- No minimum commitment or contract; pay only for content delivered using the service
60
AWS Global Accelerator
- Throws web traffic on AWS global network to endpoints in the nearest region instead of public networks to shorten load times
61
Amazon Route 53
- Scalable cloud Domain Name System (DNS)
- Connects user requests to AWS infrastructure
- Routes users to infrastructure outside of AWS as DNS service
62
Basic Functions of Amazon Route 53
- Domain registration
- Domain Name Service (DNS)
- Health check of web apps
- Auto-naming for service discovery
- Create websites/apps with high availability
63
Amazon SageMaker
- Fully managed machine-learning service that helps build, train, and deploy ML models
64
Amazon Lex
- AI service to build bots with sophisticated voice and text conversational AI
- Integrate voice assistants and chatbots
65
Amazon Kendra
- Utilizes ML and NLP to help find answers with intelligent search
66
Data Lake
- Repository to store structured and unstructured data
- Data processing, real-time analytics, and ML
- Use Amazon S3 as a data lake and analytics services to clean, analyze, and utilize the data
67
Amazon Athena
- Analyzes data directly in Amazon S3 using standard SQL
68
AWS Glue
- Integrates data from over 70 sources and prepares the data for analytics by cleaning it up
69
Amazon Kinesis
- Collect, process, and analyze data in real time at any scale
70
Amazon QuickSight
- Business intelligence service with ML integrations that helps you quickly build visualizations and obtain business insights
71
AWS CloudFormation
- Templates for resource deployment in AWS
- Provision and deploy full configured infrastructure
- Pay only for resources used in the templates
- Manage templates (stacks) via AWS Console, AWS CLI, or AWS SDK
- Version control available
- Infrastructure as code: deploy infrastructure based on a text file that specifies resources and configurations for each service being deployed
72
AWS CloudTrail
- Monitor and audit infrastructure for compliance, user activity/API usage, and risk auditing
- Discover, troubleshoot, and respond to security and operational issues
- Track actions through AWS Console, AWS CLI, and AWS SDKs
- Free review of account activities in the last 90 days
- Logging of data events has small fees
73
Amazon CloudWatch
- Monitoring and management service for AWS infrastructure
- System-wide visibility into resource utilization, application performance, and operational health
- Real-time notifications on data, metrics, and events
74
Business Application Services
- Amazon Connect
- Amazon Simple Email Service (AMAZON SES)
75
Customer Engagement Services
- AWS Activate for startups
- AWS IQ
- AWS Managed Services (AMS)
- AWS Support
76
Developer Tool Services
- AWS AppConfig
- AWS Cloud9
- AWS Cloudshell
- AWS CodeArtifact
- AWS CodeBuild
- AWS CodeCommit
- AWS CodeDeploy
- AWS CodePipeline
- AWS CodeStar
- AWS X-Ray
77
End-User Computing Services
- Amazon AppStream 2.0
- Amazon WorkSpaces
- Amazon WorkSpaces Web
78
Front-End Web and Mobile Services
- AWS Amplify
- AWS AppSync
79
Internet of Things (IoT) Services
- AWS IoT Core
- AWS IoT Greengrass
