Deployments & Managing Infrastructure at Scale Flashcards
1
Q
AWS CDK (Cloud Development Kit)
A
- Define cloud infrastructure using a familiar language
- Code compiled into a CloudFormation template
- Can deploy infrastructure and application runtime code together
2
Q
CloudFormation
A
- A declarative way of outlining AWS Infrastructure for any resources
- Creates resources, in the right order with the exact configuration specified
- Infrastructure as code
- Repeat any architecture in different environments, regions, accounts
- Supports most AWS resources
3
Q
Elastic Beanstalk
A
- Platform as a Service
- Managed service
- Dev centric view of deploying applications
- Free but pay for underlying instances
4
Q
Elastic Beanstalk Arhitecure models
A
- Single instance deployment: good for dev
- LB + ASG: great for prod or pre-prod web apps
- ASG only: great for non-web apps in prod
5
Q
AWS CodeDeploy
A
- Deploy applications automatically
- EC2 and On-Prem Servers
- Hybrid service
- Servers/instances provisioned ahead of time with CloudDeploy Agent
6
Q
CodeCommit
A
- Sunset
- Replacement for GitHub
- Code repository
7
Q
AWS CodeBuild
A
- Code building service in the cloud
- Compiles source code, run tests, and produce packages ready to deploy
- Fully manage, serverless
- Continuously scalable & highly available
- Secure
- Pay as you go pricing - only pay for build time
8
Q
AWS CodePipeline
A
Orchestrate the different steps to have the code automatically pushed to prod
* CICD (Continuous Intergration & Continuous Delivery)
* Fully managed
* Fast delivery and rapid updates
* Orchestation of pipeline
9
Q
AWS CodeArtifact
A
- SW packages depend on each other to built (Code dependencies)
- Storing and retrieving dependencies is artifact management
- Secure, Scalable, and cost-effective artifact management for SW dev
- Works with common dependency management tools
- Devs and CodeBuild can retrieve dependencies straight from CodeArtifact
10
Q
SSM (Systems Manager)
A
- Manage EC2 and on-prem systems at scale
- Hybrid service
- Operation insights about infrastructure
- Patch automation for compliance
- Run commands across fleet of servers.
- Linux, Windows, Mac, and Raspberry Pi
11
Q
How SSM (Systems Manager) works
A
- Install SSM agent on client systems
- Installed by default on Amz Linux AMI and some Ubuntu AMI
- If an instance can’t be controlled with SSM it is likely an issue with the agent
- Can run commands, patch, & configure our servers
12
Q
SSM Session Manager
A
- Start secure shell on EC2 and on-prem servers
- No SSH access, bastion hosts, or SSH key needed
- No port 22 needed (better sec)
- Linux, Mac, and Windows
- Send session log data to S3 or CloudWatch Logs
13
Q
SSM Parameter Store
A
- Secure storage for config and secrets (pwd, API keys)
- Serverless, scalable, durable, easy SDK
- Control access permission using IAM
- Version tracking & encryption (optional)
14
Q
Elastic Beanstalk
Health Monitoring
A
- Health agnet pushes metrics to CloudWatch
- Checks for app health, publishes health events