Vocabulary Flashcards
AWS Cost Explorer
AWS Cost Explorer let’s you visualize, understand, and manage your AWS costs and usage over time. You can use forecasting to get an idea of future costs.
AWS Budgets
AWS Budgets give you the ability to setup alerts if you exceed or are approaching your defined budget.
TCO Calculator
Total Cost of Ownership allows you to estimate how much you would save when moving to AWS from on-premise.
AWS Landing Zone
Helps enterprises quickly set-up a secure, AWS multi-account. It provides you with a baseline-environment to get stared with a multi-account architecture.
AWS Account Vending Machine
Automatically provisions and configures new accounts via Service Catalog Template
Tags
Tags are words or phrases that act as metadata for organizing your AWS resources.
Resource Groups
A collection of resources that share one or more tags.
AWS Quick Starts
Prebuilt templates by AWS and AWS partners to help you deploy popular stacks on AWS. Reduce hundreds of manual procedures into just a few steps.
AWS Cost and Usage Report
Generate a detailed spreadsheet, enabling to better analyze and understand your AWS costs. Places the reports into S3, uses Athena, query-able database, Uses Quicksight to visualize your billing data as graphs.
Organizations
Allow you to centrally manage billing, control access, compliance, security, and share resources across your AWS accounts.
Root Account User
a single sign-in identity that has complete access to all AWS services and resources in an account.
Organization Units
a group of AWS accounts within an organization which can also contain other organizational units, creating a hierarchy
Region
the geographical location of your network
AZ
the data center of your AWS Resources
VPC
a logically isolated section of the AWS cloud where you can launch AWS resources
Internet Gateway
Enables access to the internet
Route Tables
determine where network traffic from your subnets are directed.
NACLS
(network access control list)
Act as firewalls at the subnet level
Security Groups
Act as a firewall at the instance level
Subnets
A logical partition of an IP network into multiple, smaller network segments
DynamoDB
NoSQL key/value database. Multi-Availability Zones
DocumentDB
NoSQL Document database that is MongoDB compatible
RDS
Relational Database Service that supports multiple engines: MySQL, Postgres, Maria DB, Oracle, Microsoft SQL Server, Aurora
Aurora
RDS- MySQL (5x faster) and PSQL (3x faster) database fully managed
Aurora Serverless
RDS- only runs when you need it, like AWS Lambda
Neptune
Managed Graph Database
Redshift
Columnar database, petabyte warehouse 1000 TB = 1 PB
ElastiCache
Redis or Memcached database
Provisioning
The allocation or creation of resources and services to a customer
Elastic Beanstalk
PaaS. Service for deploying and scaling web applications and services developed with Java, .Net, PHP, Node.js, Python, Ruby, Go, and Docket
OpsWorks
configuration management service that provides managed instances of Chef and Puppet
CloudFormation
infrastructure as code, JSON or YAML
AWS Marketplace
A digital catalog of thousands of software listing from independent software vendors you can use to find, buy, test, and deploy software.
EC2
Elastic compute cloud, highly configurable server
ECS
Elastic Container Service, Docker as a Service, highly scalable, high performance container orchestration service that supports Docker containers
Fargate
Serverless compute engine for containers. Microservices where you don’t think about the infrastructure. Pay per task.
EKS
Kubernetes as a service, easy to deploy, manage, and scale containerized applications using Kubernetes
Lambda
Serverless functions run on code without provisioning or managing servers. You pay only for the compute time you consume.
AWS Batch
plans, schedules, and executes your batch computing workloads across the full range of AWS compute services and features, such as Amazon EC2 and Spot Instances
S3
Simple Storage Service - object storage
S3 Glacier
low cost storage for archiving and long-term backup
Storage Gateway
hybrid cloud storage with local caching: File Gateway, Volume Gateway, Tape Gateway
EBS
Elastic Block Storage - hard drive in the cloud you attach to EC2 instances (SSD IOPS, Throuhput HHD, Cold HHD). The primary storage service used by Amazon RDS database instances
EFS
Elastic File Storage - file storage mountable to multiple EC2 instances at the same time
Snowball
Physically migrate lots of data via a computer suitcase 50-80 TB
Snowball Edge
A better version of Snowball - 100 TB
Snowmobile
Shipping container, pulled by a semi-trailer truck - 100PB
Amazon Connect
Call Center
WorkSpaces
Virtual Remote Desktop
WorkDocs
the AWS version of Sharepoint
Chime
online meetings, video conferencing
Workmail
business email
Pinpoint
use for sending targeted email
SES
Simple Email Service - send marketing, notification, and emails
QuickSight
Connect multiple data source and quickly visualize data in the form of graphs with little to no programming knowledge.
Direct Connect
Dedicated Gigabit network connection from your premises to AWS
VPN
establish a secure connection to your AWS network. Site-to-Site VPN, Client VPN
Storage Gateway
A hybrid storage that enables your on-premises applications to use AWS cloud storage
Active Directory
Enables your directory-aware workloads and AWS resources to use managed Active Directory in the AWS Cloud.
CloudTrail
Logs all API calls (SDK, CLI) between AWS services (Who we can blame)
CloudWatch
A collection of multiple logging services (Logs, Metrics, events, alarms, dashboard)
CloudWatch Logs
Performance data about AWS services (CPU utilization, memory, network); Application Logs; Lambda Logs
CloudWatch Metrics
Represents a time-ordered set of data points
CloudWatch Events
Trigger an event based on a condition
CloudWatch Alarm
Triggers notification based on metrics
CloudWatch Dashboard
Create visualizations based on metrics
Compliance Programs
A set of internal policies and procedures of a company to comply with laws, rules, and regulations or to uphold business reputation.
AWS Artifact
On-demand access to AWS’ security and compliance reports and select online agreements.
Amazon Inspector
Checks to see if EC2 instance is hardened (Security risks have been eliminated). Runs a security benchmark against specific EC2 instances.
AWS WAF
Web Application Firewall - Protect your web applications from common web exploits. Write your own rules to ALLOW or DENY traffic based on the contents of an HTTP or use a ruleset from a trusted AWS Security Partner. WAF can be attached to either CloudFront or an Application Load Balancer.
AWS Shield
A managed DDOS (distributed denial of service) protection service that safeguards applications running on AWS.
DDOS
a malicious attempt to disrupt normal traffic by flooding a website with a large amount of fake traffic.
Shield Standard
Protection against most common DDOS attacks (Free and automatically available)
Shield Advanced
Additional protection against larger and more sophisticated attacks, visibility into attacks, and 24x7 access to DDoS experts. ($3,000/year)
Penetration Testing
An authorized simulated cyberattack on a computer system, performed to calculate the security of the system.
May NOT be performed for flooding, DDoS, or DNS zone walking.
Amazon Guard Duty
A threat detection service that continuously monitors for malicious, suspicious activity and unauthorized behavior. It analyzes CloudTrail Logs, VPC Flow Logs, DNS logs
IDS/IPS
Intrusion Detection System and Intrusion Protection System. A device or software application that monitors a network or systems for malicious activity or policy violations
KMS
Key Management Service- makes it easy for you to create and control the encryption keys used to encrypt your data. KMS uses Envelope Encryption.
Envelope ecryption
When you encrypt your data, your data is protected, but you have to encrypt your data key with a master key as an additional layer of security.
Amazon Macie
Managed service that continuously monitors S3 data access activity for anomalies, and generates detailed alerts when it detects risk of unauthorized access or inadvertent data leaks.
MediaConvert
Converts videos to streaming formats, overlays images, inserts video clips, extracts captions data, robust UI
Elastic Transcoder
Converts videos to streaming formats
On-Demand Instances
Least commitmnet, only pay per hour, short-term, spiky, unpredictable workloads, ideal when your workloads cannot be interrupted
Reserved Instances
Best long-term value; steady state or predicatable usage; payment terms 1yr-3yr; Payment Options: All Upfront, Partial Uprfront, No Uprfront
Standard RI
Up to 75% Reduced pricing compared to on-demand. Cannot change RI attributes
Convertible RI
Up to 54% reduced pricing compared to on-deman. Allows you yo change RI Attributes if greater or equal in value.
Scheduled RI
You reserve instances for specific time periods (one a week for a few hours).
Spot Instances
90% discount compared to on-deamnd pricing; designed for applications that have flexible start and end times or need very low compute cost. they can be terminated at any time.
Basic Support Plan
Billing and Account - Email Support for Billing and Account ($0 month)
Developer Support Plan
Tech Support Via email - 24hrs until reply, General Guidance, System impaired. ($20 month)
Business Support Plan
Tech Support Via email - 24hrs until reply; Tech Support via Chat, Phone 24/7. General Guidance, System Impared, Production System impared, Production system down. All trusted advisor check. ($100 month)
Enterprise Support Plan
Tech Support Via email - 24hrs until reply; Tech Support via Chat, Phone 24/7. General Guidance, System Impared, Production System impared, Production system down. All trusted advisor check. Business-Critical System Down, Personal Concierge, TAM ($15,000 month)
AWS Trusted Advisor
Advises you on security, saving money, performance, service limits and fault tolerance
Edge Location
datacenter owned by a trusted partner of AWS
SaaS
Software as a Service; A completed product that is run and managed by the service provider
PaaS
Platform as a Service; Focus on the deployment and management of your applications
IaaS
Infrastructure as a Service: The basic building blocks for Cloud IT. Provides access to networking features, computers, and data storage space. EC2 Instances
Benefits of Cloud Computing (6)
- Trade capital expense for variable expense
- Benefit from massive economies of scale
- Stop guessing capacity
- Increased speed and agility
- Stop spending money on running and maintaining data centers
- Go global in minutes
Shared Controls
Patch Management, Configuration Management, Awareness & Training
Cloudfront
Global content delivery network
AWS Management Console
Allows you to access and manage Amazon Web Services through a simple and intuitive web-based user interface.
AWS SDK
(Software Development Kit) allows you to interact with AWS services using your preferred programming language.
Access Keys
Access keys consist of an access key ID and secret access key, which are used to sign programmatic requests to AWS using the CLI or the SDK.
AWS API
API refers to the AWS application programming interface.
Dedicated Hosts
supports the Bring Your Own License (BYOL) model for almost every BYOL scenario?
AWS Config
A change management tool that helps AWS customers audit and monitor all resource and configuration changes in their AWS environment
Application Load Balancer
Application Load Balancer is best suited for load balancing of HTTP and HTTPS traffic.
One minute instance billing
Per-second billing is available for instances launched in:
- On-Demand, Reserved and Spot forms
- All regions and Availability Zones
- Amazon Linux and Ubuntu
APN Consulting Partners
are professional services firms that help customers design, architect, build, migrate, and manage their workloads and applications on AWS.
