Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
AWS a-b-c's
Search
Andrew Best
October 13, 2015
Technology
3
150
AWS a-b-c's
A brief high-level overview of AWS's IaaS offering
Andrew Best
October 13, 2015
Tweet
Share
More Decks by Andrew Best
See All by Andrew Best
The Surprising Truths Behind Good Mentoring
andrewabest
0
66
Learn Authentication The Hard Way
andrewabest
0
320
Finding The Sweet Spot BNE
andrewabest
1
230
Finding The Sweet Spot
andrewabest
0
430
Automating AWS
andrewabest
2
360
Conventional Wisdom
andrewabest
1
430
DSC a-b-c's
andrewabest
0
130
What is Git?
andrewabest
0
210
Client Side Testing
andrewabest
0
64
Other Decks in Technology
See All in Technology
Gaze-LLE: Gaze Target Estimation via Large-Scale Learned Encoders
kzykmyzw
0
300
プロダクトエンジニアリングで開発の楽しさを拡張する話
barometrica
0
220
夏休みWebアプリパフォーマンス相談室/web-app-performance-on-radio
hachi_eiji
1
290
Amazon Bedrock AgentCore でプロモーション用動画生成エージェントを開発する
nasuvitz
6
360
R-SCoRe: Revisiting Scene Coordinate Regression for Robust Large-Scale Visual Localization
takmin
0
370
どこで動かすか、誰が動かすか 〜 kintoneのインフラ基盤刷新と運用体制のシフト 〜
ueokande
0
160
キャリアを支え組織力を高める「多層型ふりかえり」 / 20250821 Kazuki Mori
shift_evolve
PRO
2
270
人を動かすことについて考える
ichimichi
2
270
ECS モニタリング手法大整理
yendoooo
1
110
はじめての転職講座/The Guide of First Career Change
kwappa
5
4.5k
ZOZOTOWNフロントエンドにおけるディレクトリの分割戦略
zozotech
PRO
5
630
Telemetry APIから学ぶGoogle Cloud ObservabilityとOpenTelemetryの現在 / getting-started-telemetry-api-with-google-cloud
k6s4i53rx
0
170
Featured
See All Featured
We Have a Design System, Now What?
morganepeng
53
7.7k
Product Roadmaps are Hard
iamctodd
PRO
54
11k
Scaling GitHub
holman
462
140k
The Cult of Friendly URLs
andyhume
79
6.5k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
161
15k
Intergalactic Javascript Robots from Outer Space
tanoku
272
27k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
34
3.1k
Optimizing for Happiness
mojombo
379
70k
KATA
mclloyd
32
14k
What’s in a name? Adding method to the madness
productmarketing
PRO
23
3.6k
How GitHub (no longer) Works
holman
315
140k
Why You Should Never Use an ORM
jnunemaker
PRO
59
9.5k
Transcript
AWS A-B-C’s
Page Disclaimer: not actually in alphabetical order / Copyright ©2014
by Readify Pty Ltd 2
Page A is for IAM › Identity and Access Management.
› Allows you to define credentials with restricted capabilities that you can then use when working with the .net SDK / Powershell API. › Users are provisioned with a key pair that serves as your keys to your kingdom – you can only retrieve them once, so store in a safe place! / Copyright ©2014 by Readify Pty Ltd 3
Page Regions and Availability Zones › AWS resources can be
deployed into Regions, which are hosted in geographically separate locations – for example us-west-2 is in Oregon, whereas ap-southeast- 2 is in Sydney. › Each region has at least two Availability Zones, which are hosted in separate data-centres within the region, ensuring that we can provision our resources in a highly available fashion. / Copyright ©2014 by Readify Pty Ltd 4
Page VPC › Virtual Private Cloud. › Is defined for
a single region. › Defines a set of available IP addresses, subnets and routes. › They are used to isolate our EC2 instances (and other bits and bobs) from the rest of our AWS infrastructure, and control access to the internet. / Copyright ©2014 by Readify Pty Ltd 5
Page VPC - Subnet › Defines a range of IP
addresses that can be assigned to services. › Is defined for an availability zone within a region. › Instances a launched ‘into’ the subnet. › These IP addresses may be public or private, depending on the subnets preferences. › Subnets can talk to other subnets via Routing. › This controls ‘Who can I talk to?’ / Copyright ©2014 by Readify Pty Ltd 6
Page VPC - Routing › Route tables are used to
restrict or enable traffic to travel between subnets. › They also control access to the internet by allowing a subnet to be connected to an internet gateway or NAT box. › Instances in AWS are *not* connected to the internet by default – you need to ensure you have appropriate routing in place. / Copyright ©2014 by Readify Pty Ltd 7
Page EC2 › Elastic Compute is virtual machines – IaaS.
› EC2 instances are provisioned within a Subnet in a given VPC. › A range of ‘images’ are available that provide various Windows and Linux configurations out of the box. › EC2 instances are also associated with Security Groups that define what inbound and outbound connections are allowed. / Copyright ©2014 by Readify Pty Ltd 8
Page EC2 - Security Groups › Security Groups define a
group-level firewall to protect instances within the group. › ‘What language can I talk?’. › For example, you may want to allow inbound TCP over 3389 for remote desktop connectivity. › Don’t forget about your instance’s windows firewall though! / Copyright ©2014 by Readify Pty Ltd 9
Page EC2 – Load Balancers › Load balancers provide an
auto-scaling public entry point to our EC2 instance. › They can redirect traffic from given ports, terminate SSL, and check the health of instances that are enrolled in them. / Copyright ©2014 by Readify Pty Ltd 10
Page EC2 – Auto scaling › Auto Scaling Groups allow
us to automatically provision more instances on demand to meet load demand. › Instances are provisioned from a Launch Configuration which defines the ‘shape’ of the EC2 instance to launch into the ASG. / Copyright ©2014 by Readify Pty Ltd 11
Page S3 › Simple Storage Solution. › Allows us to
store files up in the clouds! › Files are stored in ‘buckets’, which is how S3 partitions content. › Can be used to host static websites. / Copyright ©2014 by Readify Pty Ltd 12
Page CloudFormation › Actually has a name that almost makes
sense! › Orchestrates the creation of AWS resources for us. › Takes the pain of ‘resiliently’ standing up / tearing down this stuff out of the process. › Processes ‘templates’ defined in JSON. / Copyright ©2014 by Readify Pty Ltd 13
Page Honourable Mentions › RDS – Relational Database Service, Amazon’s
PaaS SQL offering. › Route 53 – DNS services within AWS. › Elastic Beanstalk – PaaS compute, can be used to host IIS websites. › CloudWatch – monitoring service for your AWS resources. / Copyright ©2014 by Readify Pty Ltd 14
Page / Copyright ©2014 by Readify Pty Ltd 15