Containers Flashcards
What is ECR?
Amazon Elastic Container Registry (ECR) allows us to easily store, share, and deploy our container software anywhere. ECR is a fully managed container registry offering high-performance hosting that allows us to reliably deploy application images and artifacts from anywhere. Similar to DockerHub, but for AWS.
How many registries can an AWS account have?
Each AWS account has a public and private registry.
What are the default permissions on a public registry?
Public registries offer read-only access to everyone, but read-write requires permissions.
What are the default permissions on a private registry?
Private registries on the other hand, require permissions for any reading or writing.
True/False. Each registry can have many repositories. Each repository can contain many images. A given image can have several tags.
True.
What are some ECR features?
Integration with IAM, Image scanning, Nearly real-time metrics via CloudWatch, API Action logging in CloudTrail, Event logging in EventBridge, Replication of images, both cross-region and cross-account
What is ECS?
Amazon ECS is a fully managed container orchestration service that makes it easy for us to deploy, manage, and scale containerized applications.
It is deeply integrated with the rest of the AWS platform to provide a secure and easy-to-use solution for running container workloads in the cloud (as well as on our own infrastructure now with the release of Amazon ECS Anywhere).
What are container definitions used for?
Container definitions are used inside of task definitions to describe the different containers that are launched as part of a task. Container definitions define the image and ports that will be used for a container.
What is a task definition?
A task definition is required to run Docker containers in Amazon ECS.
What are some parameters of task definitions?
-The Docker image to use with each container in our task
-How much CPU and memory to use with each task or each container within a task
-The IAM role that our tasks use (Task Role)
-The launch type to use, which determines the infrastructure that our tasks are hosted on
True/False. Inside of a task definition we can define only one container.
False. Inside of a task definition we can define multiple containers.
What is a Task?
A task is the instantiation of a task definition within a cluster.
What is a Service Definition?
A service definition can be used to help with scaling and high availability because it allows us to choose how many copies of a task we would like to run.
What is EKS?
Amazon EKS is a managed Kubernetes service for running Kubernetes in the AWS cloud and on-premises data centers.
EKS can run on AWS, Outposts, EKS Anywhere, and EKS Distro.
When using EKS, what parts are managed by AWS?
When using EKS, the Kubernetes control plane and scaling is managed by AWS, and it runs on multiple AZs.
