Aisalkyn Aidarova

Posted on Feb 25

Part 2: Decoupled Architecture

#architecture #aws #systemdesign #tutorial

🎬 SCENARIO: “You Upload a Movie to Netflix”

You upload:

Avengers.mp4

Now what happens behind the scenes?

🎥 STEP 1 — Upload Goes to Storage

Service used:
Amazon S3

Flow:

User → S3

Explain:

S3 is like Netflix’s big digital warehouse.
It stores the raw movie file.

At this point:
Nothing is processed yet.

📢 STEP 2 — S3 Shouts: “New Video Arrived!”

Service used:
Amazon SNS

Explain:

When movie is uploaded:

S3 sends event to SNS.

SNS is like:

📣 A loudspeaker announcement:

“New movie uploaded!”

📬 STEP 3 — SNS Sends Task to Workers

Service used:
Amazon SQS

Explain:

SNS sends message to SQS.

SQS is like:

📬 A task mailbox.

Inside the mailbox:

Process Avengers.mp4

Why mailbox?

Because:

Maybe 1 video
Maybe 10,000 videos

Queue stores tasks safely.

🏭 STEP 4 — Workers Process the Movie

Service used:
Amazon EC2

Explain:

Workers (EC2 machines):

Convert video to 1080p
Create 720p version
Add subtitles
Compress file

They read tasks from SQS.

💥 LIVE DEMO MOMENT (What You Did)

You show:

1️⃣ Worker running
2️⃣ Upload file
3️⃣ File moves from uploads → processed

Students see:

System works.

🔴 DRAMATIC MOMENT — Worker Dies

You run:

pkill -f worker.py

Now upload new video.

What happens?

File stays in uploads.

Queue has message.

Processing stopped.

Pause.

Ask students:

What if this was Netflix during a big movie release?

They understand impact immediately.

🛡 WHY WE NEED AUTO SCALING

Service used:
Auto Scaling Group

Explain:

Instead of 1 worker:

We use 5 workers.

If 1 dies:
ASG automatically launches new one.

Queue keeps tasks safe.

Processing continues.

This is:

High Availability.

🎯 WHEN DO WE NEED ALB?

Service used:
Elastic Load Balancing

ALB is for:

Users watching movies.

User → ALB → Web servers

But workers pulling from SQS do NOT need ALB.

Two different traffic types:

Web traffic → ALB
Queue traffic → ASG only

🎓 SIMPLE FINAL STORY

Tell them this:

S3 stores the movie.
SNS announces it.
SQS remembers the task.
EC2 workers process it.
ASG keeps workers alive.
ALB serves users.

That’s it.

🏁 FINAL PRODUCTION NETFLIX ARCHITECTURE

Flow:

User
→ ALB
→ Web ASG
→ S3
→ SNS
→ SQS
→ Worker ASG

This is real enterprise architecture.

🚀 COMPLETE END-TO-END LAB

S3 → SNS → SQS → EC2 Worker Architecture

🟢 PART 1 — Open Image in Browser from S3

Service used:
Amazon S3

STEP 1 — Bucket Setup

Bucket name:

student-upload-bucket-aj

Region:

us-east-2

STEP 2 — Disable Block Public Access (Demo Only)

Go to:

S3 → Bucket → Permissions → Block Public Access → Edit

Uncheck:

Block all public access

Save.

STEP 3 — Add Bucket Policy (Public Read)

S3 → Bucket → Permissions → Bucket Policy

Paste:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "PublicReadObjects",
      "Effect": "Allow",
      "Principal": "*",
      "Action": "s3:GetObject",
      "Resource": "arn:aws:s3:::student-upload-bucket-aj/*"
    }
  ]
}

Save.

STEP 4 — Upload Image

aws s3 cp myimage.jpg s3://student-upload-bucket-aj/uploads/myimage.jpg

STEP 5 — Open in Browser

Use:

https://student-upload-bucket-aj.s3.us-east-2.amazonaws.com/uploads/myimage.jpg

Now image loads.

Viewing flow:

Browser → S3

No EC2 involved.

🟢 PART 6 — Demonstrate System Working

On EC2 #2:

echo "demo test" > test1.txt
aws s3 cp test1.txt s3://student-upload-bucket-aj/uploads/test1.txt

On EC2 #1 (Worker):

You should see:

Processing: uploads/test1.txt
Moved to: processed/test1.txt

Check:

aws s3 ls s3://student-upload-bucket-aj/processed/

File exists.

🔴 PART 7 — Demonstrate Failure

On EC2 #1:

pkill -f worker.py

Worker is stopped.

Now upload from EC2 #2:

echo "after kill demo" > fail.txt
aws s3 cp fail.txt s3://student-upload-bucket-aj/uploads/fail.txt

Check uploads:

aws s3 ls s3://student-upload-bucket-aj/uploads/

File stays there.

Check SQS:

aws sqs receive-message \
  --queue-url https://sqs.us-east-2.amazonaws.com/ACCOUNT-ID/devops-sqs-queue \
  --region us-east-2 \
  --max-number-of-messages 1

Message waiting.

🎯 Explain What Happened

S3 worked
SNS worked
SQS stored message
Worker EC2 failed
Processing stopped

This is:

Single Point of Failure

🟢 PART 8 — Restart Worker

On EC2 #1:

python3 worker.py

It immediately processes:

Processing: uploads/fail.txt
Moved to: processed/fail.txt

This proves:

SQS keeps messages safely.

🏗 High Availability Discussion

For queue-based systems:

Use
Auto Scaling Group

Architecture becomes:

S3 → SNS → SQS → ASG (2+ workers)

If one worker dies:

ASG launches new one automatically.

No downtime.

❓ When Do We Use ALB?

Use
Elastic Load Balancing

Only when users connect to EC2 via HTTP.

Example:

User → ALB → EC2 Web Servers

Your lab is queue-based.

So:

✔ Need ASG
✖ Do NOT need ALB

🎓 Final Architecture

Viewing Flow:
Browser → S3

Processing Flow:
S3 → SNS → SQS → EC2 Worker

High Availability:
S3 → SNS → SQS → Auto Scaling Group Workers

🔥 FIRST — Important Understanding

Your system is queue-based, not web-based.

So:

✔ ASG is required
❌ ALB is NOT required for workers

ALB is only needed if users send HTTP traffic to EC2.

🏗 Final Production Architecture

Flow:

Browser → S3
S3 → SNS → SQS
SQS → Auto Scaling Group (2+ EC2 workers)

🟢 PART 1 — Convert Worker EC2 into Launch Template

Service used:
Amazon EC2

Step 1 — Stop current worker EC2

We will use it as template.

Step 2 — Create Launch Template

EC2 → Launch Templates → Create launch template

Use:

Same AMI
Same instance type
Same IAM Role
Same Security Group
Same Key pair

Step 3 — Add User Data (VERY IMPORTANT)

We must automatically start worker when instance launches.

In Launch Template → User Data → paste:

#!/bin/bash
apt update -y
apt install python3-pip -y
pip3 install boto3

cat <<EOF > /home/ubuntu/worker.py
# (paste your full worker.py code here)
EOF

chown ubuntu:ubuntu /home/ubuntu/worker.py
su - ubuntu -c "nohup python3 /home/ubuntu/worker.py > worker.log 2>&1 &"

Now every new EC2 automatically runs worker.

🟢 PART 2 — Create Auto Scaling Group

Service used:
Auto Scaling Group

Step 1 — Create ASG

EC2 → Auto Scaling Groups → Create

Select:

Launch Template you created

Choose:

At least 2 Availability Zones
Min: 2
Desired: 2
Max: 4

No load balancer needed.

Create.

Step 2 — Test It

Upload file:

aws s3 cp test.txt s3://student-upload-bucket-aj/uploads/test.txt

Check EC2 logs:

Both instances may process files.

🔴 PART 3 — Demonstrate Self-Healing

Terminate one instance manually.

ASG will:

Detect unhealthy instance
Launch new one automatically

Upload file again.

Processing continues.

This proves:

High availability.

🟡 When Do We Add ALB?

Service used:
Elastic Load Balancing

Add ALB only if:

You create a web application like:

User → EC2 web server

Then architecture becomes:

User → ALB → ASG → EC2 Web Servers

🎯 Example If You Want Web + Worker Combined

Architecture:

User → ALB → ASG (Web Servers)
S3 → SNS → SQS → ASG (Worker Servers)

Two separate ASGs.

🧠 Explain To Students

Queue-based system:

No ALB required
Workers pull messages

Web-based system:

ALB required
Traffic distributed

🚀 Advanced (Optional)

Add scaling policy:

Scale based on SQS metric:

ApproximateNumberOfMessagesVisible

If queue > 10 → Add instance

This is real production design.

🎓 Interview-Level Explanation

We deployed worker instances inside an Auto Scaling Group across multiple AZs to ensure fault tolerance and scalability. Since the system was queue-driven and did not handle direct HTTP traffic, an Application Load Balancer was not required.