Technology Flashcards
What is S3?
Simple storage service
secure, durable, highly-scalable flat object storage
Files from 0 to 5TB
unlimited storage in buckets
HTTP 200 code if upload successful - cannot upload database
Universal namespace - global service
What does object consist of?
Key - name Value - data Version ID Metadata Subresources - access control lists, torrent
How does data consistency work for S3?
Read and write consistency for PUTS of new objects
Eventual consistency for overwrite PUTS and DELETES can take longer ie will see older version
What does Amazon guarantee for S3?
11 9s durability 99.99…
99.9% availability
What are the features of S3?
Tiered storage available Object lifecycle management Versioning Encryption at rest Secure your data using access control list and bucket policies Static website hosting
What are the storage classes?
S3 Standard - 11 9s and 99.9% one
S3 infrequently accessed - rapid access but with retrieval fee
S3 One Zone IA - not as resilient
S3 Intelligent Tiering - optimise costs using machine learning
S3 Glacier - secure, durable, and low cost storage class for data archiving
S3 Glacier deep archive - lowest cost with 12 hour retrieval time
S3 Outpost - object storage on prem
How are you charged for S3?
Storage, requests, storage management pricing, data transfer pricing, transfer acceleration, cross region replication pricing
What is S3 transfer acceleration?
enables fast, easy, and secure transfers of files over long distances between your end users and an S3 bucket
Transfer acceleration takes advantage of amazon cloudfront’s globally distributed edge locations - data is routed to amazon S3 over an optimised network path from edge location
How can bucket access be restricted?
Bucket policies
Object policies
IAM policies to users and groups
What is S3 Versioning?
Stores all versions of an object Great backup tool Cannot be disabled Integrates with lifecycle rules Versioning's MFA delete capability
What is CloudFront?
Content Delivery Network (CDN) - distributed servers that deliver webpages and other web content to a user based on the geographic location of the user, the origin of the webpage, and a content delivery server
What is an edge location?
Location where content will be cached - separate from AZ
What is the origin?
Origin of all the files CDN will distribute - eg S3 bucket
What is distribution?
Name given to CDN for collection of Edge locations
Two types - web or RTMP
What is TTL?
Time to live - Default 24 hours
What is EC2?
Elastic cloud compute
virtual server - reduces the time to obtain and boot new server instances to minutes, allowing you to quickly scale capacity up or down
What are the pricing models?
On demand - fixed rate by the hour with no commitment
Reserved - capacity reservation huge discounts on hourly charge - 1/3 year contracts
Spot - bid price that you want to pay
Dedicated host - physical EC2 servers, reduce your costs allowing you to use server-bound software licenses
What is reserved useful for?
Steady state or predictable usage
Require reserved usage
What is spot pricing useful for?
Applications that have flexible start and end times
Applications that are only feasible at very low compute prices
Users with urgent computing needs for large amounts of additional capacity
What is dedicated host useful for?
Regulatory requirements that may not support multi-tenant virtualisation
Can be purchased on-demand
What is EBS?
Allows you to create storage volumes and attach them to Amazon instances
once attached you can create a file system on top of these volumes, run a database, or use them in any other way you would like
What types of EBS?
SSD - general purpose (GP2) or provisioned IOPS (IO1)
Magnetic - throughput optimised HDD (ST1) or
Cold HDD (SC1) or magnetic
Why use roles?
Roles are much more secure than using access key id’s and secret access keys are much easier to manage
Can apply role to EC2 instance at any time - acts immediately
Roles are universal - do not need to specify what region they are in
What is an application load balancer?
Good for applications
Can view code
Layer 7 aware - make intelligent decisions
What is a network load balancer?
Ultra-high performance and static IP addresses
What is a classic load balancer?
Test & Dev, Keep costs low
What is Amazon RDS?
Relational database
Fixed number of columns
when column added must add for each row
eg SQL server, Oracle, MySQL, Aurora, Maria DB
What are the key features of RDS?
Multi-AZ for disaster recovery
Read replicas for performance
What are nonRDS?
Collection = table
Document = row
Key value pairs = fields
Columns can vary and will not affect the rows in the database
What is DynamoDB?
Amazon non-relational database
NoSQL
What is data warehousing?
Used for business intelligence, tools like congas,
What is ElastiCache?
Makes it easy to deploy, operate and scale an in-memory cache in the cloud
the service improves the performance web applications by allowing you to retrieve information from fast, managed, in-memory cache instead of relying entirely on slower disk-based databases
Speed up performance of existing databases - frequent identical queries
What is Redshift?
data warehousing solution online analytics processing
What is Route53?
Amazon domain name server service
Global - similar to IAM and S3
You can use it to direct traffic all around the world and you can use it to register a domain name
What is Elastic Beanstalk?
Quickly deploy and manage applications in the AWS cloud without worrying about infrastructure that runs those applications
What is cloud formation?
Infrastructure as code with templates that simplify provisioning and managing services
Any AWS service and completely programable
provides a common language for you to model and provision AWS and third-party application resources in your cloud environment
Which AWS services are global?
IAM Route53 CloudFront SNS SES
Which services give global views but are regional?
S3
Which AWS services can be used on premise?
Snowball Snowball edge Storage gateway Code deploy Opsworks IoT greengrass
Which AWS services can be used to deploy applications on premise?
Code deploy
Opsworks
What is CloudWatch?
monitoring service performance:
Compute (Ec2, autoscaling)
Storage and content delivery
Metrics - CPU, network, disk, status check
What is AWS systems manager?
Allows you to manage your EC2 instances at scale
Run command across a fleet of EC2
Patching etc
What is the service health dashboard?
Overview of all regions
Daily historical information
RSS feeds
What is the personal health dashboard?
Personalised for you
Relevant, up-to-date information
What is S3?
Secure durable highly scalable object storage
Files - cannot instal operating system or database
What is EBS?
Persistent block storage volumes
Automatically replicated
What is EFS?
Elastic file system - file storage service that automatically scales
What is AWS global accelerator?
Create accelerators to improve availability and performance of your applications for local and global users
Direct traffic to optimal endpoints over the AWS global network to improve availability
What are the common ports?
Linux SSH - 22
Microsoft RDP - 3389
HTTP - 80
HTTPS - 443
What is lambda?
Compute service where you can upload your code and create a lambda function
Takes care of provisioning and managing the servers you use to run the code
You don’t have to worry about operating systems, patch, scaling, etc
Event-driven compute service that can run your code in response to events
To run code in response to HTTP requests using Amazon API Gateway or API calls made using AWS SDKs
What languages does Lambda support?
Node.js C# Java Go Python Powershell
How is lambda priced?
Number of requests
Duration
What is version control?
You can use version control with lambda to have multiple versions of your code
You can roll back your code at any time, restoring previous versions
What are the key features of lambda?
Scales out automatically Lambda functions are independent Lambda is serverless Unique pricing Multiple versions of code You are responsible for code - AWS does the rest
What are the different compute services?
EC2 - VM in cloud Lightsail - simple cloud servers (platform as service) Lambda - serverless Batch - compute for batch Elastic beanstalk - platform as a server Serverless application repository - pre-provisionsed serverless apps AWS outposts - on prom EC2 image builder
What is a vpc?
Virtual private cloud lets you provision a logically isolated section of the AWS cloud where you can launch AWS resources in a virtual network you define
Selection of you own IP address range, creation of subnets
Customisable configuration
What is AWS Direct Connect?
Privately connect to data centre, office or colocation environment
You can use with VPN for ultimate security using encryption
What is EMR?
Cloud big data platform
Web service that makes it easy to process large amounts of data efficiently
What is DMS?
AWS database migration service for conventional data migrations
What is AMI?
Amazon Machine Image required to launch an instance
Includes EBS snapshots , launch permissions
What are the AWS disaster recovery techniques?
Backup and restore - use point-in-time backups and restore when necessary
Pilot light - replicate data from one region to another and provision a copy of core workload
Warm standby - scaled-down but fully functional version of your workload always
What is amazon neptune?
Graph databases - scalable and high availability
What is File gateway?
A file gateway supports a file interface into Amazon Simple Storage Service (Amazon S3) and combines a service and a virtual software appliance. By using this combination, you can store and retrieve objects in Amazon S3 using industry-standard file protocols such as Network File System (NFS) and Server Message Block (SMB). You can think of a file gateway as a file system mount on S3.
What is a route table?
set of rules, called routes, that are used to determine where network traffic from your subnet or gateway is directed
Distinguish between public and private VPC
What is the NAT gateway?
Network address translation
Gives cloud resources without public IP addresses access to the internet without exposure
What are internet gateways?
Connect VPC to internet
Provide a target in VPC route tables for internet-routable traffic and perform NAT for instances that have IPv4 public addresses
