Resources Flashcards
Memorize the propose of resources
EC2
EC2 offers resizable compute capacity in the cloud. Designed to make web-scale cloud computing easier for developers, EC2 allows users to obtain and configure virtual servers, known as instances, with flexible, scalable options and a variety of pricing models.
Athena
Amazon Athena is an interactive query service that allows you to analyze data in Amazon S3 using standard SQL. It is serverless, meaning there is no infrastructure to manage, and you pay only for the queries you run. Athena can handle complex queries, and it integrates seamlessly with AWS Glue for data cataloging.
APN Consulting Partner
APN Consulting Partners are professional service firms in the AWS Partner Network (APN) that help customers design, architect, build, migrate, and manage their workloads and applications on AWS. These partners include system integrators, strategic consultancies, agencies, managed service providers (MSPs), and value-added resellers (VARs) that offer a range of services and support to optimize AWS environments.
IQ
AWS IQ is a service that connects AWS customers with AWS Certified Experts for on-demand project assistance. Customers can find, engage, and pay experts for help with AWS projects, such as setting up new environments, migrating workloads, or optimizing current setups. The service simplifies the process of obtaining professional expertise directly through the AWS Management Console.
Service Catalog
AWS Service Catalog allows organizations to create and manage catalogs of IT services that are approved for use on AWS. These services can include virtual machine images, servers, software, and databases. It helps maintain governance, compliance, and enables users to quickly deploy only the approved IT services they need, following best practices.
VPC Endpoint
A VPC Endpoint allows you to privately connect your Amazon Virtual Private Cloud (VPC) to supported AWS services and VPC endpoint services powered by AWS PrivateLink, without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect connection. This enables secure and efficient communication between your VPC and AWS services, ensuring that traffic never leaves the AWS network
VPC Endpoint Gateway
A VPC Endpoint Gateway is a type of VPC endpoint that allows your Amazon Virtual Private Cloud (VPC) to privately connect to AWS services using route tables, without requiring an internet gateway, NAT device, VPN connection, or AWS Direct Connect. It provides scalable and reliable access to services like Amazon S3 and DynamoDB from your VPC, using private IP addresses and ensuring that traffic stays within the AWS network
VPC NAT Gateway
A NAT Gateway in Amazon VPC enables instances in a private subnet to connect to the internet or other AWS services, while preventing the internet from initiating connections with those instances. NAT Gateways are managed by AWS, providing high availability and scalability. They eliminate the need to manage NAT instances, offering a simpler and more reliable solution for outbound internet access
VPC Network ACL
A Network Access Control List (ACL) in Amazon VPC is a stateless firewall that controls inbound and outbound traffic at the subnet level. It provides an additional layer of security by allowing or denying specific traffic based on defined rules. Each VPC automatically comes with a default ACL, and you can create custom ACLs for granular traffic control to enhance security for your applications
AWS VPC
Amazon Virtual Private Cloud (VPC) allows you to provision a logically isolated section of the AWS cloud where you can launch AWS resources in a virtual network that you define. VPC provides complete control over network settings, including IP address ranges, subnets, route tables, and network gateways, ensuring a secure and customizable networking environment for your applications
Global Accelerator
AWS Global Accelerator is a networking service that improves the availability and performance of your applications with global users. It provides two static IP addresses that act as a fixed entry point to your application endpoints, such as EC2 instances, load balancers, and S3 buckets. Global Accelerator uses the AWS global network to route user traffic to the optimal endpoint based on health, geographic location, and policies, enhancing the user experience by reducing latency and ensuring high availability
Amazon Inspector
Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. It performs a detailed analysis of the behavior of your applications by examining the network configurations, and operating system, and reviewing the permissions of the AWS resources associated with your applications. Inspector identifies vulnerabilities, deviations from best practices, and produces a list of prioritized security findings to help developers remediate potential risks. Occur inside of your application
AWS WAF
AWS WAF (Web Application Firewall) is a security service that helps protect your web applications from common web exploits and vulnerabilities. It allows you to create custom security rules to block common attack patterns, such as SQL injection or cross-site scripting (XSS), and can be deployed on Amazon CloudFront, Application Load Balancer, and API Gateway. AWS WAF provides real-time monitoring and automatic scaling to handle traffic as your application demands grow
AWS Shield
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. It provides two levels of protection: Shield Standard, which is automatically included at no additional cost with all AWS services and protects against common, most frequently occurring network and transport layer DDoS attacks; and Shield Advanced, which provides enhanced protection for more sophisticated attacks, 24/7 access to the AWS DDoS Response Team (DRT), real-time attack diagnostics, and cost protection against scaling during attacks.
GuardDuty
Amazon GuardDuty is a threat detection service that continuously monitors your AWS accounts and workloads for malicious activity and unauthorized behavior. It uses machine learning, anomaly detection, and integrated threat intelligence to identify potential threats. GuardDuty analyzes data from multiple AWS sources, such as CloudTrail logs, VPC flow logs, and DNS logs, providing detailed security findings that help you quickly respond to potential security issues
