LinkedIn

Module 3

AWS Infrastructure

There are AWS data centers around the world

Regions

  • An AWS region is a geographical area.

  • Data replication across Regions is controlled by you.

  • *** Communication between Regions uses AWS backbone network infrastructure.

  • Each Region provides full redundancy and connectivity to the network.

A Region typically consists of two or more Availability Zones

Availability Zones

  • Each Region has multiple Availability Zones.

  • Each Availability Zone is a fully isolated partition of the AWS infrastructure.

  • Availability Zones consist of discrete data centers

  • They are designed for fault isolation

  • They are interconnected with other Availability Zones by using high-speed private networking

  • You choose your Availability Zones.

  • AWS recommends replicating data and resources across Availability Zones for resiliency

AWS Data Centers

  • AWS data centers are designed for security

  • Data centers are where the data resides and data processing occurs.

  • Each data center has redundant power, networking, and connectivity, and is housed in a separate facility.

  • A data center typically has 50,000 to 80,000 physical servers

Point of Presence

Content Delivery Network (CDN) has to do with caching static contents of a website in the Regional Edge Caches, so if a website is in Canada there won't be high latency for someone trying to visit it in Argentina.

The main goal of CDN is to reduce latency

There are expiration times for each object (website)

AWS Infrastructure Features

Some Key Takeaways

  • The AWS Global Infrastructure consists of Regions and Availability Zones.

  • Your choice of a Region is typically based on compliance requirements or to reduce latency.

  • Each Availability Zone is physically separate from other Availability Zones and has redundant power, networking, and connectivity.

  • •Edge locations and Regional edge caches improve performance by caching content closer to users

AWS Foundational Services

Compute, Networking and Storage are the foundation of all AWS services

Storage Services

  • Amazon S3 is the most popular storage service for AWS

    • Store objects (videos, pictures, files, movies, etc.)

    • Comparable to Blob storage in Azure

  • Amazon EBS is used for block store

    • Similar to a hard drive in a computer

    • Comparable to a virtual disk/iso

  • Amazon Elastic File System (EFS) can be shared across multiple servers

    • The main concept is multiple VMs/Servers can share the same disk/file system

    • EFS (Linux) EFX (Windows)

  • Amazon Simple Storage Service Glacier is the same as S3

    • Used for archives

    • Pay less to store mass amounts of data

    • Will be expensive once you need to access it

Compute Services

  • Amazon Elastic Compute Cloud (Amazon EC2) provides resizable compute capacity as virtual machines in the cloud.

  • Amazon EC2 Auto Scaling enables you to automatically add or remove EC2 instances according to the conditions that you define.

  • Amazon Elastic Container Service (Amazon ECS) is a highly scalable, high-performance container orchestration service that supports Docker containers.

  • Amazon Elastic Container Registry (Amazon ECR) is a fully managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images.

  • AWS Elastic Beanstalk is a service for deploying and scaling web applications and services for developers. PaaS

  • AWS Lambda enables you to run code without provisioning or managing servers. You pay only for the compute time that you consume. There is no charge when your code is not running.

AWS Lambda is similar to Azure Functions

  • Amazon Elastic Kubernetes Service (Amazon EKS) makes it easy to deploy, manage, and scale containers that use Kubernetes on AWS.

  • AWS Fargate is just a Kubernetes alternative for AWS only. It is a compute engine for Amazon ECS that allows you to run containers without having to manage servers or clusters.

Database Services

  • Amazon Relational Database Service (Amazon RDS) makes it easy to set up, operate, and scale a relational database in the cloud. It provides resizable capacity while automating time-consuming administration tasks such as hardware provisioning, database setup, patching, and backups

  • Amazon Aurora is essentially a faster version of mySQL and PostgreSQL. Same code just 5x faster

  • Amazon Redshift

  • Amazon DynamoDB store objects like JSON files; can be used for gaming applications

Networking and Content Delivery Service

  • Amazon VPC (Virtual Private Cloud) is a virtual network where all of the VMs will live

  • Elastic Load Balancing automatically distributes incoming application traffic across multiple targets, such as Amazon EC2 instances, containers, IP addresses, and Lambda functions

  • Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and application programming interfaces (APIs) to customers globally, with low latency and high transfer speeds

  • AWS Transit Gateway is a service that enables customers to connect their Amazon Virtual Private Clouds (VPCs) and their on-premises networks to a single gateway.

  • Amazon Route 53 is simply a DNS server, you can connect your domain. More options however

  • AWS Direct Connect and AWS VPN are related to creating a hybrid cloud and connecting our offices to the AWS cloud

Security, Identity and Compliance services

  • AWS Identity and Access Management (IAM) enables you to manage access to AWS services and resources securely. By using IAM, you can create and manage AWS users and groups. You can use IAM permissions to allow and deny user and group access to AWS resources.

  • AWS Organizations allows you to restrict what services and actions are allowed in your accounts.

  • Amazon Cognito lets you add users using single-sign-on and federation

  • AWS Artifact provides on-demand access to AWS security and compliance reports and select online agreements.

  • AWS Key Management Service (AWS KMS) enables you to create and manage keys. You can use AWS KMS to control the use of encryption across a wide range of AWS services and in your applications.

  • AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.

AWS Cost Management Services

  • AWS Cost and Usage Report contains the most comprehensive set of AWS cost and usage data available, including additional metadata about AWS services, pricing, and reservations.

  • AWS Budgets enables you to set custom budgets that alert you when your costs or usage exceed (or are forecasted to exceed) your budgeted amount.

  • AWS Cost Explorer has an easy-to-use interface that enables you to visualize, understand, and manage your AWS costs and usage over time.

Management and governance Services

  • AWS Management Console provides a web-based user interface for accessing your AWS account.

  • AWS Config provides a service that helps you track resource inventory and changes.

  • Amazon CloudWatch allows you to monitor resources and applications.

  • AWS Auto Scaling provides features that allow you to scale multiple resources to meet demand.

  • AWS Command Line Interface provides a unified tool to manage AWS services.

  • AWS Trusted Advisor helps you optimize performance and security.

  • AWS Well-Architected Tool provides help in reviewing and improving your workloads.AWS CloudTrail tracks user activity and API usage.

PreviousModule 2NextModule 4

Last updated