Technology Flashcards
What is Lambda
- Serverless compute service that lets you run code without managing servers
- You author application code, called functions, using many popular languages
- Scales automatically
Lambda pricing models
- You are charged based on the duration and number of requests
- Compute time: Pay only for compute time used. There is no charge if you code is not running
- Request count: A request is counted each time it starts execution. Test invokes in the console count as well
- Always free: The free usage tier includes 1 million free requests each month
What is EC2?
Elastic Compute Cloud: Allows you to rent and manage virtual servers in the cloud. You receive up to 750 compute hours per month on the free tier
What are the EC2 instance types?
- General purpose instances
- Compute optimized instances: Ideal for compute intensive tasks like gaming services, high performance computing, and scientific modeling
- Memory optimized instances: Ideal for memory intensive tasks, graphics processing, data pattern matching
- Accelerated computing instances: Use hardware accelerators, or co-processors, to perform functions, such as floating point number calculations, graphics processing, or data pattern matching, more efficiently than is possible in software running on CPUs
- Storage optimized instances: Ideal for workloads that require high levels of storage
How can you access and connect to EC2?
- AWS Management console: You’re able to configure and manage your instances via a web browser
- Secure Shell (SSH): SSH allows you to establish a secure connection to your instance from your local laptop. SSH is the most common way to connect to Linux EC2 instances. Access by generating a key pair and installing an agent on the laptop
- EC2 Instance Connect (EIC): EIC allows you to use IAM policies to control SSH access to your instances, removing the need to manage SSH keys
What are the EC2 pricing options?
- On-demand
- Spot instances: Lets you take advantage of unused EC2 capacity. Your request is fulfilled only if capacity is available. You can save up to 90% off on-demand prices and you pay the spot price at the time
- Reserved instances (RI’s): Pre-paying for instances. You can save up to 75% off on-demand prices
- Dedicated hosts and instances: Allows you to pay for a physical server that is fully dedicated to running your instances. You use this when you want to bring your own server bound software license. Dedicated host is a physical server where dedicated instance runs on the host.
- Savings plan: Allows you to commit to compute usage (measured per hour) for 1 to 3 years
What is Elastic Load Balancing (ELB)?
- AWS Elastic Load Balancing (ELB): Balances loads for requests and traffic for requested services (e.g., a greeter and hostess at a restaurant). Different kinds of load balances are classic, application, gateway, and network.
- Auto-scaling adds or replaces EC2 instances automatically across Availability Zones, based on need and changing demands (i.e., horizontal scaling)
What is AWS Fargate?
- Fargate is a serverless compute engine for containers
- Allows you to manage containers, like Docker
- Scales automatically
What is AWS Elastic Kubernetes Service (EKS)?
EKS lets you run your containerized Kubernetes applications on both Amazon EC2 and AWS Fargate.
What is AWS Elastic Container Service (ECS)
ECS lets you run your containerized Docker applications on both Amazon EC2 and AWS Fargate.
What is AWS Lightsail?
i. Allows you to quickly launch all the resources you need for small projects
ii. Deploy preconfigured applications, like WordPress websites, at the click of a button
iii. Simple screens for people with no cloud experience
iv. Includes a virtual machine, SSD-based storage, data transfer, DNS management, and a static IP
v. Provides a low, predictable monthly fee, as low as $3.50
What is AWS Outpost?
i. Allows you to run cloud services in your internal data center
ii. Supports workloads that need to remain on-premise due to latency or data processing needs
iii. AWS delivers and installs servers in your internal data center
iv. Used for a hybrid experience
v. Have access to the cloud services and APIs to develop apps on-premise
What is AWS Batch?
i. Allows you to process large workloads in smaller chunks (or batches)
ii. Run hundreds of thousands of smaller batch processing jobs
iii. Dynamically provisions instances based on volume
iv. Example: Alfredo’s pizza wants to breakup the job of sending out 50,000 emails into 1,00 email chunks
What is AWS Simple Storage Service (S3)?
S3 is object storage service for the cloud that is highly available. Objects (or files) are stored in buckets (or directories).
What are S3 storage options?
- Elastic Block Store (EBS)
- Elastic Block Store (EBS) Snapshot
- Elastic File System
- EC2 Instance Store
- Storage gateway (hybrid service)
What is S3’s Elastic Block Storage (EBS)
i. EBS is a storage device (called a volume) that can be attached to or removed from your instance.
ii. Can only be attached to one instance in the same AZ
iii. Recommended for quickly accessible data
What is S3’s EC2 instance store?
i. An instance store is local storage that is physically attached to the host computer and cannot be removed
ii. Storage on disks physically attached to an instance
iii. Storage is temporary since data loss occurs when EC2 instance is stopped
iv. Recommended for temporary storage needs and data replicated across multiple instances
What is S3’s EBS Snapshot?
An incremental backup. The first backup taken of a volume copies all data. All subsequent backups only the blocks of data that changed since the most recent snapshots are saved
What is S3’s Elastic File System (EFS)
i. Serverless network file system for sharing files
ii. Only supports the Linux file system
iii. Can have multiple instances reading and writing simultaneously
iv. Automatically scales
v. More expensive than EBS
vi. Accessible across different AZ in the same region
vii. Recommended for main directories for business-critical apps and lift-and-shift existing enterprise apps
What is S3’s Storage Gateway?
i. Hybrid storage service
ii. Connects on-premises and cloud data
iii. Recommended for moving backups to the cloud, reducing costs for hybrid cloud storage, and low latency access to data
What are the different S3 storage classifications?
- S3 Standard: General purpose storage. Low latency and high throughput.
- S3 intelligent tiering: Automatically moves your data to the most cost-effective storage class. Recommended for data with unknown changing access pattern
- S3 Standard-Infrequent Access (IA): Data accessed less frequently, but requires rapid access. Recommended for long-lives data, infrequently accessed, but with millisecond access requirements
- S3 One Zone-Infrequent access: Like S3 standard IA, but data stored in a single availability zone. Data stored in this storage class can be lost. Recommended for re-creatable data
- S3 Glacier: Long-term data storage and archival for lower costs. Data retrieval takes longer. Data stored across multiple availability zones. Recommended for long-term backups and cheaper storage option. Write once read many (WORM) permissions are common in this instance so that way edits do not occur on archived instances
- S3 Glacier Deep Archive: Like S3 Glacier but longer access times. Only 2 retrieval options. Recommended for long-term data archival accessed once or twice a year, also for retaining data for regulatory compliance requirements
- S3 Outposts: Provides object storage on-premises. Recommended for data that needs to be kept local and demanding application performance needs.
What is AWS’ Content Delivery Network (CDN) service?
CDN is a mechanism to deliver content quickly and efficiently based on geographical location
What is CloudFront?
a. CloudFront is a CDN that delivers data and applications globally with low latency
b. Makes content available globally or restrict it based on location
c. Speeds up delivery of static and dynamic web content
d. Uses edge locations to cache content. If content is already in the edge location, CloudFront delivers it immediately, otherwise CloudFront retrieves the files from the origin
What is AWS Global Accelerator?
i. Sends your users through the AWS global network when accessing your content, speeding up delivery
ii. Improves latency and availability of single-region applications
iii. Sends traffic through the AWS global network infrastructure
iv. 60% performance boost
v. Automatically re-routes traffic to healthy available regional endpoints
What is AWS S3 Transfer Acceleration?
i. Improves content uploads and downloads to and from S3 buckets
ii. Fast transfer of files over long distances
iii. Uses CloudFront’s globally distributes edge locations
iv. Customers around the world can upload to a central bucket
What is AWS Virtual Public Cloud (VPC)?
Foundational service that allows you to create a secure private network in the AWS cloud where you can launch your resources. Is the network layer for EC2
What is VPC peering?
a. Enables you to launch AWS resources into a virtual network that you’ve defined
b. A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses
c. Peering facilitates the transfer of data in a secure manner
What is the difference between stateful and stateless filtering?
a. Network ACL’s perform stateless packet filtering, where they remember nothing and check packets that cross the subnet border inbound and outbound. AWS is configured by default to be stateful and allow all inbound and outbound traffic
b. Security groups perform stateless packet filtering, where they don’t remember previous decisions made for incoming packets. They deny all inbound traffic by default
What is AWS Route 53?
a. Route 53 is a DNS service that routes users to your applications
b. Executes domain name registration
c. Performs health checks on AWS resources
d. Supports hybrid cloud architectures
e. Connect user requests to infrastructure in AWS and outside of AWS.
What is AWS Direct Connect?
A dedicated physical network connection from your on-premise data center to AWS. Supports a hybrid model
What is AWS VPN?
a. Site to site VPN creates a secure connection between your internal networks and your AWS VPC
b. Similar to Direct Connect but travels over the public internet
c. Data is automatically encrypted
How is AWS Relational Database Service (RDS) different than AWS DynamoDB?
RDS can only support relational databases and is only compatible with mySQL and PostgressSQL. AWS DynamoDB supports non-relational NoSQL key-value and document databases.
What is AWS DynamoDB Accelerator (DAX)
Native cache layer designed to reduced read times for DynamoDB databases. Is an in-memory cache for DynamoDB.
