Week 5 - AWS Services Part 1 Flashcards
AWS Regions
Region = Geographic Location with Cluster of Data Centres
Availability Zone = Discrete Data Centre with redundant power, networking, and connectivity in an AWS Region
AWS Infrastructure Features
- Elasticity and scalability
- Elastic infrastructure; dynamic adaption of capacity
- Scalable infrastructure; adapts to
accommodate growth
- Fault tolerance
- Continues operating properly in the presence of a failure
- Built in redundancy of components
- High availability
- High level of operational performance
- Minimized downtime
- No human intervention
AWS Security
- Security and Compliance are a shared responsibility between AWS and Customer
- AWS is responsible for infrastructure security
- The customer is responsible for:
– Data Encryption
– Network Security Configuration
– Security Credentials
– Security Groups and ACLs
– Configuration of OS and Software
VPC
You can connect VPCs in your own AWS account, between AWS accounts, or between AWS Regions.
Restrictions:
* IP spaces cannot overlap.
* Transitive peering is not supported.
* You can only have one peering resource between the same
two VPCs.
Amazon Elastic Compute Cloud (Amazon EC2)
Provides virtual machines in the cloud.
* Gives control over the guest OS
* Launch instances of any size into an
Availability Zone anywhere in the world.
* Launch instances from Amazon Machine Images (AMIs)
* Launch instances with a few clicks or a line of code, and they are ready in minutes.
* You can control traffic to and from
instances.
Amazon Machine Image (AMI)
- Amazon Machine Image (AMI)
- Is a template that is used to create an EC2 instance (which is a virtual machine, or VM, that runs in the AWS Cloud)
- Contains a Windows or Linux operating system
- Often also has some software pre-installed
- AMI choices:
- Quick Start – Linux and Windows AMIs that are provided by AWS
- My AMIs – Any AMIs that you created
- AWS Marketplace – Pre-configured templates from third parties
- Community AMIs – AMIs shared by others; use at your own risk
Instance Type
Consider your use case
* How will the EC2 instance you create be used?
* The instance type that you choose determines
* Memory (RAM)
* Processing power (CPU)
* Disk space and disk type (Storage)
* Network performance
Instance type categories
* General purpose
* Compute optimized
* Memory optimized
* Storage optimized
* Accelerated computing
* Instance types offer
family , generation , and size
Network Settings
- Where should the instance be deployed?
- Identify the VPC and optionally the subnet
- Should a public IP address be
automatically assigned? - To make it internet-accessible
Storage Options
- Configure the root volume
- Where the guest operating system is installed
- Attach additional storage volumes (optional)
- AMI might already include more than one volume
- For each volume, specify:
- The size of the disk (in GB)
- The volume type - Different types of solid state drives (SSDs) and hard disk drives (HDDs) are available
- If the volume will be deleted when the instance is terminated
- If encryption should be used
Amazon EBS and EC2 Instance Store
Security Group
A set of firewall rules that control traffic to the instance
- It exists outside of the instance’s guest OS
Key Pair
A key pair consists of:
- A public key that AWS stores.
- A private key file that you store.
- It enables secure connections to the
instance.
Container Services
Containers are a method of operating system virtualization.
Benefits
* Repeatable.
* Self contained environments.
* Software runs the same in
different environments. Developer’s laptop, test, production.
* Faster to launch and stop or
terminate than virtual
machines
Elastic Container Service (ECS)
Amazon Elastic Container Service (
Amazon ECS )
* A highly scalable, fast,
container management service
Key benefits
* Orchestrates the running of Docker containers
* Maintains and scales the fleet of nodes that run your containers
* Removes the complexity of standing up the infrastructure
Integrated with features that are familiar to Amazon EC2 service users
* Elastic Load Balancing
* Amazon EC2 security groups
* Amazon EBS volumes
* IAM roles
AWS Lambda
Serverless, event driven service
* Run code for any type of Application without provisioning or managing servers
- It supports multiple programming languages
- Completely automated administration
- Built-in fault tolerance
- It supports the orchestration of multiple functions
- Pay-per-use pricing
AWS Elastic Beanstalk
An easy way to get
web applications up and running
* A managed service that automatically handles
* Infrastructure provisioning and configuration
* Deployment
* Load balancing
* Automatic scaling
* Health monitoring
* Analysis and debugging
* Logging
* No additional charge for Elastic Beanstalk
* Pay only for the underlying resources that are used
