AWS - Amazon Web Services - Series 1.0

EC2

Elastic Compute Cloud is web service that provides , resizable compute capacity in the cloud

VPC

Virtual Private Cloud - A secure , isolated private cloud hosted within a public cloud.

Resources in VPC

Public subnet
Private subnet
NAT Gateway
VPC Gateway
Routing tables
Network ACL - Access Control List
Internet Gateway
Security Group
VPN - virtual private network
Transit Gateways

Auto Scaling

It Monitors the applications & automatically adjusts capacity to maintain steady , predictable performance at the lowest possible cost.

Two types :

Horizontal --> Adding more machines
Vertical --> Adding High CPU , RAM & Storage

ECR

• Its not the above ECR , in AWS we called it as " Elastic Container Registry ".
• Its like Docker hub / Git hub ( container registry )
• Used to store , share and deploy container images.

ECS

• Elastic Container Service.
• Its a scable container orchestration solution for running , stopping & Managing containers in a cluster.
• Its like Kubernetes.

Route 53

• IP to Name & Name to IP conversion.
• Its a high available & scalable Domain Name System web service.
• DNS port is 53

S3

• Simple Storage Service / bucket.
• Object storage like image , files etc
• Its reliable & Scalable object storage through a web service interface.
• You can even host a website out of it.
• Billing calculate how you use & store " Pay As You Go"

S3 Glacier

• Its an advanced version of S3.
• Its used for Archiving solution.

RDS

• Relational Database Service
• Its a web service that makes easier to setup , operate & scale a relational database in the cloud.

LAMBDA

• Serverless concept or serverless computing platform.
• Its an event driven like triggering.
• It will automatically allocate resources.
• Enables developers to run code without provisioning or managing servers.

Trusted Advisor

• Inspects and provides recommendations to improve performance , security & cost optimization.
• Its like customer care/service.

SNS

• Simple Notification Service
• Web service that makes it set up , operate & send notification from the cloud.
• App to App or App to client - Notification service

CloudTrail

• Provides viability into users activity by recording all the actions taken on your accounts.
• Monitor API users
• For Security Audit , we can use this service.

Cloudwatch

• Its monitors the complete stack like applications , infrastructure , network & services.
• Its alarms , logs & event data to take automated actions and reduce mean time to resolution/repair ( MTTR ).

IAM

• Identity Access Management
• You can create N number of users or assign users to a group.
• Its as many inbuilt policies.
• Manages centrally fine-grained permissions.

CLI

• Command Line Interface.
• Using AWS CLI we can control complete console using AWS packages.
• Unified tool to manage AWS services directly from the command line.

S3 Browser

• Its a freeware Windows client.[TBD]

Pricing Calculator

• Its a Calculator.
• Creates an estimate for the usage of resources.
• Do this always before provisioning any services.

KMS

• Key Management Service.
• Centralized Encryption key service.
• Control services from here.
• Create and Manage Keys and control the use of encryption across a wide range of AWS services.

Important :

Difference between ECR Vs ECS

ECR provides a repository that stores docker images.
ECS used to deploy i.e takes the image and use them to deploy in different containers.

Things to know

Password Hardening
MFA - Multi Factor Authentication
Opening of Ports
Never start services without knowing
Always do the calculation