Introduction to AWS
AWS Global Infrastructure: 16 regions, 42 Availability Zones. SO and Edge Locations
Regions: Choose a region to optimize latency, minimize costs, or address regulatory requirements
Zones: Insulated from failures in other Availability zones
Edge locations: Cloudfront distributions at edge locations for high performance delivery of content.
Cloud computing: Cloud computing is the on-demand delivery of computer power, database storage, applications and other IT resources through a cloud services platform via the internet with pay-as-you-go pricing.
Cloud Computing Model:
IaaS: Contains the basic building blocks for Cloud IT. Such as VPC, EC2, and EBS
PaaS: AWS manages the underlying infrastructure (usually hardware and operating system. Such as RDS, EMR, and Elastic Search
Saas: Completed product that is run and manged by the service provider. Mostly refers to end0yser apps. Eg: Web-based email, Office 365, Salesforce.
Serverless Computing:
Allows you to build and run applications and services without thinking about severs.
Also referred to us as Function as a Service (FaaS) or abstracted Services
Eg: Amazon simple storage service (S3), AWS Lambda, Amazon DynamoDB, Amazon SNS
Cloud Computing Deployment Models
Cloud: Fully deployed in the cloud
Hybrid: Part Cloud and on premises, Connecting Infrastructure and Apps
On-premises: Fully on premises, creating our own cloud (Private) through visualization
The website for AWS is aws.amazon.com
AWS Product/Service Categories
Compute | Storage | Database | Networking and Content Delivery | Management Tools | Security, Identity and Compliance | Messaging | Analytics
Also: Application Services | Migration | Developer Tools | Mobile Services | IOT (Internet of Things) | Business Productivity | Desktop and App Streaming | Game Development | Artificial Intelligence
Storage Service (S3) Introduction
Storage Services
S3: Serverless, abstract, we do not know what is going on behind scenes
Glacier: Long-term archiving of Database
EBS: Elastic Block Storage (Like a hard drive) Attach AWS Block disk to an EC2 Server (volume)
Storage Gateway: High speed link between AWS and On-premises storage (backup)
EFS: Elastic File Storage (Very similar to NAS)
AWS I/E Snowball: Portable Harddrive
Transforming petrabytes of data through AWS storage gateway can be slow and costly. That's where I/E snowball comes in. Amazon will send a snowball device for that. AWS Gateway provides high speed link for data synchronization.
AWS Database Services (intro)
Database:
RDS (Relational Database Service): AWS SQL Database Engine (PaaS) Look after patching. User responsible for high load administration of databases such as MySQL,Auroa, Post GRI, Microsoft, Oracle
DynanoDB: Sever less Environment. Just create a table. Very good solution for high speed and NOSQL
ElastiCache: Memory caching for database. Allows very high speed and low latency access to data. It would cache in memory frequency access data from your database.
Redshift: Data warehousing. POSTGRE Database Engine Modified
AWS Database Migration Service: Orchestrates the migration of data from one database to another.
For Migration: First launch an instance (RDS). Then create a job/workflow listing (Database Migration) that will orchestrate migration.
Manage spikes in demand of data with Elastic Cache. Get frequently access data and stored in cache.
Introduction to AWS Computer Services
EC2: Elastic Compute Cloud (Iaas). Server running an operating system, website or applications.
ECS – Elastic Container Services: Launching services with Docker Elastic Container. Docker has everything needed for server (OS, Apps,
ELB: Distribute request that are coming in Elastic for multiple service and servers, and distribute those load request across multiple servers and manage balancing the load of all servers.
Auto Scaling: To create auto scaling group which we can launch instances into and of would automatically reduce number of service of our demand and those servers reduces or add more server of demand increasing
Lambda: Seamless environment running code on AWS. Run code as a service and get billed.
Elastic Beanstalk: Supply code and provision and architecture for that. Including other services listed above.
Deployment Service: Supplies code it does the rest so we don't have to manually do it.
Horizontal Scaling: Adding more instances as needed. It requires an endpoint, that's where ELB comes into play; Distributing requests to ECS instance in best position to handle requests.
On a sudden big spike, you introduce AutoScaling group to increase and decrease during low demand.
Networking and Content Delivery (intro)
VPC: creating our own private space in AWS. This is default and addiction VPCs can be created.
Direct Connect: It provides high speed access for the AWS Cloud
Cloud Front: Content delivery network for AWS. Allows to cache regular accessed content into a cloudfront distribution high speed low latency access to data.
ELB: Please refer to computer services.
Route 53: DNS service. Allow to route request for our domain name through to AWS services.
Messaging Services (intro)
Simple Queue Service (SQS):
Serverless services
-Application demand decoupling
Simple Notification Service (SNS)
-publish/subscribe messaging.
-mobile push notifications
Simple Email Services (SES)
-for providing bulk delivery of email
Example of a process Decoupling
* If average demand exceeds processing capacity, queue will grow indefinitely
* SQS can provide Cloudwatch metrics that can be used with auto scaling.
Managementy, Security, and Analytics (intro)
Management Tools
CloudFormation: You can write a JSON doc to define exactly what your architecture should be in a file. Then the CF service will grab the template to create a stake to deploy all the services automatically. Git can be sued to manage that document. ** suitable for very complex architecture.
Cloudwatch: Monitoring of services and alarms that could alert to problems with the server. Trigger an event for Auto scaling groups. Set up law sitpoints.
OpsWorks: Deployment Tool that uses Chef recipes for deployment.
ClouldTrail: Security and Auditing Continuously monitors all the API calls in our infrastructure.
Trusted Advisor: Export system. Runs scan of infrastructure and advice you on anything to change; performance, cost and security.
Security, Identitiy and Compliance (intro)
Identity and Access Management (IAM): Manage Access to AWS. Root login provides unlimited Access to AWS. Create different users to access AWS and fine grain the permissions. We can group the users
Directory Service: Authorization of third parties that want to access part of AWS account. USE AWS Cognito to authenticate users. It can be used as a Service for Microsoft Active Directory.
Certificate Manager: Enable creation of SSL certificate, so we can have https encryption through and from our website.
Encryption Key Management Service (KMS): Secure source for managing our encryption keys
Web Application Firewall (WAF): Firewall layer we can put in front of our Infrastructure. Adding another layer of defense for our application.
Analytics (Intro)
Elastic Map Reduce (EMR): Hadoop as a Service (HaaS). Hadoop is an Analytic service.
Elastic Search: Search engine capabilities for application.
Kinesis: Real time data streams collection and analysis
Quicksight: Can integrate with Amazon Kinesis to provide Data visualization. It can be used with steady data link (s3) and visualize the data
Data Pipeline: Process and move data between different applications