There are a LOT of AWS services to get to grips with. Inspired by AWS in Plain English<\/a>, I’ve created my own list to make sure I know my CloudFront from CloudTrail<\/a> and Athena from Aurora<\/a>.<\/p>\n\n\n\n
Alarm<\/a>
Bucket<\/a>
CLI<\/a>
DB Snapshot<\/a>
Edge Location<\/a>
Firehose<\/a>
Group<\/a>
Hosted Zone<\/a>
Instance Type<\/a>
Job flow<\/a>
KMS<\/a>
Lifecycle<\/a>
Messages<\/a>
NAT Gateway<\/a>
On Demand Instance<\/a>
Persistant storage<\/a>
Query<\/a>
Read replica<\/a>
Scaling<\/a>
Tagging<\/a>
Unit<\/a>
Virtual Private Cloud<\/a>
WAF<\/a>
X.509 certificate<\/a>
Yobibyte<\/a>
Zone<\/a><\/p><\/blockquote>\n\n\n\n
\n\n\n\nAlarm<\/h3>\n\n\n\n
Amazon CloudWatch<\/a> collects and tracks metrics for your AWS resources.<\/p>\n\n\n\n
If you are new to AWS you may want to add a Billing Alarm<\/a>. It makes sure you don’t run into any unexpected charges as it’s easy to forget something is running.<\/p>\n\n\n\n
\n\n\n\nBucket<\/h3>\n\n\n\n
An S3 bucket<\/a> is where objects are stored, similar to files and folders on your local machine. Each object consists of:<\/p>\n\n\n\n
- Key – the name of the object<\/li>
- Value – the data in the file itself made of bytes<\/li>
- VersionID<\/li>
- Metadata<\/li><\/ul>\n\n\n\n
Storage tiers:<\/p>\n\n\n\n
- S3<\/strong><\/a> – Most expensive and reliable option<\/li>
- S3:IA<\/strong> – For storing non-critical data that CANNOT<\/strong> be easily reproduced and needs to be retrieved quickly<\/li>
- S3:IA-One Zone<\/strong> – For storing non-critical data that CAN<\/strong> be easily reproduced and needs to be retrieved quickly.<\/li>
- Glacier<\/strong> – Extremely cheap long-term storage with a 3 – 5 hour retrieval time for ‘cold’ data.<\/li>
- Deep Glacier<\/strong> – For long-term storage with a 12 hour retrieval time for ‘cold’ data.<\/li><\/ul>\n\n\n\n
\n\n\n\nCLI<\/h3>\n\n\n\n
The AWS CLI<\/a> allows you to issue commands from the command line. It’s useful for uploading files to S3 buckets and launching EC2<\/a> instances.<\/p>\n\n\n\n
\n\n\n\nDB Snapshot<\/h3>\n\n\n\n
Amazon RDS<\/a> creates a storage volume snapshot of your entire instance. Creating this snapshot results in a brief I\/O suspension that can last from a few seconds to a few minutes. Multi-AZ DB instances are not affected by this I\/O suspension since the backup is taken on the standby.<\/p>\n\n\n\n
When you create a DB snapshot, you need to identify which DB instance<\/a> you are going to back up. Then give your DB snapshot a name so you can restore from it later. You can do this using the AWS Management Console, the AWS CLI, or the RDS API.<\/p>\n\n\n\n
\n\n\n\nEdge Location<\/h3>\n\n\n\n
Amazon CloudFront<\/a> is the AWS CDN. It caches information closest to the user to the next user can download a copy faster. CloudFront can distribute content including dynamic, static, and streaming content from services like S3<\/a> or your own server.<\/p>\n\n\n\n
\n\n\n\nFirehose<\/h3>\n\n\n\n
Amazon Kinesis Data Firehose<\/a> is a reliable way to stream data in near real-time. Data can be streamed to S3, Amazon’s data warehousing solution, Redshift<\/a> or Elasticsearch<\/a>.<\/p>\n\n\n\n
\n\n\n\nGroup<\/h3>\n\n\n\n
AWS Identify and Access Management<\/a> allow you to securely control individual and group access to your resources. <\/p>\n\n\n\n
Users by default have no access until you assign them a role. Roles<\/a> define a set of permissions for making AWS service requests. Most often these are used to assign Groups of Users permissions to perform tasks or access services<\/a>.<\/p>\n\n\n\n
\n\n\n\nHosted Zone<\/h3>\n\n\n\n
Amazon Route 53<\/a> is Amazons Domain Name System (DNS) web service. It gives developers a cost-effective way to route end users to Internet applications<\/a>. It translates domain names into IP addresses that computers use to connect to each other. <\/p>\n\n\n\n
AWS named the service Route 53 because all DNS requests are handled through port 53.<\/p>\n\n\n\n
\n\n\n\nInstance Type<\/h3>\n\n\n\n
EC2<\/a> is a service that provides virtual machines in the cloud where you only pay for the capacity you use and choose from \u2018families\u2019 of instance types that are good for different use cases.<\/p>\n\n\n\n
- General Purpose<\/strong> – a balance of compute, memory and networking resources<\/li>
- Compute Optimised<\/strong> -ideal for compute-bound applications that benefit from the high-performance processor<\/li>
- Memory-Optimised<\/strong> – fast performance for workloads that process large data sets in memory<\/li>
- Accelerated Optimised<\/strong> – hardware accelerators, or co-processors<\/li>
- Storage Optimised<\/strong> – high, sequential read and write access to very large data sets on local storage<\/li><\/ul>\n\n\n\n
\n\n\n\nJob Flow<\/h3>\n\n\n\n
Amazon EMR<\/a> provides a scalable framework so you can run Spark and Hadoop<\/a> processes over an S3<\/a> data lake.<\/p>\n\n\n\n
Once the job completes, the EMR cluster is terminated.<\/p>\n\n\n\n
\n\n\n\nKMS<\/h3>\n\n\n\n
The AWS KMS Service<\/a> makes it easy to create and control encryption keys. The service leverages Hardware Security Modules (HSM) under the hood which guarantees security and integrity of the generated keys.<\/p>\n\n\n\n
\n\n\n\nLifecycle<\/h3>\n\n\n\n
To manage your objects so they are stored cost-effectively<\/a>, configure their lifecycle.<\/p>\n\n\n\n
A lifecycle configuration is a set of rules that define actions that Amazon S3<\/a> applies to a group of objects.<\/p>\n\n\n\n
For example, you might choose to transition objects to the S3:IA<\/a> storage class 30 days after you created them, or archive objects to the Glacier<\/a> storage class one year after creating them.<\/p>\n\n\n\n
\n\n\n\nMessages<\/h3>\n\n\n\n
Amazon SNS<\/a> allows applications to send time-critical messages to multiple subscribers through a \u201cpush\u201d mechanism. This eliminates the need to periodically check or \u201cpoll\u201d for updates<\/p>\n\n\n\n
By using Amazon SNS and Amazon SQS<\/a> together, messages can be delivered to applications that require immediate notification of an event. Then persisted in an Amazon SQS queue for other applications to process at a later time.<\/p>\n\n\n\n
\n\n\n\nNAT Gateway<\/h3>\n\n\n\n
A virtual private cloud<\/a> (VPC) is a virtual network dedicated to your AWS account. It is logically isolated from other virtual networks in the AWS Cloud. You can launch your AWS resources, such as Amazon EC2<\/a> instances, into your VPC.<\/p>\n\n\n\n
You can use a NAT device to enable instances in a private subnet to connect to the internet, but prevent the internet from initiating connections. A NAT device forwards traffic from instances in the private subnet<\/a> to the internet or other AWS services, then sends the response back.<\/p>\n\n\n\n
\n\n\n\nOn-Demand Instance<\/h3>\n\n\n\n
There are multiple ways to pay for<\/a> Amazon EC2 instances:<\/p>\n\n\n\n
Spot Instances<\/strong> – request spare Amazon EC2 computing capacity for up to 90% off the on-demand price<\/a><\/p>\n\n\n\n
\n\n\n\nPersistent storage<\/h3>\n\n\n\n
Amazon EBS<\/a> is a persistent storage device that can be attached to a single <\/strong>EC2 instance to be used as a file system for databases and storage.<\/p>\n\n\n\n
\n\n\n\nQuery<\/h3>\n\n\n\n
Amazon RDS<\/a> makes it easy to provision a managed database instance in the cloud. At the time of writing the following database engines were available.<\/p>\n\n\n\n
- Amazon Aurora<\/a> for MySQL and PostgreSQL<\/li>
- MySQL<\/li>
- PostgreSQL<\/li>
- MariaDB<\/li>
- Oracle<\/li>
- MS SQL Server<\/li><\/ul>\n\n\n\n
For cases when a NoSQL database is more appropriate AWS offers DynamoDB<\/a>. Netflix<\/a> uses DynamoDB to run it’s A\/B testing and personalisation experiments.<\/p>\n\n\n\n
\n\n\n\nRead replica<\/h3>\n\n\n\n
Read replication<\/a> can be part of your disaster recovery plan. You can promote a read replica if the source database instance fails.<\/p>\n\n\n\n
\n\n\n\nScaling<\/h3>\n\n\n\n
Auto Scaling launches and terminates Amazon EC2<\/a> instances automatically according to user-defined policies. You can use Auto Scaling to maintain a fleet of AWS EC2 instances that can adjust to any presented load. You can also use Auto Scaling to bring up multiple instances in a group at one time.<\/p>\n\n\n\n
\n\n\n\nTagging<\/h3>\n\n\n\n
Using tags in your metadata<\/a> helps to identify who is using each resource and gain control over costs. You can then use these in conjunction with the Monthly Billing Report<\/a><\/p>\n\n\n\n
\n\n\n\nUnit<\/h3>\n\n\n\n
Metrics are the fundamental concept in CloudWatch. A metric represents a time-ordered set of data points that are published to CloudWatch<\/a>. Think of a metric as a variable to monitor, and the data points represent the values of that variable over time.<\/p>\n\n\n\n
\n\n\n\nVirtual Private Cloud (VPC)<\/h3>\n\n\n\n
A VPC<\/a> is a virtual data centre which is a logically isolated section of AWS that can span availability zones. <\/p>\n\n\n\n
VPC\u2019s are made of Internet Gateways<\/a>, route tables, network access control lists, subnets, and security groups<\/a>.<\/p>\n\n\n\n
\n\n\n\nWAF<\/h3>\n\n\n\n
AWS Web Application Firewall (WAF)<\/a> protects web applications from attacks by filtering traffic based on rules that you create.<\/p>\n\n\n\n
\n\n\n\nX.509 certificate<\/h3>\n\n\n\n
You can use x.509 certificates in AWS Certificate Manager<\/a> to identify users, computers, applications and other devices internally.<\/p>\n\n\n\n
\n\n\n\nYobibyte<\/h3>\n\n\n\n
OK, I cheated here, but this is a really interesting post that puts it all together: AWS Explained by Operating a Brewery<\/a><\/p>\n\n\n\n
Fun fact: a yobibyte is 2^80 or 1,208,925,819,614,629,174,706,176 bytes.<\/p>\n\n\n\n
\n\n\n\nZones<\/h3>\n\n\n\n
AWS hosts its infrastructure in data centres called Availability Zones (AZs)<\/a>.<\/p>\n\n\n\n
For some services, you can host your application in multiple Regions.<\/p>\n\n\n\n
\n\n\n\nPhoto by Kaboompics .com<\/a><\/strong> from Pexels<\/a><\/strong> <\/p>\n","protected":false},"excerpt":{"rendered":"