Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Speaker Deck
PRO
Sign in
Sign up for free
AWS a-b-c's
Andrew Best
October 13, 2015
Technology
3
130
AWS a-b-c's
A brief high-level overview of AWS's IaaS offering
Andrew Best
October 13, 2015
Tweet
Share
More Decks by Andrew Best
See All by Andrew Best
andrewabest
0
78
andrewabest
1
160
andrewabest
0
200
andrewabest
2
120
andrewabest
1
140
andrewabest
0
84
andrewabest
0
190
andrewabest
0
47
andrewabest
0
110
Other Decks in Technology
See All in Technology
germsvel
1
220
maidol
0
590
hoto17296
0
270
tagucch
0
190
you
0
170
yusukeiwaki
5
780
aki_i
11
4k
shotakitazawa
2
410
shkitayama
0
830
youmitsu
1
2.5k
hi120ki
0
370
quiver
0
300
Featured
See All Featured
hatefulcrawdad
256
17k
hursman
111
9.5k
ammeep
660
55k
jeffersonlam
335
16k
reverentgeek
36
2.5k
lara
27
3.4k
rasmusluckow
318
19k
jacobian
261
20k
swwweet
209
7.2k
pauljervisheath
195
16k
malarkey
122
16k
wjessup
342
16k
Transcript
AWS A-B-C’s
Page Disclaimer: not actually in alphabetical order / Copyright ©2014
by Readify Pty Ltd 2
Page A is for IAM › Identity and Access Management.
› Allows you to define credentials with restricted capabilities that you can then use when working with the .net SDK / Powershell API. › Users are provisioned with a key pair that serves as your keys to your kingdom – you can only retrieve them once, so store in a safe place! / Copyright ©2014 by Readify Pty Ltd 3
Page Regions and Availability Zones › AWS resources can be
deployed into Regions, which are hosted in geographically separate locations – for example us-west-2 is in Oregon, whereas ap-southeast- 2 is in Sydney. › Each region has at least two Availability Zones, which are hosted in separate data-centres within the region, ensuring that we can provision our resources in a highly available fashion. / Copyright ©2014 by Readify Pty Ltd 4
Page VPC › Virtual Private Cloud. › Is defined for
a single region. › Defines a set of available IP addresses, subnets and routes. › They are used to isolate our EC2 instances (and other bits and bobs) from the rest of our AWS infrastructure, and control access to the internet. / Copyright ©2014 by Readify Pty Ltd 5
Page VPC - Subnet › Defines a range of IP
addresses that can be assigned to services. › Is defined for an availability zone within a region. › Instances a launched ‘into’ the subnet. › These IP addresses may be public or private, depending on the subnets preferences. › Subnets can talk to other subnets via Routing. › This controls ‘Who can I talk to?’ / Copyright ©2014 by Readify Pty Ltd 6
Page VPC - Routing › Route tables are used to
restrict or enable traffic to travel between subnets. › They also control access to the internet by allowing a subnet to be connected to an internet gateway or NAT box. › Instances in AWS are *not* connected to the internet by default – you need to ensure you have appropriate routing in place. / Copyright ©2014 by Readify Pty Ltd 7
Page EC2 › Elastic Compute is virtual machines – IaaS.
› EC2 instances are provisioned within a Subnet in a given VPC. › A range of ‘images’ are available that provide various Windows and Linux configurations out of the box. › EC2 instances are also associated with Security Groups that define what inbound and outbound connections are allowed. / Copyright ©2014 by Readify Pty Ltd 8
Page EC2 - Security Groups › Security Groups define a
group-level firewall to protect instances within the group. › ‘What language can I talk?’. › For example, you may want to allow inbound TCP over 3389 for remote desktop connectivity. › Don’t forget about your instance’s windows firewall though! / Copyright ©2014 by Readify Pty Ltd 9
Page EC2 – Load Balancers › Load balancers provide an
auto-scaling public entry point to our EC2 instance. › They can redirect traffic from given ports, terminate SSL, and check the health of instances that are enrolled in them. / Copyright ©2014 by Readify Pty Ltd 10
Page EC2 – Auto scaling › Auto Scaling Groups allow
us to automatically provision more instances on demand to meet load demand. › Instances are provisioned from a Launch Configuration which defines the ‘shape’ of the EC2 instance to launch into the ASG. / Copyright ©2014 by Readify Pty Ltd 11
Page S3 › Simple Storage Solution. › Allows us to
store files up in the clouds! › Files are stored in ‘buckets’, which is how S3 partitions content. › Can be used to host static websites. / Copyright ©2014 by Readify Pty Ltd 12
Page CloudFormation › Actually has a name that almost makes
sense! › Orchestrates the creation of AWS resources for us. › Takes the pain of ‘resiliently’ standing up / tearing down this stuff out of the process. › Processes ‘templates’ defined in JSON. / Copyright ©2014 by Readify Pty Ltd 13
Page Honourable Mentions › RDS – Relational Database Service, Amazon’s
PaaS SQL offering. › Route 53 – DNS services within AWS. › Elastic Beanstalk – PaaS compute, can be used to host IIS websites. › CloudWatch – monitoring service for your AWS resources. / Copyright ©2014 by Readify Pty Ltd 14
Page / Copyright ©2014 by Readify Pty Ltd 15
andrewabest
germsvel
maidol
hoto17296
tagucch
you
yusukeiwaki
aki_i
shotakitazawa
shkitayama
youmitsu
hi120ki
quiver
hatefulcrawdad
hursman
ammeep
jeffersonlam
reverentgeek
lara
rasmusluckow
jacobian
swwweet
pauljervisheath
malarkey
wjessup
