Week 5 - AWS Services Part 1 Flashcards
AWS Regions
Region = Geographic Location with Cluster of Data Centres
Availability Zone = Discrete Data Centre with redundant power, networking, and connectivity in an AWS Region
AWS Infrastructure Features
- Elasticity and scalability
- Elastic infrastructure; dynamic adaption of capacity
- Scalable infrastructure; adapts to
accommodate growth
- Fault tolerance
- Continues operating properly in the presence of a failure
- Built in redundancy of components
- High availability
- High level of operational performance
- Minimized downtime
- No human intervention
AWS Security
- Security and Compliance are a shared responsibility between AWS and Customer
- AWS is responsible for infrastructure security
- The customer is responsible for:
– Data Encryption
– Network Security Configuration
– Security Credentials
– Security Groups and ACLs
– Configuration of OS and Software
VPC
You can connect VPCs in your own AWS account, between AWS accounts, or between AWS Regions.
Restrictions:
* IP spaces cannot overlap.
* Transitive peering is not supported.
* You can only have one peering resource between the same
two VPCs.
Amazon Elastic Compute Cloud (Amazon EC2)
Provides virtual machines in the cloud.
* Gives control over the guest OS
* Launch instances of any size into an
Availability Zone anywhere in the world.
* Launch instances from Amazon Machine Images (AMIs)
* Launch instances with a few clicks or a line of code, and they are ready in minutes.
* You can control traffic to and from
instances.
Amazon Machine Image (AMI)
- Amazon Machine Image (AMI)
- Is a template that is used to create an EC2 instance (which is a virtual machine, or VM, that runs in the AWS Cloud)
- Contains a Windows or Linux operating system
- Often also has some software pre-installed
- AMI choices:
- Quick Start – Linux and Windows AMIs that are provided by AWS
- My AMIs – Any AMIs that you created
- AWS Marketplace – Pre-configured templates from third parties
- Community AMIs – AMIs shared by others; use at your own risk
Instance Type
Consider your use case
* How will the EC2 instance you create be used?
* The instance type that you choose determines
* Memory (RAM)
* Processing power (CPU)
* Disk space and disk type (Storage)
* Network performance
Instance type categories
* General purpose
* Compute optimized
* Memory optimized
* Storage optimized
* Accelerated computing
* Instance types offer
family , generation , and size
Network Settings
- Where should the instance be deployed?
- Identify the VPC and optionally the subnet
- Should a public IP address be
automatically assigned? - To make it internet-accessible
Storage Options
- Configure the root volume
- Where the guest operating system is installed
- Attach additional storage volumes (optional)
- AMI might already include more than one volume
- For each volume, specify:
- The size of the disk (in GB)
- The volume type - Different types of solid state drives (SSDs) and hard disk drives (HDDs) are available
- If the volume will be deleted when the instance is terminated
- If encryption should be used
Amazon EBS and EC2 Instance Store
Security Group
A set of firewall rules that control traffic to the instance
- It exists outside of the instance’s guest OS
Key Pair
A key pair consists of:
- A public key that AWS stores.
- A private key file that you store.
- It enables secure connections to the
instance.
Container Services
Containers are a method of operating system virtualization.
Benefits
* Repeatable.
* Self contained environments.
* Software runs the same in
different environments. Developer’s laptop, test, production.
* Faster to launch and stop or
terminate than virtual
machines
Elastic Container Service (ECS)
Amazon Elastic Container Service (
Amazon ECS )
* A highly scalable, fast,
container management service
Key benefits
* Orchestrates the running of Docker containers
* Maintains and scales the fleet of nodes that run your containers
* Removes the complexity of standing up the infrastructure
Integrated with features that are familiar to Amazon EC2 service users
* Elastic Load Balancing
* Amazon EC2 security groups
* Amazon EBS volumes
* IAM roles
AWS Lambda
Serverless, event driven service
* Run code for any type of Application without provisioning or managing servers
- It supports multiple programming languages
- Completely automated administration
- Built-in fault tolerance
- It supports the orchestration of multiple functions
- Pay-per-use pricing
AWS Elastic Beanstalk
An easy way to get
web applications up and running
* A managed service that automatically handles
* Infrastructure provisioning and configuration
* Deployment
* Load balancing
* Automatic scaling
* Health monitoring
* Analysis and debugging
* Logging
* No additional charge for Elastic Beanstalk
* Pay only for the underlying resources that are used
AWS Storage services
Elastic Block Store
What if you want to change one character in a 1 GB file?
Block storage
Change one block (piece of the file)
that contains the character
Object storage
Entire file must be updated
AWS Storage services
Elastic Block Store
What if you want to change one character in a 1 GB file?
Block storage
Change one block (piece of the file)
that contains the character
Object storage
Entire file must be updated
Amazon EBS enables you to
create individual storage volumes
and attach them to an Amazon EC2 instance:
* Amazon EBS offers block
level storage.
* Volumes are automatically replicated within its Availability
Zone.
* It can be backed up automatically to Amazon S3 through
snapshots.
AWS Storage services
Simple Storage Service (S3)
To upload your data:
1. Create a bucket in an AWS Region.
2. Upload almost any number of objects to the bucket.
Amazon S3 offers a range of object
level storage classes that
are designed for different use cases:
* Amazon S3 Standard
* Amazon S3 Intelligent Tiering
* Amazon S3 Standard Infrequent Access (Amazon S3 Standard IA)
* Amazon S3 One Zone
Infrequent Access (Amazon S3 One Zone IA)
* Amazon S3 Glacier
* Amazon S3 Glacier Deep Archive
AWS Storage services
Elastic File System (EFS)
Based on Linux Network File System (NFS)
- Amazon Elastic File System (Amazon EFS) provides simple, scalable, elastic file storage for use with AWS
services and on premises resources.
It offers a simple interface that enables you to create and configure file systems quickly and easily.
- Amazon EFS is built to dynamically scale on demand without disrupting applications it will grow and shrink
automatically as you add and remove files.
It is designed so that your applications have the storage they need, when they need it.
Distributed File System
- A network allows you to share resources
- Sharing resources is more cost effective than installing resources on each computer
- File server
– A network system where files are stored and shared
Distributed File System
A network allows you to share resources
* Sharing resources is more cost effective than installing resources on each computer
* File server
– A network system where files are stored and shared
Use network protocols to share access to files
– Do not share actual physical storage device
* Data Store
NOT THE SAME as Distributed File
System
– Distributed Data Store includes cloud based databases
– Distributed Data Store accessed via proprietary APIs (e.g. mySQL)
– Distributed File System accessed using same interfaces as local files
Network File System
– A distributed file system protocol for allowing remote access to shared resources across networks
– Used in Unix and Unix Like OS’s (Linux)
– You can mount shared file systems on remote machines
– “Mount”
* Term for making files appear as though they’re on a
local machine instead of on a remote machine
* Similar to drive mapping in Windows
Advantages of setting up a file server in openSUSE Linux
Central Location
Increased Security
Remote Access
Exporting a file system
Enables users to distribute file systems over the network
