Technology Flashcards
AWS Storage Gateway
Enables you to build hybrid cloud solutions by giving access to the Amazon S3 and Glacier environments from your on-premises network.
The gateway types are Amazon S3 File Gateway, Amazon FSx File Gateway, Tape Gateway, and Volume Gateway.
Amazon Cloudwatch
A service that enables real-time monitoring of AWS resources such as EC2 instances, EBS volumes, load balancing, and RDS instances.
Features anomaly detection and billing alarms
Cloudwatch Logs
Enables users to centralize logs from all their systems, applications, and AWS services in a single, highly scalable service
Amazon Cloudtrail
Service that enables operational and risk auditing, governance, and compliance of an AWS account.
CloudTrail provides event history of account activity, including actions taken through the AWS Management Console, AWS Command Line Interface, and AWS SDKs and APIs.
AWS Config
A fully managed service that provides resource inventory, configuration history, and configuration change notifications to use security and governance
Cloudtrail Lakes
Links to external sources of data history
Amazon CloudFront
Web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users. CloudFront delivers your content through a worldwide network of data centers called edge locations
Amazon Machine Images (AMIs)
Templates of preconfigured EC2 instances to quickly launch new EC2s
Elastic Computing Cloud (EC2)
Enables businesses to run applications on the public cloud by providing cloud-hosted virtual machines called “instances”. An EC2 instance is a virtual server that allows users to request and provision a computer server within the AWS cloud.
Micro Instances
Low-cost insurance option, providing small amounts of CPU resources
Suited for low throughput applications like low traffic websites and bastion hosts
General Purpose Instances
Best for balanced computing, memory, and network resources. Good for small to medium databases, catching fleets, and SAP background servers
Compute-Optimized Instances
Highest performing power, good for webservers, distributed analytics, science/engineering applications
GPU Instances
Best for 3D grahpics, rendering, and HPC
FGPA Instances
Field-programmable data rays, best for genomics and financial computing
Memory-Optimized Instances
Lowest cost per GB of RAM, good for databases and Microsoft SharePoint
Storage-Optimized Instances
SSD backed storage, low latency / high IO, good for large scale NOSQL
Tenancy
Underlying host of EC2 Instance (Physical Server)
Persistent Storage
Attaching EBS volumes, data can unattach and reattach to other EC2 servers, and users can implement encryption / backup snapshots
Ephemeral Storage
Temporary; EC2 Instances on local storage, physically attached rather than network attached
Data is lost if instance is terminated, but not if it is rebooted
Elastic Container Service (ECS)
Lets you run docker-enabled applications across a cluster of EC2 instances
Amazon Fargate
Enables ECS to run containers without having to manage provision instances / clusters for containers
Docker
Software that automates installation / distribution of apps in living containers
Container
Holds everything an app needs to run in a package (library code, tools, ect – not OS)
EC2 Launch
Launching an EC2 from an AMI with more customization of instance types and the number of containers per cluister
Fargate Launch
Launching an EC2 with more automated setup, only specify CPU / memory
Cluster
Collection of dynamically scalable instances, can schedule / deploy containers inside
Elastic Container Registry (ECR)
Secure location to store and manage docker images
IAM Policies
Controls access to registry and images
Authorization Token
Authenticates docker client as an AWS user before accessing the registry, lasts 12 hours
Repository
Objects within the registry that group and secure different docker images
Resourced Based Policies
IAM permission policies that are attached to a resource, such as Amazon S3 buckets, Amazon SQS queues, VPC endpoints, and AWS Key Management Service encryption keys.3 They grant permissions to the principal that is specified in the policy and specify who or what can invoke an API from a resource to which the policy is attached
Elastic Kubernetes Service (EKS)
Runs and scales the Kubernetes control plane across multiple AWS Availability Zones to ensure high availability
Uses worker nodes as on demand instances / includes software for containers
Elastic Beanstalk
Takes uploaded code and automatically deploys required resources within AWS (free)
AWS Lambda
Serverless compute services that run without ECF management, only pay when in use
Lambda functions invoke when triggered by event sources
Batch Computing
Dynamically provisions compute resources and optimizes the workload distribution based on the volume and specific resource requirements of the batch jobs submitted
Good for running tasks in parallel
Batch Jobs
Unit of work for batch that operate in states, scheduled in a queue
Job Definitions
Defined parameters for jobs to dictate how it will run (how many VCPUs / data volumes)
Amazon Lightsail
A virtual private server with less configuration, good for small scales at low cost point
Elastic Load Balancer (ELB)
Automatically distributes incoming application traffic across multiple targets, such as EC2 instances, containers, and IP addresses, in one or more Availability Zones (AZs) within an AWS Region
Application Load Balancer
Type of ELB with flexible features for HTTPS protocols, operating at the request level in the application layer
Selects a target based on the routing table rule, then uses round-robin distribution to select a node in the web server
Network Load Balancer
Type of ELB with high performance, operates at connection level in the network layer
Classic Load Balancer
Type of ELB for apps already on EC2, operates at both connection and request level
Uses round-robin load distribution for TCP listeners
Listeners
Routes connections in an ELB to a target group, minimum 1 required
Target Group
Group of resources ECB routes requests to
Rules
Determine which requests go where based on rule definiton
Health Checks
Contacts targets to ensure their activity, otherwise marked as unhealthy
Internal ELB
Only serves requests within the VPC
Internet-Facing ELB
Accessible via internet with a public DNS name, serving incoming requestrs before distributions
Autoscaling
Automatically increase / decrease EC2 Resources based on demand, can be grouped
Healthy Threshold
Number of instance responses to be considered healthy
Unhealthy threshold is the opposite
AWS Certificate Manager (ACM)
Provisions digital IDs for the server, such as SSL certs and X.509
Simple Storage Service (Amazon S3)
Object-based storage, where data is stored inside S3 buckets in distinct units called objects instead of files
Life Cycles Rules
Determine when to move storage classes to the next stage
S3 Standard
S3 storage class great for frequent access, low latency, high throughput
S3 Intelligence Tiering (INT)
S3 Storage class that intelligentially moves buckets from S3-F to S3 IA after 30 days
S3 IA
S3 Storage Class meant for infrequent access, cheaper and 99.9% available
S3 Z-IA
S3 Storage class for infrequent access in only one AZ
S3 Glacier
S3 Storage class for cheap, cold storage that doesn’t require instant access
S3 G_DA
S3 Storage class for cheapest data sotrage for long term but little access
Expediated Glacier Retrieval
Retrieve data from S3 Glacier in 1-5 minutes for under 250 MB