Upgrade to Pro — share decks privately, control downloads, hide ads and more …

AWS a-b-c's

Sponsored · Ship Features Fearlessly Turn features on and off without deploys. Used by thousands of Ruby developers.
Avatar for Andrew Best Andrew Best
October 13, 2015
Technology
160
3

AWS a-b-c's

A brief high-level overview of AWS's IaaS offering

Avatar for Andrew Best

Andrew Best

October 13, 2015

More Decks by Andrew Best

See All by Andrew Best
The Surprising Truths Behind Good Mentoring
Avatar for Andrew Best andrewabest
0
130
Learn Authentication The Hard Way
Avatar for Andrew Best andrewabest
0
340
Finding The Sweet Spot BNE
Avatar for Andrew Best andrewabest
1
250
Finding The Sweet Spot
Avatar for Andrew Best andrewabest
0
460
Automating AWS
Avatar for Andrew Best andrewabest
2
380
Conventional Wisdom
Avatar for Andrew Best andrewabest
1
470
DSC a-b-c's
Avatar for Andrew Best andrewabest
0
150
What is Git?
Avatar for Andrew Best andrewabest
0
220
Client Side Testing
Avatar for Andrew Best andrewabest
0
72

Other Decks in Technology

See All in Technology
申請待ちゼロへ!AWS × Entra IDで実現した「権限付与」のセルフサービス化
Avatar for みずほリサーチ&テクノロジーズ株式会社 先端技術研究部 mhrtech
1
110
Bluesky Meetup in Tokyo vol.4 - 2023to2026
Avatar for Takuma Shinohara shinoharata
0
110
機能・非機能の学びを一つに!Agent Skillsで月間レポート作成始めてみた / Unifying Bug & Infra Insights — Building Monthly Quality Reports with Agent Skills
Avatar for bun bun913
5
3.8k
シン・リスコフの置換原則 〜現代風に考えるSOLIDの原則〜
Avatar for Watanabe Jin jinwatanabe
0
150
不確実性と戦いながら見積もりを作成するプロセス/mitsumori-process
Avatar for hiro@miraito hirodragon112
1
200
Kubernetes基盤における開発者体験 とセキュリティの両⽴ / Balancing developer experience and security in a Kubernetes-based environment
Avatar for mekka chmikata
0
210
インフラを Excel 管理していた組織が 3 ヶ月で IaC 化されるまで
Avatar for ギークプラス ソフトウェア事業部 geekplus_tech
2
110
ZOZOTOWNリプレイスでのSkills導入までの流れとこれから
Avatar for ZOZO Developers zozotech
PRO
4
3.1k
Webアクセシビリティは“もしも”に備える設計
Avatar for tomokusaba tomokusaba
0
170
暗黙知について一歩踏み込んで考える - 暗黙知の4タイプと暗黙考・暗黙動へ
Avatar for Masaya Mori (森正弥) / CAIO (Chief AI Officer) masayamoriofficial
0
440
20260410 - CNTUG meetup #72 - DiskImage Builder 介紹:以 Kubespray CI 打造 RockyLinux 10 Cloud Image 為例
Avatar for ChengHao Yang tico88612
0
110
自己組織化を試される緑茶ハイを求めて、今日も全力であそんで学ぼう / Self-Organization and Shochu Green Tea
Avatar for naiban naitosatoshi
0
290

Featured

See All Featured
How to Get Subject Matter Experts Bought In and Actively Contributing to SEO & PR Initiatives.
Avatar for Liv Day livdayseo
0
96
What the history of the web can teach us about the future of AI
Avatar for Ines Montani inesmontani
PRO
1
510
Reality Check: Gamification 10 Years Later
Avatar for Sebastian Deterding codingconduct
0
2.1k
Abbi's Birthday
Avatar for Violet Bock coloredviolet
2
6.4k
AI in Enterprises - Java and Open Source to the Rescue
Avatar for ivargrimstad ivargrimstad
0
1.2k
Rebuilding a faster, lazier Slack
Avatar for samanthasiow samanthasiow
85
9.4k
How to Talk to Developers About Accessibility
Avatar for Jason CranfordTeague jct
2
170
The Success of Rails: Ensuring Growth for the Next 100 Years
Avatar for Eileen M. Uchitelle eileencodes
47
8k
SEO in 2025: How to Prepare for the Future of Search
Avatar for Michael King ipullrank
3
3.4k
The Impact of AI in SEO - AI Overviews June 2024 Edition
Avatar for Aleyda Solis aleyda
5
790
From π to Pie charts
Avatar for Rasagy Sharma rasagy
0
160
SEO for Brand Visibility & Recognition
Avatar for Aleyda Solis aleyda
0
4.4k

Transcript

  1. AWS A-B-C’s

  2. Page Disclaimer: not actually in alphabetical order / Copyright ©2014

    by Readify Pty Ltd 2

  3. Page A is for IAM › Identity and Access Management.

    › Allows you to define credentials with restricted capabilities that you can then use when working with the .net SDK / Powershell API. › Users are provisioned with a key pair that serves as your keys to your kingdom – you can only retrieve them once, so store in a safe place! / Copyright ©2014 by Readify Pty Ltd 3

  4. Page Regions and Availability Zones › AWS resources can be

    deployed into Regions, which are hosted in geographically separate locations – for example us-west-2 is in Oregon, whereas ap-southeast- 2 is in Sydney. › Each region has at least two Availability Zones, which are hosted in separate data-centres within the region, ensuring that we can provision our resources in a highly available fashion. / Copyright ©2014 by Readify Pty Ltd 4

  5. Page VPC › Virtual Private Cloud. › Is defined for

    a single region. › Defines a set of available IP addresses, subnets and routes. › They are used to isolate our EC2 instances (and other bits and bobs) from the rest of our AWS infrastructure, and control access to the internet. / Copyright ©2014 by Readify Pty Ltd 5

  6. Page VPC - Subnet › Defines a range of IP

    addresses that can be assigned to services. › Is defined for an availability zone within a region. › Instances a launched ‘into’ the subnet. › These IP addresses may be public or private, depending on the subnets preferences. › Subnets can talk to other subnets via Routing. › This controls ‘Who can I talk to?’ / Copyright ©2014 by Readify Pty Ltd 6

  7. Page VPC - Routing › Route tables are used to

    restrict or enable traffic to travel between subnets. › They also control access to the internet by allowing a subnet to be connected to an internet gateway or NAT box. › Instances in AWS are *not* connected to the internet by default – you need to ensure you have appropriate routing in place. / Copyright ©2014 by Readify Pty Ltd 7

  8. Page EC2 › Elastic Compute is virtual machines – IaaS.

    › EC2 instances are provisioned within a Subnet in a given VPC. › A range of ‘images’ are available that provide various Windows and Linux configurations out of the box. › EC2 instances are also associated with Security Groups that define what inbound and outbound connections are allowed. / Copyright ©2014 by Readify Pty Ltd 8

  9. Page EC2 - Security Groups › Security Groups define a

    group-level firewall to protect instances within the group. › ‘What language can I talk?’. › For example, you may want to allow inbound TCP over 3389 for remote desktop connectivity. › Don’t forget about your instance’s windows firewall though! / Copyright ©2014 by Readify Pty Ltd 9

  10. Page EC2 – Load Balancers › Load balancers provide an

    auto-scaling public entry point to our EC2 instance. › They can redirect traffic from given ports, terminate SSL, and check the health of instances that are enrolled in them. / Copyright ©2014 by Readify Pty Ltd 10

  11. Page EC2 – Auto scaling › Auto Scaling Groups allow

    us to automatically provision more instances on demand to meet load demand. › Instances are provisioned from a Launch Configuration which defines the ‘shape’ of the EC2 instance to launch into the ASG. / Copyright ©2014 by Readify Pty Ltd 11

  12. Page S3 › Simple Storage Solution. › Allows us to

    store files up in the clouds! › Files are stored in ‘buckets’, which is how S3 partitions content. › Can be used to host static websites. / Copyright ©2014 by Readify Pty Ltd 12

  13. Page CloudFormation › Actually has a name that almost makes

    sense! › Orchestrates the creation of AWS resources for us. › Takes the pain of ‘resiliently’ standing up / tearing down this stuff out of the process. › Processes ‘templates’ defined in JSON. / Copyright ©2014 by Readify Pty Ltd 13

  14. Page Honourable Mentions › RDS – Relational Database Service, Amazon’s

    PaaS SQL offering. › Route 53 – DNS services within AWS. › Elastic Beanstalk – PaaS compute, can be used to host IIS websites. › CloudWatch – monitoring service for your AWS resources. / Copyright ©2014 by Readify Pty Ltd 14

  15. Page / Copyright ©2014 by Readify Pty Ltd 15