Better, Faster, Stronger web apps with Amazon Web Services

Transcript

1. Simone Brunozzi ( @simon ) Senior Technology Evangelist, Amazon Web

   Services Better, Faster, Stronger web apps with Amazon Web Services

2. “Knowledge starts from great questions.” (from the previous presentation)

3. “Knowledge starts from great questions.” grows grows with inspiring answers”

   with inspiring answers”
4. None

5. BETTER CloudSearch Going Global AWS Support AWS Data Pipeline Elastic

   Load Balancer FASTER CloudFront DynamoDB ElastiCache Elastic Beanstalk STRONGER Security IAM VPC Securing Apache/NGINX Durability

6. BETTER FASTER STRONGER CloudFront DynamoDB Security IAM CloudSearch VPC Going

   Global ElastiCache Securing Apache/NGINX AWS Support AWS Data Pipeline Durability Elastic Beanstalk Elastic Load Balancer

7. BETTER FASTER STRONGER AWS Data Pipeline Process/Move data To/From AWS

   or on-premise sources Scheduled intervals

8. (Video)

9. BETTER FASTER STRONGER AWS Support One-on-one, fast response support channel

   Always available Experienced support engineers x y Four Different plans

10. 9 AWS Support: a Swiss knife

11. 9 Reactive troubleshooting Help to get started with AWS Recommendations

    on security, costs, and availability Discuss architecture and best practices Integrate the 150+ annual AWS feature releases Configuration help for a growing list of 3rd party software AWS Support: a Swiss knife

12. AWS Support plans Free 10 Basic 49 $ / month

    Developer (Min: 100 $) % of your AWS monthly bill: 10%: 0-10k 7%: 10k-80k 5%: 80k-250k 3%: 250k+ Business (Min: 15,000 $) % of your AWS monthly bill: 10%: 0-150k 7%: 150k-500k 5%: 500k-1M 3%: 1M+ Enterprise

13. What do you get? (1) 11 Basic Developer Business Enterprise

    YES Customer Service 24/7/365 YES YES YES YES Support forums YES YES YES YES Documentation, guides YES YES YES health checks Access to Technical support E P/C/E P/C/E/TAM - Named contacts 1 5 Unlimited - Response time 12 hours 1 hour 15 minutes - Architecture support Building blocks Guidance App Architecture - Best practice guidance YES YES YES - Client side diagnostic tools YES YES YES

14. What do you get? (2) 12 Business Enterprise Identity Access

    Management (IAM) YES YES Direct routing to Senior Support Engineers YES YES Third party Software Support (beta) YES YES AWS Trusted Advisor (beta) YES YES Infrastructure Event Management contact us YES Direct Access to TAM (Technical Account Manager) - YES White-Glove Case Routing - YES Management Business Reviews - YES

15. AWS Trusted Advisor

16. AWS Trusted Advisor in action

17. 15 (Video)

18. BETTER FASTER STRONGER AWS CloudSearch A fully-managed search service in

    the cloud Easy to integrate fast and scalable search functionality

19. BETTER FASTER STRONGER AWS CloudSearch A fully-managed search service in

    the cloud Easy to integrate fast and scalable search functionality • Faceted search • Field weighting • Stemming, Synonyms, Stop Words • Autoscaling • Index distribution / partition / replication

20. (Video)

21. BETTER FASTER STRONGER Going global: AWS Regions http://aws.amazon.com/about-aws/globalinfrastructure (as of

    Jan 10th, 2013) Regions (8) GovCloud Regions (1)

22. BETTER FASTER STRONGER Availability Zones http://aws.amazon.com/about-aws/globalinfrastructure (as of Jan 10th,

    2013) Availability Zones (23)

23. BETTER FASTER STRONGER CloudFront / Route 53 http://aws.amazon.com/about-aws/globalinfrastructure (as of

    Jan 10th, 2013) Edge Locations (39) Dallas  (2) St.Louis Miami Jacksonville Los  Angeles  (2) Palo  Alto Sea>le Ashburn  (2) Newark New  York  (3) Dublin London  (2) Amsterdam  (2) Stockholm Frankfurt  (2) Paris  (2) Singapore  (2) Hong  Kong  (2) Tokyo  (2) Sao  Paulo South  Bend San  Jose Osaka Milan Sydney Madrid

24. BETTER FASTER STRONGER AWS Support http://aws.amazon.com/about-aws/globalinfrastructure (as of Jan 10th,

    2013) Customer Service & Technical Support Remote TAMs (Technical Account Manager)

25. BETTER FASTER STRONGER Elastic Load Balancer Automatically balances traffic across

    EC2 instances Protocols: HTTP, HTTPS, TCP, SSL, or Custom One or multiple Availability Zones Automatic health checks
26. None

27. BETTER FASTER STRONGER CloudFront DynamoDB Security IAM CloudSearch VPC Going

    Global ElastiCache Securing Apache/NGINX AWS Support AWS Data Pipeline Durability Elastic Beanstalk Elastic Load Balancer

28. BETTER FASTER STRONGER Amazon ElastiCache Database Web Server

29. BETTER FASTER STRONGER Amazon ElastiCache Cache Database Web Server

30. BETTER FASTER STRONGER Amazon ElastiCache • Memcached-compliant • Different cache

    node types • Monitoring statistics • Dynamic scaling • Automatic failure detection / recovery • Automatic software patching

31. BETTER FASTER STRONGER Amazon DynamoDB • NoSQL key-value store •

    Provisioned throughput (automated scaling) • Fully distributed • Fault tolerant

32. BETTER FASTER STRONGER AWS Elastic Beanstalk

33. BETTER FASTER STRONGER AWS Elastic Beanstalk PHP Python Ruby .NET

    Java Passenger IIS Tomcat Apache Visual Studio Eclipse Git

34. BETTER FASTER STRONGER AWS Elastic Beanstalk Passenger IIS Tomcat Apache

35. BETTER FASTER STRONGER AWS Elastic Beanstalk Passenger IIS Tomcat Apache

    web/app server

36. BETTER FASTER STRONGER AWS Elastic Beanstalk web/app server

37. BETTER FASTER STRONGER AWS Elastic Beanstalk Master DB web/app server

    web/app server Elastic Load Balancer IP Standby DB web/app server

38. BETTER FASTER STRONGER • Easy deploy / rollback • Monitoring

    metrics (CloudWatch) • Receive SNS notifications (health, add/remove servers) • Access server log files • Quickly restart the entire stack • Custom application server settings AWS Elastic Beanstalk

39. BETTER FASTER STRONGER CloudFront What’s new? • New Edge locations

    • Support for cookies • Price classes (exclude edge locations based on cost) • New access log fields • Front End Optimization (compression, rendering, etc) • Dynamic content from EC2 (query / cache parameters)

40. BETTER FASTER STRONGER CloudFront DynamoDB Security IAM CloudSearch VPC Going

    Global ElastiCache Securing Apache/NGINX AWS Support AWS Data Pipeline Durability Elastic Beanstalk Elastic Load Balancer

41. BETTER FASTER STRONGER Durability EC2 internal storage: ephemeral. EBS: redundant.

    S3: designed for high durability. Glacier, compared to S3: delayed retrieval, lower price. RDS: backups to Amazon S3. DynamoDB: use AWS Data Pipeline to backup to S3. EBS: snapshots to S3.

42. BETTER FASTER STRONGER Amazon Virtual Private Cloud (VPC) Launch a

    private section of the AWS Cloud, with user- defined network topology and security/routing rules. Start using VPC today - No excuses.

43. (Video)

44. BETTER FASTER STRONGER Security [ Shared Responsibility Model ]

45. BETTER FASTER STRONGER Security

46. BETTER FASTER STRONGER Security

47. BETTER FASTER STRONGER Security Security Groups Credentials Encryption Your apps

48. BETTER FASTER STRONGER Securing Apache/NGINX • ModSecurity (currently 2.7) •

    Proper security guides (e.g. RHEL 6.0 Security Guide) • Remove unnecessary modules / services / daemons • SSH using a Bastion Host • Patch / Update • Hide version • Use “smart” access (e.g. strong passwords / certificates) • Run it within VPC!

49. BETTER FASTER STRONGER IAM Control access to AWS services and

    resources for your users, with users/roles/permissions. • Separate Master Account from everything else • Cross-account API access • Temporary security credentials (remember?) • Multi-Factor Authentication (MFA)

50. (Video)

51. http://aws.amazon.com/

52. http://aws.amazon.com/awspodcast

53. Simone Brunozzi ( @simon ) Senior Technology Evangelist, Amazon Web

    Services

54. Simone Brunozzi ( @simon ) Senior Technology Evangelist, Amazon Web

    Services Better, Faster, Stronger web apps with Amazon Web Services Thank you!