Developers.IO_Nagoya_Well-Architected_Frameworkでクラウドジャーニー.pdf

Transcript

1. "84Ϋϥ΢υδϟʔχʔ͸͡ΊͷҰา
   
   ʮ"84
   8FMM"SDIJUFDUFEϑϨʔϜϫʔΫʯͰ஌Δ
   "84ϕετϓϥΫςΟε "84ࣄۀຊ෦ɹίϯαϧςΟϯά෦
   ొஃऀ
   ࢢాળٱ

2. ࣗݾ঺հ • ࢢాળٱ • AWSࣄۀຊ෦ ίϯαϧςΟϯά෦ ◦ ιϦϡʔγϣϯΞʔΩςΫτ • େࡕΦϑΟεॴଐ

   • ޷͖ͳAWSαʔϏε ◦ AWS IoTܥαʔϏε

3. ໼৔ͱΜ ͸Ϡό͔ͬͨͨͰ͢

4. εϥΠυ͸ޙͰೖख͢Δ͜ͱ͕ग़དྷ·͢ͷͰ ൃදதͷ಺༰ΛϝϞ͢Δඞཁ͸͋Γ·ͤΜɻ ࣸਅࡱӨΛ͢Δ৔߹͸ ϑϥογϡɾγϟολʔԻ͕ग़ͳ͍Α͏ʹ͝഑ྀ͍ͩ͘͞

5. ຊ೔ͷ಺༰ • Well-Archtected Frameworkͱ͸ʁ • Ұൠతͳઃܭͷݪଇ • ʮ৴པੑͷபʯ • Well-Arctected

   Frameworkͷ࢖͍ํͷΠϝʔδΛ೺Ѳ • ࣌ؒత౎߹͔Βʮபʯͷશ߲໨ʹ͍ͭͯ͸͓࿩͠·ͤΜɻ • ʮ৴པੑͷபʯ͔Βൈਮͯ͠۩ମతͳར༻๏Λ͓఻͑͠·͢ • Well-Architected Tool ͷ঺հͱ࢖͍ํ • ·ͱΊ

6. 6 ͱ͸ʁ

7. 7 What’s AWS Well-Architected Framework ? • ΞʔΩςΫνϟͷઃܭɾӡ༻ʹ͓͚ΔϕετϓϥΫςΟεू • ઃܭݪଇͱ5ͭͷ෼໺(ப)ʹผΕ࣭ͨ໰ͱճ౴ܗࣜ

   • ҆શͰߴ͍ύϑΥʔϚϯεɺো֐଱ੑΛඋ͑ޮ཰తͳΠϯϑϥߏஙͷαϙʔτ • 5ຊͷபʗ46ͷ࣭໰Λ௨ͯ͠ઃܭ͕ϕετϓϥΫςΟεʹଇ͍ͬͯΔ͔Λ֬ೝ͢Δ ߟ͑ํʗϓϩηε ӡ༻্ͷ ༏लੑ ηΩϡϦ ςΟ ৴པੑ ύϑΥʔ Ϛϯε ޮ཰ ίετ ࠷దԽ

8. 8 Ϋϥ΢υʹ͓͚ΔҰൠతͳઃܭݪଇ

9. 9 Ϋϥ΢υʹ͓͚ΔҰൠతͳઃܭͷݪଇ ✓ ඞཁͳΩϟύγςΟΛצʹཔΒͳ͍ ✓ ຊ൪ن໛ͰγεςϜΛςετ͢Δ ✓ ΞʔΩςΫνϟ্ͷ࣮ݧͷճ਺Λ૿΍͢ҝʹࣗಈԽΛऔΓೖΕΔ ✓ ൃలతͳΞʔΩςΫνϟΛड͚ೖΕΔ

   ✓ σʔλܭଌʹج͍ͮͯΞʔΩςΫνϟΛܾఆ͢Δ ✓ ຊ൪Ͱ૝ఆ͞ΕΔτϥϒϧΛ͋Β͔͡Ίςετ͠ରࡦ͢Δ

10. 10 ඞཁͳΩϟύγςΟʔΛצʹཔΒͳ͍ ՝୊ • ໌֬ͳࠜڌͳ͘ઌߦͯ͠ϋʔυ΢ΣΞͷௐୡΛߦͬͨ৔߹ɺແବ ͳϦιʔε͕ൃੜ͢Δ৔߹͕͋Δʢٯ΋વΓʣ • ΩϟύγςΟϓϥϯχϯάʹ͕͔͔࣌ؒΔ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ •

    ॊೈͳΩϟύγςΟมߋ͕Մೳ • มߋͷࠜڌʹͳΔϝτϦΫεΛ༰қʹऩूՄೳ • ࣄ࣮ʹج͍ͮͨઃܭ

11. 11 ຊ൪ن໛ͰγεςϜΛςετ͢Δ ՝୊ • ςετͷͨΊʹຊ൪؀ڥͱಉ౳ͷ؀ڥΛ४උ͢Δ͜ͱ͕ࠔ೉ • ෆे෼ͳςετ͔͠͠ͳ͍··αʔϏεΛϦϦʔε͠ɺ௚ޙʹ՝୊͕ݦࡏԽ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ςετதͷΈϦιʔεΛϓϩϏδϣχϯάʗςετऴྃޙʹ࡟আ͕Մೳ

    • ΠϯϑϥΛίʔυԽ͢Δ͜ͱͰ༰қʹෳ੡Մೳ

12. 12 ΞʔΩςΫνϟ্ͷ࣮ݧͷճ਺Λ૿΍͢ҝʹࣗಈԽΛऔΓೖΕΔ ՝୊ • ख࡞ۀʹΑΔ޻਺ͷ૿ՃɺϛεʹΑΔख໭Γ • ͦ΋ͦ΋ɺຊ൪؀ڥΛมߋ͢ΔϦεΫ͕ߴͯ͘࡞ۀͰ͖ͳ͍ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ߏ੒΍ෳ੡Λ༰қʹࣗಈԽ͢Δ͜ͱ͕Մೳ

13. 13 ൃలతͳΞʔΩςΫνϟΛड͚ೖΕΔ ՝୊ • ϏδωεతͳมԽʹΠϯϑϥ͕௥ैͰ͖ͳ͍
 ʢϏδωεͷ੒௕ʹΑΔΞΫηεʗσʔλྔͷ૿ՃɺͳͲʣ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ࣗಈԽ΍ෳ੡͕༰қͰ͋Δ͜ͱʹΑΓ௥ै͠΍͍͢
 ʢʹઃܭ͓Αͼߏ੒มߋͷϦεΫΛ௿ݮʣ

14. 14 σʔλܭଌʹج͍ͮͯΞʔΩςΫνϟΛܾఆ͢Δ ՝୊ • ಠࣗͰ؂ࢹγεςϜΛߏங͢Δඞཁ͕͋Δ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ֤αʔϏεͰ༷ʑͳϝτϦΫεΛऔಘՄೳ • ؂ࢹ΍ϩΪϯάΛߦ͏αʔϏεͷఏڙ

15. 15 ຊ൪Ͱ૝ఆ͞ΕΔτϥϒϧΛ͋Β͔͡Ίςετ͠ɺରࡦ͢Δ ՝୊ • ো֐ൃੜ࣌ͷαʔϏε΁ͷӨڹΛࣄલʹ֬ೝ͢Δ͜ͱ͕ࠔ೉ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • γεςϜͷෳ੡͕༰қʢʹഁյతͳςετΛؾܰʹ࣮ࢪ͢Δ͜ͱ͕Մೳʣ • ςετதͷΈϦιʔεΛϓϩϏδϣχϯά͠ɺςετऴྃޙʹ࡟আՄೳ

16. 16 Ұൠతͳઃܭͷݪଇʢ࠶ܝʣ ✓ ඞཁͳΩϟύγςΟʔΛצʹཔΒͳ͍ ✓ ຊ൪ن໛ͰγεςϜΛςετ͢Δ ✓ ࣗಈԽʹΑͬͯΞʔΩςΫνϟ্ͷ࣮ݧΛ༰қʹ͢Δ ✓ ൃలతͳΞʔΩςΫνϟΛड͚ೖΕΔ

    ✓ σʔλܭଌʹج͍ͮͯΞʔΩςΫνϟΛܾఆ͢Δ ✓ ຊ൪Ͱ૝ఆ͞ΕΔτϥϒϧΛ͋Β͔͡Ίςετ͠ɺରࡦ͢Δ

17. 17 ʮ৴པੑʯʹؔ͢Δ࣭໰ࣄ߲ͱվળํ๏

18. 18 ৴པੑʹ͓͚Δઃܭݪଇ ✓ ෮چखॱΛςετ͢Δ ✓ ো֐͔Βͷࣗಈతʹ෮چ͢Δ ✓ ਫฏํ޲ʹεέʔϧͯ͠૯߹తͳγεςϜͷՄ༻ੑΛ޲্͢Δ ✓ ΩϟύγςΟʔΛצʹཔΒͳ͍

    ✓ ࣗಈԽͷมߋΛ؅ཧ͢Δ

19. 19 ෮چखॱͷςετͷ࣮ࢪ ՝୊ • ΦϯϓϨ؀ڥͩͱ໢ཏతͳγφϦΦʹΑΔςετ͕೉͍͠ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ࣗಈԽʹΑΓ༷ʑͳγφϦΦͰγϛϡϨʔγϣϯΛ܁Γฦ࣮͠ߦͰ͖Δ • ໰୊͕͋ͬͨ৔߹ͷमਖ਼ͱݕূ͕༰қʹͰ͖Δ

20. 20 ো֐͔Βࣗಈతʹ෮چ͢Δ ՝୊ • ෺ཧతͳ੍໿Ͱࣗಈ෮چͰ͖Δൣғ͕ݶఆ͞ΕΔ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ΠϕϯτۦಈͰࣗಈ෮چ͢Δ࢓૊ΈΛ༰қʹߏஙͰ͖Δ • αʔϏεো֐Λىͣ͜͞ʹҟৗͳՕॴΛमਖ਼ɺਖ਼ৗͳঢ়ଶΛܧଓͰ͖Δ

21. 21 ਫฏํ޲ʹεέʔϧͯ͠૯߹తͳγεςϜͷՄ༻ੑΛ޲্ͤ͞Δ ՝୊ • ෺ཧతͳ੍໿ͰϦιʔεෆ଍ΛղফͰ͖ͳ͍ʢϦιʔε֦ுͰ͖ͳ͍ʣ • ϞϊϦγοΫͳγεςϜͩͱ୯Ұো֐͕શମʹӨڹ͢Δ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ϚΠΫϩαʔϏεԽͯ͠ো֐ൣғΛݶఆతʹܰݮ

    • ֤ϨΠϠΛૄ݁߹ʹ࿈݁͠ϨΠϠຖʹεέʔϧΞ΢τ • AutoScalingͷར༻ͳͲ • Single-AZΑΓ΋Multi-AZΛجຊߏ੒ʹ • ੵۃతʹϚωʔδυαʔϏεΛར༻ͯ͠Ϧιʔεෆ଍Λճආ

22. 22 ඞཁͳΩϟύγςΟʔΛצʹཔΒͳ͍ ՝୊ • ࠜڌͷແ͍૝ఆ্ͷϐʔΫΞΫηεΛݩʹͨ͠ϓϥϯχϯά • ෺ཧతͳ੍໿Ͱ૝ఆ֎ͷϦιʔεෆ଍ΛղফͰ͖ͳ͍ʢϦιʔε֦ுͰ͖ͳ͍ʣ • Ծఆͨ͠ΞΫηεྔͳͷͰա৒ϦιʔεʹͳͬͨΓɺٯʹϦιʔεෆ଍ʹͳΔ Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹

    • ॊೈͳΩϟύγςΟมߋ͕Մೳ • มߋͷࠜڌͱͳΔϝτϦΫεΛ༰қʹऩू • σʔλυϦϒϯͳϓϥϯχϯά • ࠷దͳϓϩϏδϣχϯάʢա৒Ͱ΋աখͰ΋ͳ͍ʣ

23. 23 ࣗಈԽʹΑΔมߋͷ؅ཧ ՝୊ • มߋ࡞ۀ͸ख࡞ۀͷ৔߹͕ଟ͍ • ୭͕͍ͭͲ͏͍͏มߋΛͨ͠ͷ͔؅ཧ͕೉͍͠ɻ • มߋखॱΛه࿥͍ͯͯ͠΋۩ମతͳมߋ಺༰͕
 ෼͔ΓͮΒ͍

    Ϋϥ΢υαʔϏεΛར༻͢Δ৔߹ • ΠϯϑϥετϥΫνϟΛίʔυʹΑΓఆٛͰ͖Δ • σϓϩΠϝϯτύΠϓϥΠϯΛࣗಈԽͰ͖Δ

24. 24 ϕετϓϥΫςΟε ʙ৴པੑʹؔ͢Δ࣭໰ࣄ߲ͱվળํ๏ʙ

25. 25 9ͭͷ࣭໰ 1. AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ 2. AWS্ͰͷωοτϫʔΫߏ੒ΛͲͷΑ͏ʹઃܭ͍ͯ͠·͔͢ʁ 3. γεςϜʹର͢ΔधཁͷมԽʹ͸ͲͷΑ͏ʹରԠ͍ͯ͠·͔͢ʁ 4. AWSϦιʔεΛͲͷΑ͏ʹϞχλϦϯά͍ͯ͠·͔͢ʁ

    5. มߋΛͲͷΑ͏ʹ࣮ࢪ͍ͯ͠·͔͢ʁ 6. σʔλΛͲͷΑ͏ʹόοΫΞοϓ͍ͯ͠·͔͢ʁ 7. γεςϜ͕ίϯϙʔωϯτͷΤϥʔʹ଱͑ΔΑ͏ʹͲͷΑ͏ʹઃܭ͍ͯ͠·͔͢ 8. γεςϜͷ஄ྗੑΛͲͷΑ͏ʹςετ͍ͯ͠·͔͢ʁ 9. ࡂ֐࣌ͷϦΧόϦϓϥϯ͸Ͳ͏ͳ͍ͬͯ·͔͢ʁ

26. 26 9ͭͷ࣭໰ 1. AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ 2. AWS্ͰͷωοτϫʔΫߏ੒ΛͲͷΑ͏ʹઃܭ͍ͯ͠·͔͢ʁ 3. γεςϜʹର͢ΔधཁͷมԽʹ͸ͲͷΑ͏ʹରԠ͍ͯ͠·͔͢ʁ 4. AWSϦιʔεΛͲͷΑ͏ʹϞχλϦϯά͍ͯ͠·͔͢ʁ

    5. มߋΛͲͷΑ͏ʹ࣮ࢪ͍ͯ͠·͔͢ʁ 6. σʔλΛͲͷΑ͏ʹόοΫΞοϓ͍ͯ͠·͔͢ʁ 7. γεςϜ͕ίϯϙʔωϯτͷΤϥʔʹ଱͑ΔΑ͏ʹͲͷΑ͏ʹઃܭ͍ͯ͠·͔͢ 8. γεςϜͷ஄ྗੑΛͲͷΑ͏ʹςετ͍ͯ͠·͔͢ʁ 9. ࡂ֐࣌ͷϦΧόϦϓϥϯ͸Ͳ͏ͳ͍ͬͯ·͔͢ʁ

27. 27 1/9ɽ AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ • ੍ݶͷ؅ཧ௥੻͸͍ͯ͠ͳ͍ • ੍ݶΛ؂ࢹ͠؅ཧΛߦ͍ͬͯΔ • ؂ࢹΛࣗಈԽ੍͠ݶͷ؅ཧΛߦ͍ͬͯΔ •

    ΞʔΩςΫνϟΛհͯ͠ݻఆαʔϏεͷ੍ݶʹରԠ͍ͯ͠Δ • ϑΣΠϧΦʔόʔʹରԠ͢ΔͨΊʹɺݱࡏͷαʔϏε੍ݶͱ࠷େ࢖༻ྔͱͷؒʹ े෼ͳࠩΛ֬อ͍ͯ͠Δ • ؔ࿈͢ΔશͯͷΞΧ΢ϯτͱϦʔδϣϯશମͷαʔϏε੍ݶΛ؅ཧ͍ͯ͠Δ

28. 28 1/9ɽ AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ • ੍ݶͷ؅ཧ௥੻͸͍ͯ͠ͳ͍ • ੍ݶΛ؂ࢹ͠؅ཧΛߦ͍ͬͯΔ • ؂ࢹΛࣗಈԽ੍͠ݶͷ؅ཧΛߦ͍ͬͯΔ •

    ΞʔΩςΫνϟΛհͯ͠ݻఆαʔϏεͷ੍ݶʹରԠ͍ͯ͠Δ • ϑΣΠϧΦʔόʔʹରԠ͢ΔͨΊʹɺݱࡏͷαʔϏε੍ݶͱ࠷େ࢖༻ྔͱͷؒʹ े෼ͳࠩΛ֬อ͍ͯ͠Δ • ؔ࿈͢ΔશͯͷΞΧ΢ϯτͱϦʔδϣϯશମͷαʔϏε੍ݶΛ؅ཧ͍ͯ͠Δ

29. 29 ࣗಈతͳ؇࿨ EC2ͷ੍ݶ͸ίϯιʔϧͰ֬ೝ • Πϯελϯεɺϗετ਺ • EBSʢϓϩϏδϣϯυIOPSɺετϨʔδαΠζʣ • ωοτϫʔΩϯά •

    AutoScaling • ϩʔυόϥϯγϯά

30. 30 ࣗಈతͳ؇࿨

31. 31 1/9ɽ AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ • ੍ݶͷ؅ཧ௥੻͸͍ͯ͠ͳ͍ • ੍ݶΛ؂ࢹ͠؅ཧΛߦ͍ͬͯΔ • ؂ࢹΛࣗಈԽ੍͠ݶͷ؅ཧΛߦ͍ͬͯΔ •

    ΞʔΩςΫνϟΛհͯ͠ݻఆαʔϏεͷ੍ݶʹରԠ͍ͯ͠Δ • ϑΣΠϧΦʔόʔʹରԠ͢ΔͨΊʹɺݱࡏͷαʔϏε੍ݶͱ࠷େ࢖༻ྔͱͷؒʹ े෼ͳࠩΛ֬อ͍ͯ͠Δ • ؔ࿈͢ΔશͯͷΞΧ΢ϯτͱϦʔδϣϯશମͷαʔϏε੍ݶΛ؅ཧ͍ͯ͠Δ

32. 32 Trusted Advisor ֤छϦιʔεͷར༻ঢ়گͱαʔϏε੍ݶʹର͢Δঢ়ଶΛ֬ೝ • ݱࡏͷར༻ঢ়گͱ੍ݶʹର͢Δঢ়ଶΛʮGreenʯʮYellowʯʮRedʯͰදࣔ • ʮϏδωεʯʮΤϯλʔϓϥΠζʯαϙʔτར༻ͷ৔߹͸ຖिࣗಈͰߋ৽ • APIͰνΣοΫΛߋ৽Մೳ


    AWS αϙʔτAPIͷར༻ Trusted Advisor͕ఏڙ͢ΔνΣοΫͷ໊લͱIDΛऔಘ Trusted AdvisorͷνΣοΫΛ࣮ߦ Trusted AdvisorͷνΣοΫͷৄࡉ৘ใͱαϚϦʔΛऔಘ Trusted AdvisorνΣοΫͷߋ৽ ֤Trusted AdvisorνΣοΫͷεςʔλεΛऔಘ

33. 1/9ɽ AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ • ੍ݶͷ؅ཧ௥੻͸͍ͯ͠ͳ͍ • ੍ݶΛ؂ࢹ͠؅ཧΛߦ͍ͬͯΔ • ؂ࢹΛࣗಈԽ੍͠ݶͷ؅ཧΛߦ͍ͬͯΔ • ΞʔΩςΫνϟΛհͯ͠ݻఆαʔϏεͷ੍ݶʹରԠ͍ͯ͠Δ

    • ϑΣΠϧΦʔόʔʹରԠ͢ΔͨΊʹɺݱࡏͷαʔϏε੍ݶͱ࠷େ࢖༻ྔͱͷؒʹ े෼ͳࠩΛ֬อ͍ͯ͠Δ • ؔ࿈͢ΔશͯͷΞΧ΢ϯτͱϦʔδϣϯશମͷαʔϏε੍ݶΛ؅ཧ͍ͯ͠Δ

34. 34 CloudWatchͰαʔϏε੍ݶΛ௨஌͢Δ Trusted AdvisorͷαʔϏε੍ݶʹؔ͢ΔϝτϦΫε͕CloudWatchʹൃߦ͞ΕΔ • CloudWatch Alarmͷ࡞੒ɿ͖͍͠஋ͱͯ͠ར༻཰ʮ0.00ʙ1.00ʯΛࢦఆ • CloudWatch EventsͰεςʔλεͷ


    มߋΛݕग़Մೳ • ઃఆϦʔδϣϯ͸ʮN.Virginiaʯ https://docs.aws.amazon.com/ja_jp/awssupport/latest/user/cloudwatch-metrics-ta.html https://dev.classmethod.jp/cloud/aws/sonobe-trustedadvisor-cloudwatch-integrate/

35. 35 CloudWatchͰαʔϏε੍ݶΛ௨஌͢Δ CloudWatch EventsͷΠϕϯτύλʔϯ { "source": [ "aws.trustedadvisor" ], "detail-type":

    [ "Trusted Advisor Check Item Refresh Notification" ], "detail": { "status": [ "ERROR" ], "check-name": [ "Service Limits", "EC2 Elastic IP Addresses", "Security Groups - Specific Ports Unrestricted" ] } }

36. 36 AWS Limit Monitor ʮAWSιϦϡʔγϣϯʯͰఏڙ͞Ε͍ͯΔςΫχΧϧϦϑΝϨϯε࣮૷ • AWSϦιʔεͷར༻ঢ়گΛ௥੻ɺ্ݶʹ͍͖͍ۙ͠஋ʹୡ͢Δͱ௨஌

37. 37 AWS Service Quotas • AWSαʔϏεͷΫΥʔλ(੍ݶ)Λ؅ཧͰ͖ΔαʔϏεʢ2019೥6݄ϦϦʔεʣ • ະରԠͷαʔϏε͸αϙʔτηϯλʔ͔ΒαϙʔτέʔεΛ࡞੒ͯ͠ਃ੥ • CloudWatchΞϥʔϜͰΫΥʔλ஋ͷ͖͍͠஋ʹج͍ͮͨ௨஌͕Մೳ

38. 38 AWS Service Quotas

39. AWS Service Quotas

40. 40 1/9ɽ AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ • ੍ݶͷ؅ཧ௥੻͸͍ͯ͠ͳ͍ • ੍ݶΛ؂ࢹ͠؅ཧΛߦ͍ͬͯΔ • ؂ࢹΛࣗಈԽ੍͠ݶͷ؅ཧΛߦ͍ͬͯΔ •

    ΞʔΩςΫνϟΛհͯ͠ݻఆαʔϏεͷ੍ݶʹରԠ͍ͯ͠Δ • ϑΣΠϧΦʔόʔʹରԠ͢ΔͨΊʹɺݱࡏͷαʔϏε੍ݶͱ࠷େ࢖༻ྔͱͷؒʹ े෼ͳࠩΛ֬อ͍ͯ͠Δ • ؔ࿈͢ΔશͯͷΞΧ΢ϯτͱϦʔδϣϯશମͷαʔϏε੍ݶΛ؅ཧ͍ͯ͠Δ

41. 41 1/9ɽ AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ • ੍ݶͷ؅ཧ௥੻͸͍ͯ͠ͳ͍ • ੍ݶΛ؂ࢹ͠؅ཧΛߦ͍ͬͯΔ • ؂ࢹΛࣗಈԽ੍͠ݶͷ؅ཧΛߦ͍ͬͯΔ •

    ΞʔΩςΫνϟΛհͯ͠ݻఆαʔϏεͷ੍ݶʹରԠ͍ͯ͠Δ • ϑΣΠϧΦʔόʔʹରԠ͢ΔͨΊʹɺݱࡏͷαʔϏε੍ݶͱ࠷େ࢖༻ྔͱͷؒʹ े෼ͳࠩΛ֬อ͍ͯ͠Δ • ؔ࿈͢ΔશͯͷΞΧ΢ϯτͱϦʔδϣϯશମͷαʔϏε੍ݶΛ؅ཧ͍ͯ͠Δ

42. 42 9ͭͷ࣭໰ 1. AWSαʔϏεͷ੍ݶΛͲͷΑ͏ʹ؅ཧ͍ͯ͠·͔͢ʁ 2. AWS্ͰͷωοτϫʔΫߏ੒ΛͲͷΑ͏ʹઃܭ͍ͯ͠·͔͢ʁ 3. γεςϜʹର͢ΔधཁͷมԽʹ͸ͲͷΑ͏ʹରԠ͍ͯ͠·͔͢ʁ 4. AWSϦιʔεΛͲͷΑ͏ʹϞχλϦϯά͍ͯ͠·͔͢ʁ

    5. มߋΛͲͷΑ͏ʹ࣮ࢪ͍ͯ͠·͔͢ʁ 6. σʔλΛͲͷΑ͏ʹόοΫΞοϓ͍ͯ͠·͔͢ʁ 7. γεςϜ͕ίϯϙʔωϯτͷΤϥʔʹ଱͑ΔΑ͏ʹͲͷΑ͏ʹઃܭ͍ͯ͠·͔͢ 8. γεςϜͷ஄ྗੑΛͲͷΑ͏ʹςετ͍ͯ͠·͔͢ʁ 9. ࡂ֐࣌ͷϦΧόϦϓϥϯ͸Ͳ͏ͳ͍ͬͯ·͔͢ʁ ʢҧ͏࣭໰ͷ಺༰΋ݟͯΈ·͠ΐ͏ɻʣ

43. 43 4/9ɽAWSϦιʔεΛͲͷΑ͏ʹϞχλϦϯά͍ͯ͠·͔͢ʁ • શͯͷ૚ʹ͓͚ΔϫʔΫϩʔυͰ؂ࢹ͍ͯ͠Δ • ϞχλϦϯάʹج͍ͮͨ௨஌Λ࣮ࢪ͍ͯ͠Δ • Πϕϯτൃੜ࣌ʹࣗಈରԠΛ࣮ߦ͍ͯ͠Δ • ఆظతʹϨϏϡʔΛߦ͍ͬͯΔ

44. 44 4/9ɽAWSϦιʔεΛͲͷΑ͏ʹϞχλϦϯά͍ͯ͠·͔͢ʁ • શͯͷ૚ʹ͓͚ΔϫʔΫϩʔυͰ؂ࢹ͍ͯ͠Δ • ϞχλϦϯάʹج͍ͮͨ௨஌Λ࣮ࢪ͍ͯ͠Δ • Πϕϯτൃੜ࣌ʹࣗಈରԠΛ࣮ߦ͍ͯ͠Δ • ఆظతʹϨϏϡʔΛߦ͍ͬͯΔ

45. 45 AWSαʔϏεͷϩάͷ༗ޮԽ • S3αʔόΞΫηεϩά • Elastic Load BalancerͷΞΫηεϩά • VPCϑϩʔϩά

    • CloudWatch LogsɺS3ʹग़ྗՄೳ • ར༻༻్΍ίετײͰબ୒ɻ • ClouTrail • CloudWatch LogsͰαʔό্ͷϩάΛετϦʔϛϯά • CloudWatch Agentͷར༻ • ECSͷίϯςφϩάΛCloudWatch Logsʹग़ྗ • fargateͷ৔߹ɺϩάυϥΠόʔ͸awslogsͱsplunk • LambdaͷϩάΛCloudWatch LogsʹετϦʔϛϯά

46. 46 ूதϩΪϯά • ूதϩΪϯάˍσʔλՄࢹԽ • ϓϥΠϚϦͷΞΧ΢ϯτͰूதϩΪϯά • kibana΁͸CognitoͰೝূ • AWSιϦϡʔγϣϯͰςϯϓϨʔτެ։

    • $1.44ʙ12.43/݄

47. 47 Network Load Balancerͷϩά • Netowork Load Balancer͸ʮTLSʯͷ৔߹ͷΈ • Ϧεφʔ͕ʮTCPʯͷͱ͖͸ग़ྗ͞Εͳ͍

    • ϩάͷϑΟʔϧυ͸L4૬౰ͷ৘ใ͕ग़ྗ • UserAgent΍ϦΫΤετ಺༰ͳͲ͕औΕͳ͍ • ҰൠతͳWebΞΫηεϩάͷղੳ༻్ʹ͸ෆ޲͖ • EC2ଆͰऔಘ͢Δඞཁ͕͋Δ tls 1.0 2018-12-20T02:59:40 net/my-network-loadbalancer/c6e77e28c25b2234 g3d4b5e8bb8464cd 72.21.218.154:51341 172.100.100.185:443 5 2 98 246 - arn:aws:acm:us-east-2:671290407336:certificate/2a108f19-aded-46b0-8493- c63eb1ef4a99 - ECDHE-RSA-AES128-SHA tlsv12 - my-network-loadbalancer-c6e77e28c25b2234.elb.us-east-2.amazonaws.com

48. 48 CloudWatch Logs • Lambda, Elasticsearch Service, KinesisͷαϒεΫϦϓγϣϯϑΟϧλ • ϑΟϧλύλʔϯʹԠͯ͡ϦΞϧλΠϜʹసૹ

    • Kinesis͸ Kinesis Data Stream ͱ Kinesis Data Firehose • KinesisͷαϒεΫϦϓγϣϯϑΟϧλʔ͸ίϯιʔϧ͔ΒઃఆෆՄ

49. 49 CloudWatch logs Insight • CloudWatch logsͷϩάΛΠϯλϥΫςΟϒʹ෼ੳɾՄࢹԽ • ಠࣗܗࣜͷΫΤϦίϚϯυΛൃߦ •

    ίϯιʔϧͷURL͕ͦͷΫΤϦͷ࣮ߦ݁ՌͷURLʹͳΔ • ॊೈʹ෼ੳ͍ͨ͠৔߹͸AthenaΛݕ౼ stats avg(bytes), min(bytes), max(bytes) by srcAddr, dstAddr

50. 50 CloudWatch logs Insight • CSVͰ݁ՌΛΤΫεϙʔτՄೳ • CSV, ASCIIܗࣜͰίϐʔՄೳ •

    ΫΤϦίϚϯυ΋هࡌ

51. 51 4/9ɽAWSϦιʔεΛͲͷΑ͏ʹϞχλϦϯά͍ͯ͠·͔͢ʁ • શͯͷ૚ʹ͓͚ΔϫʔΫϩʔυͰ؂ࢹ͍ͯ͠Δ • ϞχλϦϯάʹج͍ͮͨ௨஌Λ࣮ࢪ͍ͯ͠Δ • Πϕϯτൃੜ࣌ʹࣗಈରԠΛ࣮ߦ͍ͯ͠Δ • ఆظతʹϨϏϡʔΛߦ͍ͬͯΔ

52. 52 ϞχλϦϯά಺༰ͷ௨஌ํ๏ • ి࿩௨஌ɺϝʔϧ௨஌ɺ SlackͷಛఆνϟϯωϧʹPost • ి࿩͸ Amazon Connect΍Twilioͷར༻ͰՄೳ

53. 53 4/9ɽAWSϦιʔεΛͲͷΑ͏ʹϞχλϦϯά͍ͯ͠·͔͢ʁ • શͯͷ૚ʹ͓͚ΔϫʔΫϩʔυͰ؂ࢹ͍ͯ͠Δ • ϞχλϦϯάʹج͍ͮͨ௨஌Λ࣮ࢪ͍ͯ͠Δ • Πϕϯτൃੜ࣌ʹࣗಈରԠΛ࣮ߦ͍ͯ͠Δ • ఆظతʹϨϏϡʔΛߦ͍ͬͯΔ

54. 54 ࣗಈରԠ • Ξϥʔτݕ஌͔Β෮چ࡞ۀ·ͰࣗಈԽ • ಛఆͷΞϥʔτ͸׬શʹࣗಈԽ • ࣗಈԽ͕๬·͘͠ͳ͍΋ͷ͸ผͷΞϓϩʔν • ୲౰ऀͷ൑அΛڬΜͩ൒ࣗಈԽ

    • Slack΍ి࿩௨஌ޙɺslack͔Β෮چॲཧ / ௨࿩தʹ෮چॲཧ • ϚωʔδυαʔϏεΛར༻ͨ͠ίϯϙʔωϯτͷஔ͖׵͑ • ྫɿRDSͷMulti-AZ • EC2 Auto RecoveryʹΑΔstop/startࣗಈԽ • ج൫ଆͷো֐ൃੜ࣌ʹՔಇ͢Δج൫Λ੾Γସ͑

55. 55 ෮چ·ͰͷࣗಈԽ • αʔό্ͷҰ࣍తͳ෮چॲཧΛࣗಈԽ • ෮چ༻ͷCloudWatch Alarm΋ొ࿥ͯ֬͠ೝ • Systems ManagerͷRun

    CommandΛLambdaͰ࣮ߦ • Run CommandͰαʔό্ͷॲཧΛ࣮ߦ • αʔϏεϨϕϧʹԠͨ͡ར༻ • ࠜຊରࡦ·Ͱͷ࢑ఆॲཧ • AutoScalingͷར༻

56. 56 ෮چ·ͰͷࣗಈԽ-൑அʹΑΔ෮چ • ௨࿩தͷμΠϠϧϓογϡͰAmazon Connect͔Β෮چ࡞ۀ༻ͷLambdaΛ࣮ߦ • ϓογϡ൪߸ʹΑΓॲཧΛ෼ذ • SlackͷεϥογϡίϚϯυͰ෮چ࡞ۀ༻ͷLambdaΛ࣮ߦ •

    ো֐௨஌༻νϟϯωϧͳͲΛར༻ͨ͠chatops

57. 57 9/9ɽࡂ֐෮چΛͲͷΑ͏ʹܭը͠·͔͢ʁ • μ΢ϯλΠϜͱσʔλଛࣦͷ෮چ໨ඪΛఆ͍ٛͯ͠Δ • ఆٛ͞Εͨ෮چઓུΛ࢖༻ͯ͠෮چ໨ඪୡ੒ͷҝͷࡂ֐෮چઓུΛఆ͍ٛͯ͠Δ • ো֐෮چͷ࣮૷Λςετ࣮ͯ͠૷Λݕূ͍ͯ͠Δ • ͢΂ͯͷมߋͷߏ੒ͷͣΕΛ؅ཧ͍ͯ͠Δ

    • ճ෮ΛࣗಈԽ͍ͯ͠Δ ࠓճ͸࣌ؒͷ౎߹্ɺৄࡉ͸ׂѪ͍͖ͤͯͨͩ͞·͢ɻ

58. 58 ͜͜·ͰͷৼΓฦΓ • ʮ৴པੑͷபʯʹ͍ͭͯɺ࣭໰ͱճ౴Λ۩ମతʹݟΔ͜ͱͰWell-Architected Framesworkͷ಺༰͕۩ମతʹݟ͖͑ͯͨͰ͠ΐ͏͔ʁ • ࣍ʹɺWell-Architected FramesworkΛ࢖ͬͯɺΞʔΩςΫνϟΛվળ͢Δํ๏ʹ ͍ͭͯݟ͍͖͍ͯͨͱࢥ͍·͢ɻ

59. 59 Well-Architected Frameworkͷ࢖͍ํ

60. 60 ϨϏϡʔͷํ๏ 1. ηϧϑνΣοΫ • ֤νΣοΫ߲໨ʹճ౴ͯ͠ݱঢ়ͷઃܭ΍ӡ༻ʹ͍ͭͯ୨Է͠ • Well-Architected tool ·ͨ͸ɺಉ༷ͷExcelʹهೖ

    2.ϨϏϡʔ • AWS·ͨ͸W-AೝఆύʔτφʔͷιϦϡʔγϣϯΞʔΩςΫτͱϨϏϡʔ • ηϧϑνΣοΫͷ಺༰ΛूதతʹϨϏϡʔ • վળࡦͷݕ౼΍σΟεΧογϣϯ • ༏ઌ౓෇͚ • ߲໨ຖʹཁෆཁͷ൑அ 3.վળ࣮ࢪ • վળࡦʹج͍ͮͨ࠷దԽͷ࣮ࢪ • ఆظతʹ࠶౓νΣοΫɺϨϏϡʔΛߦ͍࠷దԽΛਐΊΔ

61. 61 ϨϏϡʔϓϩηεͷॏཁϙΠϯτ εςʔΫϗϧμʔશһ͕ϨϏϡʔʹࢀՃ CTOɺΞʔΩςΫτɺ։ൃɺӡ༻ɺଞ Կ͔໰୊͕ݟ͔ͭͬͯ΋୲౰ऀΛ੹Ίͳ͍ ৺ཧత҆શੑͷ֬อɺϨϏϡʔ͸ʮ؂ࠪʯͰ͸ͳ͘ʮ࿩͠߹͍ʯͰ͢ ઃܭॳظஈ֊Ͱͷ࣮ࢪΛਪ঑ ख໭Γͷճආɺमਖ਼͕ࠔ೉ͳ՝୊ͷൃੜΛ༧๷ ࠷৽৘ใͷऩूͱͦΕΛ౿·͑ͨܧଓతͳϨϏϡʔ AWSͷ৽αʔϏεʗ৽ػೳͷ׆༻ɺϏδωε؀ڥͷมԽ΁ͷରԠ

62. 62 ϨϏϡʔ࣌ͷཹҙ఺ શͯͷϕετϓϥΫςΟεʹରԠ͢Δඞཁ͸͋Δͷ͔ʁ • ϦεΫ΍վળ఺Λ೺ѲͰ͖Δ͜ͱ͕ॏཁ • ϕετϓϥΫςΟεΛຬͨ͢΂͖͔Ͳ͏͔͸ɺϏδωε؀ڥʹΑͬͯҟͳΔ ϨϏϡʔͷ࣮ࢪΛड͚ೖΕͯ΋Β͑ͳ͍Մೳੑ • ʮ๩͍͠ʯɺʮػີ৘ใΛѻ͏ͷͰઃܭΛڞ༗Ͱ͖ͳ͍ʯͳͲ

    • ʰϦεΫΛ๊͑ͨ··ͰαʔϏεΛ։࢝͠·͔͢ʁʱ

63. 63 Well-Architected Tool

64. 64 Well-Architected Tool re:Invent 2018Ͱ৽αʔϏεͱͯ͠ൃද • Well-Architected Frameworkʹجͮ͘ϨϏϡʔΛηϧϑαʔϏεͰ࣮ࢪͰ͖Δ πʔϧ •

    ݱ࣌఺ʢ2019೥9݄ʣͰ͸ӳޠͷΈ

65. 65 ϗϫΠτϖʔύʔ General Design PracticesʢઃܭͷҰൠݪଇʣͱ The Review ProcessʢϨϏϡʔϓϩηεɺޙड़ʣ͸ಛʹॏཁ

66. 66 ೔ຊޠԽʹ͍ͭͯ ݱ࣌఺ͰW-A Tool೔ຊޠԽͷ༧ఆͳͲ͸ެ։͞Ε͓ͯΓ·ͤΜ ʮAWS Ϋϥ΢υαʔϏε׆༻ࢿྉूʯͰ࣭໰Λ೔ຊޠԽͨ͠ࢿྉ͕ެ։ AWS Ϋϥ΢υαʔϏε׆༻ࢿྉू https://aws.amazon.com/jp/aws-jp-introduction/ AWS

    Well-Architected Framework ώΞϦϯάγʔτʢ೔ຊޠ൛ʣ https://d1.awsstatic.com/webinars/jp/pdf/services/Well- Architected%E3%83%92%E3%82%A2%E3%83%AA%E3%83%B3%E3%82%B0%E3%82%B7%E3%83%BC%E 3%83%88%E6%97%A5%E6%9C%AC%E8%AA%9E%E7%89%88.77c25d2afd0a69894be16b95aae6a4230 11f5a1f.xlsx ೔ຊޠͷϗϫΠτϖʔύʔ͸·ͩ࠷৽Խ͞Ε͍ͯ·ͤΜʢ2018೥6݄൛ʣ https://d1.awsstatic.com/International/ja_JP/Whitepapers/AWS_Well- Architected_Framework_2018_JA_final.pdf ࠷৽ͷӳޠ൛͸2019೥7݄൛

67. 67 Excelόʔδϣϯ

68. 68 Demo

69. 69 Ϛωʔδϝϯτίϯιʔϧ΁ϩάΠϯ • όʔδχΞ๺෦ɺΦϋΠΦɺΦϨΰϯɺ๺ΞΠϧϥϯυϦʔδϣϯͰར༻Ͱ͖·͢ • ౦ژϦʔδϣϯͷϫʔΫϩʔυΛධՁͰ͖·͢ʢධՁʹ͋ͨΓW-A Tool͸ϦιʔεʹΞΫηε͠·ͤΜʣ

70. 70 ϫʔΫϩʔυͷఆٛ

71. 71 ϨϏϡʔ

72. 72 ϨϏϡʔ “Question does not apply to this workload” ϫʔΫϩʔυʹద༻Ͱ͖ͳ͍࣭໰ΛεΩοϓ͢

    Δͱ͖ʹνΣοΫ ྫʣʮAWSαʔϏε΁ͷϓϩάϥϜʹΑΔΞΫη εΛͲͷΑ͏ʹ੍ޚ͍ͯ͠·͔͢ʁʯˠϓϩά ϥϜʹΑΔ੍ޚΛ͍ͯ͠ͳ͍ “Notes - optional” ิ଍ࣄ߲Λهࡌ ྫʣʮRPO/RTOʹؔ͢ΔཁٻϨϕϧ͕௿͍ͨ Ίɺ୯Ұো֐఺ͷഉআ͸෇༩ʯͷΑ͏ʹɺϕε τϓϥεςΟεʹԊ͏ඞཁ͕ແ͍ཧ༝ͳͲΛهࡌ

73. 73 ϨϏϡʔ ֤બ୒ࢶͷղઆ ʢબ୒ࢶͷҙຯ΍վળ͢ΔͨΊʹ ԿΛ͢Ε͹͍͍͔Θ͔Βͳ͍ͱ͖ʹࢀরʣ

74. 74 ϨϏϡʔ ϦεΫͷ֓ཁ վળ׆ಈͷεςʔλε

75. 75 ϨϏϡʔ Ͳͷபʹؔ͢ΔվળΛ༏ઌ͢Δ͔ ʢ͜ͷԼͷվળ߲໨ͷදࣔॱʹӨڹ͢Δʣ վળ͢΂͖ࣄ߲ͱվળͷͨΊͷࢀߟ৘ใ

76. 76 ϨϏϡʔ

77. 77 ϚΠϧετʔϯͷอଘ ݱ࣌఺ͷճ౴ঢ়گΛϚΠϧετʔϯͱͯ͠อଘՄೳ

78. 78 վળͱϨϏϡʔΛܧଓ ͋Δఔ౓վળ׆ಈ͕࣮ࢪͰ͖ͨΒɺ ࠶ϨϏϡʔΛ࣮ࢪͯ͠Ͳͷఔ౓ϦεΫΛ؇࿨Ͱ͖͔ͨ֬ೝ ϚΠϧετʔϯ࡞੒࣌ͷճ౴ΛࢀরՄೳ ܧଓతͳվળʹΑΓɺϦεΫΛ࡟ݮ

79. 79 վળͱϨϏϡʔΛܧଓ ෳ਺ͷϫʔΫϩʔυʹର͢ΔධՁΛ1Χॴʹू໿ ʢͲͷϫʔΫϩʔυ͔Β༏ઌͯ͠վળ͢Δ΂͖͔Λ൑அʣ

80. ैདྷͷExcelܗࣜͱͷҧ͍ Excelܗࣜ • ϫʔΫϩʔυ(γεςϜ)ຖʹϑΝΠϧ͕ඞཁ ◦ γʔτ͕ଟ͘ͳΔͱϑΝΠϧࣗମ͕ॏ͘ͳΔ • ϑΝΠϧͷ؅ཧࣗମΛݕ౼͕ඞཁ • ਐḿ؅ཧͰ͖ͳ͍ʢ೉͍͠ʣ

    • ϚωδϝϯτίϯιʔϧʹΞΫηεͰ͖ͳͯ͘΋ධՁͰ͖Δ Well Architected Tool • ෳ਺ͷϫʔΫϩʔυΛҰݩతʹ؅ཧͰ͖Δ • ϦεΫͷ͋Δ߲໨΍༏ઌ౓ͷߴ͍΋ͷΛ֬ೝͰ͖Δ • ϚΠϧετʔϯΛॻ͘͜ͱͰܧଓతʹධՁɾվળͰ͖Δ 80

81. 81 ·ͱΊ

82. 82 Well-Architected Framework • ϕετϓϥΫςΟεʹଇ͍ͬͯΔ͔Λ֬ೝͰ͖ΔϕετϓϥΫςΟεू • ࣭໰͸Ұ؏ͯ͠ઃܭͷجຊݪଇʹଇ͍ͬͯΔ͔Λ֬ೝ͢Δ΋ͷʹͳ͍ͬͯΔ • શͯͷϕετϓϥΫςΟεʹରԠ͢Δඞཁ͸ͳ͍ •

    ༏ઌॱҐ΍ରԠͷཁෆཁ͸Ϗδωε؀ڥ΍εςʔΫϗϧμʔͷཁٻʹΑΓҟͳΔ
 ʢཁ݅΍༏ઌॱҐΛࣗ෼ͨͪͰܾΊΔʣ • Well-Archtected Framework ToolΛ࢖ͬͯϢʔβࣗ਎ͰΞηεϝϯτ࣮ࢪ • ఆظతʹϨϏϡʔͱվળΛ܁Γฦͯ͠Ϋϥ΢υ࠷దԽΛਐΊΔ

83. 83