S3

Question 1

S3 Outline

Answer 1

• 101 and Bucket
• Versioning and Lifecycle Management
• CRR
• Security and Encryption
• Storage Gateway
• Snowball
• S3 Static Website
• Transfer Acceleration
  *

Question 2

S3 Versioning Exam Essentials

Answer 2

1. Store all versions of an object (incl. all writes and even you delete an object)
2. Great backup tools
3. Once enabled. Can not be disabled only suspended
4. integrated with Lifecycle rules
5. Versioning’s MFA Delete capability, using MFA to provide additional layer of security

Question 3

S3 101 Basics

Answer 3

• S3 is object based. Allow you to upload files, not for OS and APPs
• Files can be from 0 Bytes to 5 TB
• Unlimited storage
• Files stored in bucket
• Using a universal namespace and every bucket’s must be unique
• Name structure : https://s3-eu-west-1.amazonaws.com/acloudguru
• HTTP 200 status code for successfully uploading.
• Key fundamentals:
  
  • Key (name)
  • Value (data)
  • Version ID
  • Metadata
  • Subresources
    
    • ACL
    • Torrent

Question 4

S3 Storage Classes/Tiers

Answer 4

• S3 (durable, immediately accessible, frequently accessed)
• S3-IA :durable, immediately accessible, infrequently accessed
• S3-RRS :durable, immediately accessible, frequently accessed,low redundancy for reproducible data such as thumb nails etc.
• S3-One Zone-IA : Availablility lower than S3-IA, 99.5% yearly.
• Glacier : Achived date, optional minutes or hours wating time before accessible.

Question 5

Bucket Basics

Answer 5

• Universal space
• Upload an object to S3 receive a HTTP 200 Code when successfull
• S3, S3IA, S3 OZIA, S3 RRS,
• Encryption:
  
  • Client side encryption
  • Server side encryption
    
    • AWS SSE-S3
    • SSE-KMS
    • SSE-C
• Control access to bucket using either a bucket ACL or Bucket Policy
• Buckets and objects in them are private by default

Question 6

S3-Cross Region Replication

• Versioning enable for source and destination buckets
• Regions must be unique for source and destination
• Files existing before CRR enabled will not be replicated automatically and subsequent updates will be replicated automatically.
• CAN NOT replicate to multiple buckets or using daisy chaining (currently only)
• Delete markers are replicated
• Deleting individual versions or delete markers will not be replicated.
• Master CRR at a high level

Question 7

S3-Charges

• Storage
• Requests
• Storage Management Pricing : CRR, Versioning etc, Encryption
• Data Transfer Pricing
• Transfer Acceleration

Question 8

What is the minimum object size for S3 - IA?

Answer 8

128KB

Question 9

S3-Security

Answer 9

• In transit : TLS
• At rest:
  
  • Client side encryption
  • Server side encryption:
    
    • SSE - S3
    • SSE - KMS
    • SSE - C

Question 10

Storage Gateway

Answer 10

• VM Image ready for VMware ESXi or MS Hyper-V
• Install and activation within AWS Console
• Type:
  
  • File Gateway (NFS) : Flat files stored directly into S3 , Can be deployed on premises or within VPC
  • Volumes Gateway (iSCSI) :
    
    • Stored Volumes : Entire Dataset on site 1G - 16T, Incremental snapshot backuped into S3
    • Cached Volumes : Entire Dataset on S3, most frequently accessed data cached on site.
  • Tape Gateway (VTL) : for backup using NetBackup, Backup Exec, Veeam etc.

Question 11

Snowball

Answer 11

• Snowball:
  
  • PB scale data transport solution
  • TPM for security
  • 80TB all regions
• Snowball edge : 100TB with computation power
• Snowmobile : 100PB
• TIPS:
  
  • Import/Export to S3
  • Import and export

Question 12

snowball Lab

Answer 12

• Install snowball client
• connect and power on snowball
• using snowball command to copy files into snowball

Question 13

S3 Transfer Acceleration

Answer 13

• Using AWS Backbone network, CloudFront and Edge Location to accelerate data transfer.

Question 14

Static Website hosting

Answer 14

• Only for static content not for dynamic such as php etc.
• automatically scaling
• URL format : http://mynimbuswebsite.s3-website-us-east-1.amazonaws.com/