AWS 101 Patrick Pierson, IonChannel
What is AWS? Amazon Web Services (AWS) is a secure cloud services platform, offering compute power, database storage, content delivery and other functionality to help businesses scale and grow.
How is AWS built? Regions - a physical location in the world where we have multiple Availability Zones Availability Zones - one or more data centers, each with redundant power, networking and connectivity, housed in separate facilities Edge Locations - where end users access services located at AWS. Located in major cities around the world and are specifically used by CloudFront (CDN) to distribute content to end user to reduce latency.
Compute EC2 - Elastic Compute Cloud - Virtual machines on demand EC2 Container Service - Scalable Docker via EC2 Elastic Beanstalk - service for deploying web applications and services developed with Java,.NET, PHP, Node.js, Python, Ruby, Go, and Docker on familiar servers such as Apache, Nginx, Passenger, and IIS. Lambda - serverless compute service. Run code directly in Lambda or upload packages.
EC2
EC2 Container Service
Lambda
Storage & Content Delivery S3 - online file storage web service, incredibly reliable Glacier - long term S3 storage CloudFront - web service that speeds up distribution of your static and dynamic web content Elastic File System - AWS scaled Network File System (NFS) Snowball - petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud Storage Gateway - service connecting an on-premises software appliance with cloud-based storage to provide seamless and secure integration between an organization s on-premises IT environment and AWS s storage infrastructure.
S3
Glacier
CloudFront
Database RDS - Relational Database Service - AWS managed database, fault tolerant. MySQL, PostgreSQL, SQL Server, and others. DynamoDB - AWS managed NoSQL database. ElastiCache - AWS managed memcached and redis (in memory cache) Redshift - AWS managed petabyte scale data warehouse (massive managed databases) DMS - Database Migration Service - migrate databases to AWS easily and securely.
RDS
DynamoDB
ElastiCache
Networking VPC - Virtual Private Cloud - provisions a logically isolated section of the AWS cloud Direct Connect - makes it easy to establish a dedicated network connection from your premises to AWS Route53 - AWS Managed Domain Name Service
VPC
Route53
Developer Tools CodeCommit - AWS Managed private git repo CodeDeploy - automates code deployments to any instance, including EC2 instances and instances running on-premises. CodePipeline - a continuous delivery service for fast and reliable application updates. Builds, tests, and deploys your code every time there is a code change
CodeCommit
Management Tools CloudWatch - monitoring service for AWS cloud resources and the applications you run on AWS CloudFormation - create and manage a collection of related AWS resources, provision and update them in an orderly and predictable fashion CloudTrail - web service that records AWS API calls Config - service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance OpsWorks - configuration management service that helps you configure and operate applications of all shapes and sizes using Chef Service Catalog - allows organizations to create and manage catalogs of IT services that are approved for use on AWS Trusted Advisor - service to help you reduce cost, increase performance, and improve security by optimizing your AWS environment
CloudWatch
CloudFormation
CloudTrail
Security & Identity Identity & Access Management - enables you to securely control access to AWS services and resources for your users Directory Service - easy to setup and run Microsoft Active Directory (AD) in the AWS cloud, or connect your AWS resources with an existing on-premises Microsoft Active Directory Inspector - automated security assessment service that helps improve the security and compliance of applications deployed on AWS WAF - Web Application Firewall - helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources Certificate Manager - service that lets you easily provision, manage, and deploy Secure Sockets Layer/Transport Layer Security (SSL/TLS) certificates for use with AWS services
IAM
Analytics EMR - Elastic Map Reduce - simplifies big data processing, providing a managed Hadoop framework Data Pipeline - web service that helps you process and move data between different AWS compute and storage services, as well as on-premise data sources Elasticsearch Service - AWS managed Elasticsearch Kinesis - platform for streaming data on AWS Machine Learning - service that makes it easy for developers of all skill levels to use machine learning technology. Amazon ML provides visualization tools and wizards that guide you through the process of creating ML models
EMR
Elasticsearch Service
Internet of Things AWS IoT - managed cloud platform that lets connected devices easily and securely interact with cloud applications and other devices Game Development GameLift - managed service for deploying, operating, and scaling session-based multiplayer games
Mobile Services Mobile Hub - add and configure features for your mobile apps, including user authentication, data storage, backend logic, push notifications, content delivery, and analytics Cognito - add user sign-up and sign-in to your mobile and web apps Device Farm - test against real phones and tablets in the AWS Cloud Mobile Analytics - measure app usage and app revenue SNS - Simple Notification Service - Pub-sub Service for Mobile and Enterprise Messaging
Cognito
SNS
Application Services API Gateway - fully managed service that makes it easy for developers to create, publish, maintain, monitor, and secure APIs at any scale AppStream - stream your existing Windows applications from the cloud, reaching more users on more devices, without code modifications CloudSearch - managed service in the AWS Cloud that makes it simple and costeffective to set up, manage, and scale a search solution for your website or application Elastic Transcoder - media transcoding in the cloud SES - email service built on the reliable and scalable infrastructure SQS - fast, reliable, scalable, fully managed message queuing service SWF - build, run, and scale background jobs that have parallel or sequential steps
API Gateway
SQS
Enterprise Applications WorkSpaces - managed desktop computing service in the cloud WorkDocs - managed, secure enterprise storage and sharing service with strong administrative controls and feedback capabilities that improve user productivity WorkMail - secure, managed business email and calendar service with support for existing desktop and mobile email clients
WorkMail
Linking it all together AWS best practices architecture enables you to tie services together to provide enterprise applications, web applications, etc. Following are some sample architectures.