Domain 1: Design Resilient Architectures Flashcards
Decoupling
different pieces of the design being able to function autonomously from other pieces
CDN, Content Delivery Networking
moving content very close to the end user
User Data
often used as a text or file, the script that you want executed when the EC2 instance launches
Default Security Group
Allows all traffic and protocols through all port ranges
Key Pair
used to access an instance
Elastic Interface
allows you or AWS to attach dynamically a GPU, the gpu power will increase or decrease depending on its need, autoscaling
Decoupling Advantages
- Failure of a component can be survived
- Modify Components as needed
- Launch or terminate as needed
- Reduce impact on users of our changes
Synchronous Decoupling
- Components must always be available for the solution to function
- Ex. load balancing between EC2 instances in different AZs
Asynchronous Decoupling
- Loose
- Component can go offline, and the messaging can be queued
SQS Queue Types
- Standard
- FIFO
Standard Queue Type
- Messaging ordering isnt preserved
- Atleast once delivery
- Very fast
- Unlimited transactions per second per API action
FIFO Queue Type
- Messaging ordering is preserved
- Exactly once processing
- No duplication
SNS
Pushes out notifications for activities, alerts, thresholds, large sums, etc.
System-to-system messaging
a managed messaging service that lets you decouple publishers from subscribers. This is useful for system-to-system messaging for micro services, distributed architectures, and server less applications
SNS- User Notifications
lets you send push notifications to mobile apps, text messages to mobile phone numbers, and plain text emails to email addresses. You can fan out messages with a topic, or publish to mobile endpoints directly
API Gateway
Application Programming Interface, Sits between a collection of backend services,
- Creates API’s
- Publishes API’s
- Maintaining API’s
- Monitoring API’s
- Securing API’s
API Gateway Types
- HTTP API
- WebSocket API
- REST API
- REST API private
HTTP API
- Build low latency and cost effective REST API’s with built in features such as OIDC and OAuth2, and native CORS support.
- Works with: Lambda, HTTP backends
WebSocket API
- Uses persistent connections for real-time use cases such as chat applications or dashboards.
- Works with: Lambda, HTTP, AWS Services
REST API
- REST API where you gain complete control over the request and response along with API management capabilities
- Works with: Lambda, HTTP, AWS Services
REST API private
- Rest API that is only accessible from within a VPC
- Works with: Lambda, HTTP, AWS Services
Classic Load Balancer
Not used often,Used when you have an existing application running in the EC2-Classic network
Application Load Balancer
focuses on web app requests and Http/https traffic, operates on request level
Network Load Balancer
- Ultra-high performance
- TLS offloading at scale
- Centralized certificate deployment
- Support for UDP and Static IP addresses for your application
- Connection level
TLS Offloading- a proxy server that acts as an intermediary point between client and server applications, and is used to terminate and/or establish TLS (or DTLS) tunnels by decrypting and/or encrypting communications.
Gateway Load Balancer
Used when you need to deploy and manage a fleet of third-party virtual appliances that support GENEVE. These appliances enable you to improve security, compliance, and policy controls.
Load Balancing
ELB automatically distributes incoming application traffic and scales resources to meet traffic demands
S3, as a Resilient storage
- Simple Storage Service,
- object based storage,
- can have amazon take the objects that are being stored in a region inside of an S3 bucket and automatically replicate those objects to a different AZ
EBS, as a Resilient Storage
- Elastic Block Storage
- used underlying an EC2 instance for its boot/ root volume
- will be located in an AZ where the EC2 instance that needs it is located
- can get a snapshot (copy) at anytime and put it in another AZ
EFS, as a Resilient Storage
Elastic File System,
- automatically replicates across AZs,
- EFS is typically the network file storage for linux systems,
- very resilient
FSx, as a Resilient Storage
Windows systems, used for windows file server, can choose between a single AZ or resiliently store over several AZ
Versioning
S3, is a means of keeping multiple variants of an object in the same bucket. You can use the S3 Versioning feature to preserve, retrieve, and restore every version of every object stored in your buckets.
S3 Glacier- Vault
You organize your data in Amazon S3 Glacier using vaults. Checks Inventory once a day and will show updated results then
Where do you create a Vault, and Archive in Glacier?
- Vault, created in the management console
- Archive, created in the CLI or code
S3 Glacier- Archive
An archive is any object, such as a photo, video, or document, that you store in a vault. This is done through code or CLI
CloudFormation
Provides a common language to describe and provision all the infrastructure resources in your environment in a safe, repeatable way
CloudFormation Advantages
- Validated, building something using code
- Can save templates to use later
- Can make copies of architectures for testing
- Can use GUI to design architectures and have them scripted
CloudFormation Stacks
Collection of AWS resources that you can manage as a single unit. All the resources in a stack are defined by the stack’s AWS CloudFormation template
CloudFormation Stacksets
StackSets enables you to create, update, or delete stacks across multiple accounts and regions with a single operation
