Embedded Files
Acronyms
Acronyms
CORS
CORS
Cross-origin resource sharing
AMI
AMI
An Amazon Machine Image (AMI) is a master image for the creation of virtual servers -- known as EC2 instances
EAR
EAR
Effect, Action, Resource (Check where it is used)
TCO
TCO
Total Cost of Ownership
MTTR
MTTR
Mean Time To Recover
Cloud benefits
Cloud benefits
Scale in minutes
Resources can be removed once experiment is done
For start-up, to have lower cost when business is small
Contract types
Contract types
Amazon reserved instance
Amazon reserved instance
Booked for 1 or 3 years
Spot instance
Spot instance
EC2 sells unused capacity(instance) for deep discount. But the server(instance) can be reclaimed any time when EC2 needs capacity again
Useful link - https://www.youtube.com/watch?v=ITG1OpHz-JQ
Services
Services
Amazon CloudFront
Amazon CloudFront
Its CDN network service from Amazon. Refer https://aws.amazon.com/cloudfront/
AWS outposts
AWS outposts
Box which is deployed in customer premise and it serves as gateway between cloud and on-premise. It is for hybrid cloud
Ref: https://aws.amazon.com/cloudfront/
AWS Direct Connect
AWS Direct Connect
AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated network connection from your premises to AWS.
Refer: https://aws.amazon.com/directconnect/
Amazon S3 (Simple Storage Service)
Amazon S3 (Simple Storage Service)
Object is smallest unit. File is an example of object
Bucket is like directory. It stores object.
Glacier is used for storing backup
If data in S3 is considered as “hot,” that in Glacier can be classed as “cold backup.”
S3 frequent access
For live data. For example, html pages, pictures, training videos etc
S3 infrequent access
For back-up
It has multipart upload support
Upload can continue from last point in case connection breaks
AMAZON S3 transfer acceleration
Transfer to nearby S3 and then it is migrated to real S3
Cost involved
no security concern since data is passing using Amazon dedicated fibre
WORM model for S3
Write once read many (understand use-case)
Amazon RDBMS service
Amazon RDBMS service
Database service from Amazon. It provides
Backups
Redundancy
Failover
Diaster recovery
Amazon database migration service
Amazon database migration service
Source and target DBMS need not be of same type
Schema conversion is 1st step for heterogeneous database
Supports continuous replication
Amazon Managed Blockchain
Amazon Managed Blockchain
Amazon Managed Blockchain is a fully managed service that makes it easy to join public networks or create and manage scalable private networks
IAM service
IAM service
Identity and access management
It supports RBAC. Refer here
Supports federation
Means that corporate identities(AD/LDAP) can be mapped to IAM roles
AWS organizations
AWS organizations
For organising multiple teams in your company who are using AWS
Hierarchical grouping of accounts
Consolidated billing
Amazon Inspector
Amazon Inspector
Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS.
AWS Shield
AWS Shield
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.
AWS Key Management Service (KMS)
AWS Key Management Service (KMS)
AWS Key Management Service (KMS) is an Amazon Web Services product that allows administrators to create, delete and control keys that encrypt data stored in cloud
AWS Trusted Advisor
AWS Trusted Advisor
AWS Trusted Advisor is a fully managed service that provides you guidance to follow AWS best practices.
Amazon Route 53
Amazon Route 53
Amazon Route 53 effectively connects user requests to infrastructure running in AWS – such as Amazon EC2 instances, Elastic Load Balancing load balancers, or Amazon S3 buckets – and can also be used to route users to infrastructure outside of AWS.
Amazon SQS
Amazon SQS
Amazon SQS is a message queuing service. Using Amazon SQS, you can send, store, and receive messages between software components at any volume size, without losing messages or requiring other services to be available.
AWS Elastic Beanstalk
AWS Elastic Beanstalk
AWS Elastic Beanstalk is an easy-to-use service for deploying and scaling web applications and services developed with Java, .NET, PHP, Node.js, Python
Amazon GuardDuty
Amazon GuardDuty
Amazon GuardDuty is a threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts
Amazon CloudTrail
Amazon CloudTrail
CloudTrail delivers log files for account activity from all AWS Regions to the single AmazonS3 bucket that you specify,
Optimisation
Optimisation
Placement group
Placement group
A cluster placement group is a logical grouping of instances within a single Availability Zone that benefit from low network latency, high network throughput.
Launch templates
Launch templates
How it is ensured that EC2 instance comes up fastly for scale case? Note that EC2 instance took a while to come up.
Launch templates enable you to store launch parameters so that you do not have to specify them every time you launch an instance.
Networking
Networking
An internet gateway
An internet gateway
An internet gateway is a horizontally scaled, redundant, and highly available VPC component that allows communication between your VPC and the internet.
Storage
Storage
Amazon RDS
Amazon Relational Database Service (Amazon RDS)
RDS support vertical scaling primarily. It supports horizontal scaling using read replicas
Amazon EFS
Amazon Elastic File System (Amazon EFS) provides simple, scalable, elastic file storage for use with AWS Cloud services and on-premises resources.
Multiple EC2 instances can access same storage
Amazon FSx
Amazon FSx
Multiple EC2 instances can access same storage
Built on Windows Server, Amazon FSx delivers a wide range of administrative features such as data deduplication, end-user file restore, and Microsoft Active directory
Elastic Block Storage
Elastic Block Storage
Amazon Elastic Block Store (Amazon EBS) provides block level storage volumes for use with EC2 instances.
It is persistent storage
Multiple EC2 instances can't access same storage
Need to be in same availability zone where EC2 instance is running
Doesn't automatically scale
Types
GP,
Provisioned,
throughput optimised,
cold HDD
Amazon EC2 instance store
Amazon EC2 instance store
Amazon EC2 instance store volumes (also called ephemeral drives) provide temporary block-level storage for many EC2 instance types.
Amazon Aurora
Amazon Aurora
Amazon Aurora (Aurora) is a fully managed relational database engine that's compatible with MySQL and PostgreSQL.
Amazon DynamoDB
Amazon DynamoDB
Millisecond response time
Massively scalable
No SQL database
Global table
A global table is a collection of one or more replica tables, all owned by a single Amazon account.
Amazon DynamoDB lets you specify the desired consistency characteristics for each read request within an application. You can specify whether a read is eventually consistent or strongly consistent.
Amazon DynamoDB Accelerator (DAX) is a fully managed, highly available, in- memory cache for Amazon DynamoDB
Amazon RedShift
Amazon RedShift
Amazon Redshift is a fully managed, petabyte-scale data warehouse service.
Amazon CatalogDB
Amazon CatalogDB
Compatible to mongodb
Amazon Neptune
Amazon Neptune
A graph database
Amazon quantum ledger database
Amazon quantum ledger database
Amazon QLDB offers a fully managed ledger database. It offers all the key features of a blockchain.
Amazon elasticache
Amazon elasticache
Amazon ElastiCache allows you to seamlessly set up, run, and scale popular open-source compatible in-memory data stores in the cloud. Build data-intensive apps or boost the performance of your existing databases by retrieving data from high throughput and low latency in-memory data stores.
Compute
Compute
EC2 Instance
EC2 Instance
Config
User data -> Can be used for boot time config
Metadata -> Can be used to get IP address, hostname etc
Types
Security
Security
Shared responsibility
Shared responsibility
AWS owns security of hypervisor and below
Customer owns security of OS and above
DDOS attack handling
DDOS attack handling
Can be handled using security group configuration
Observability
Observability
Amazon CloudWatch
Amazon CloudWatch
Amazon CloudWatch enables you to collect, access, and correlate this data on a single platform from across all your AWS resources, applications, and services
Migration
Migration
AWS CAF
AWS CAF
The AWS Cloud Adoption Framework (AWS CAF) organizes guidance into six areas of focus, called perspectives
Amazon Snow Family
Amazon Snow Family
Machine learning
Machine learning
AWS offers
Pre-trained models
Open source framework to allow ML engineer to create custom model
Ready to consume AI services
Amazon LEX
Amazon Textract
AWS DeepRacer for reinforcement learning
5g mobile offering
5g mobile offering
Amazon wavelength
Amazon wavelength
AWS Wavelength is an AWS Infrastructure offering optimized for mobile edge computing applications.
Amazon suggestion for cloud architecture
Amazon suggestion for cloud architecture
The AWS Well-Architected Framework
The AWS Well-Architected Framework
The AWS Well-Architected tool
The AWS Well-Architected tool
Reference
Reference
https://www.sumologic.com/blog/data-storage-aws/
https://aws.amazon.com/elasticache/
https://images.app.goo.gl/TLyMyJuDwUTJXqLK8
https://aws.amazon.com/wavelength/
https://aws.amazon.com/fsx/
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-placementgroup.html
DynamoDB_Global-Tables-01.dad2508b80e8b7c544fe1a94a2abd3f770b789da.png
Page updated
Google Sites
Report abuse