Technology part 1 - Org, Networking, DB, Provisioning, Computing, Storage Flashcards
Organizations
Change a root account to Organization > add multiple accounts, manage billing, access, security, and share resources.
Service Control Policies
Within Organizations, they give control over allowed permissions for all accounts.
AWS Networking
Internet > VPC / Internet Gateway > Router > Route Table > NACL > AZ > Subnets > Security Groups > instance, db, etc.
Networking - VPC
Internet > VPC / Internet Gateway > Router > Route Table > NACL > AZ > Subnets > Security Groups > instance, db, etc.
Virtual Private Cloud - logically isolated section of the AWS Cloud where you can launch AWS resources
Networking - Internet Gateway
Internet > VPC / Internet Gateway > Router > Route Table > NACL > AZ > Subnets > Security Groups > instance, db, etc.
Enable access to the Internet
Networking - Route Tables
Internet > VPC / Internet Gateway > Router > Route Table > NACL > AZ > Subnets > Security Groups > instance, db, etc.
Determine where network traffic from your subnets or gateway are directed
Networking - NACLs
Internet > VPC / Internet Gateway > Router > Route Table > NACL > AZ > Subnets > Security Groups > instance, db, etc.
Network Access Control Lists - Act as firewall at the subnet level
Networking - Subnets
Internet > VPC / Internet Gateway > Router > Route Table > NACL > AZ > Subnets > Security Groups > instance, db, etc.
Logical partition of an IP network into smaller network segments ex: public - accessible to internet (EC2), private - not accessible to internet (db)
DB Services - DynamoDB
NoSQL key/value db
Flat / simple, scale to millions
Guarantee of read/writes per sec
ex. Cassandra
DB Services - DocumentDB
NoSQL Document db - MongoDB compatible
DB Services - RDS
Relational Database Service
Most popular
Supports multiple engines - MySQL, PostgreSQL, Maria DB, Oracle, Microsoft SQL Server, Aurora
DB Services - Aurora
MySQL (5x faster) and PostgreSQL (3x faster) fully managed
Will run 6 copies across 3 AZs - more $
DB Services - Aurora Serverless
Only runs when you need it, like AWS Lambda
Less features, less $
Good for dev workflows, rarely used apps, serverless architecture
DB Services - Neptune
Managed Graph db
DB Services - Redshift
Columnar db, petabyte warehouse
Reads via columns instead of rows, good for analytics on huge amounts of data
DB Services - ElastiCache
Caching solution
Redis or Memcached db
Provisioning Services
Provisioning is the allocation or creation of resources and services to a customer
Provisioning Services - Elastic Beanstalk
For deploying and scaling web apps and services.
You prep the code, upload to EB, choose container/language, and it deploys your app.
It is the Heroku of AWS.
Provisioning Services - OpsWorks
Configuration management service that provides managed instances of Chef and Puppet.
Dev tools that help you programmatically set up a server
Provisioning Services - CloudFormation
Infrastructure as code, JSON or YAML.
You define the AWS resources you want to use and how you want them configured, upload that template, and this sets everything up.
Provisioning Services - AWS Quickstart
CloudFormation templates.
Pre-made packages that can launch and configure your AWS compute, network, storage, and other services.
Provisioning Services - AWS Marketplace
Digital catalogue of thousands of software listings from independent vendors.
Generally used to buy managed EC2 instances. Can pay monthly subscription.
Computing - EC2
Elastic Compute Cloud
Highly configurable server
All services use this under the hood.
Computing - ECS
Elastic Container Service
Docker as a Service
Use if you need to run microservices or a Dockerized app.
Pay for EC2 instances
