Ahead in the Cloud. with Amazon Web Services. Matt Wood TECHNOLOGY EVANGELIST

Similar documents
Ahead in the Cloud. Matt Wood TECHNOLOGY EVANGELIST

Training on Amazon AWS Cloud Computing. Course Content

Enroll Now to Take online Course Contact: Demo video By Chandra sir

CIT 668: System Architecture. Amazon Web Services

TestkingPass. Reliable test dumps & stable pass king & valid test questions

How can you implement this through a script that a scheduling daemon runs daily on the application servers?

Introduction to Cloud Computing

Amazon Web Services (AWS) Solutions Architect Intermediate Level Course Content

Amazon AWS-Solution-Architect-Associate Exam

AWS_SOA-C00 Exam. Volume: 758 Questions

Designing Fault-Tolerant Applications

AWS London Loft: CloudFormation Workshop

DISTRIBUTED SYSTEMS [COMP9243] Lecture 8a: Cloud Computing WHAT IS CLOUD COMPUTING? 2. Slide 3. Slide 1. Why is it called Cloud?

Amazon Web Services Training. Training Topics:

At Course Completion Prepares you as per certification requirements for AWS Developer Associate.

AWS Administration. Suggested Pre-requisites Basic IT Knowledge

LINUX, WINDOWS(MCSE),

Amazon Web Services (AWS) Training Course Content

Amazon Web Services. Block 402, 4 th Floor, Saptagiri Towers, Above Pantaloons, Begumpet Main Road, Hyderabad Telangana India

About Intellipaat. About the Course. Why Take This Course?

PrepAwayExam. High-efficient Exam Materials are the best high pass-rate Exam Dumps

AWS: Basic Architecture Session SUNEY SHARMA Solutions Architect: AWS

2013 AWS Worldwide Public Sector Summit Washington, D.C.

Oracle WebLogic Server 12c on AWS. December 2018

Pulse Connect Secure Virtual Appliance on Amazon Web Services

CIT 668: System Architecture

Exam Questions AWS-Certified- Developer-Associate

Getting Started with AWS Security

AWS Solution Architect Associate

Security & Compliance in the AWS Cloud. Vijay Rangarajan Senior Cloud Architect, ASEAN Amazon Web

Security & Compliance in the AWS Cloud. Amazon Web Services

Amazon. Exam Questions AWS-Certified-Solutions-Architect- Professional. AWS-Certified-Solutions-Architect-Professional.

ActiveNET. #202, Manjeera Plaza, Opp: Aditya Park Inn, Ameerpetet HYD

What is Cloud Computing? What are the Private and Public Clouds? What are IaaS, PaaS, and SaaS? What is the Amazon Web Services (AWS)?

Introduction to cloud computing

NGF0502 AWS Student Slides

High School Technology Services myhsts.org Certification Courses

PracticeDump. Free Practice Dumps - Unlimited Free Access of practice exam

AWS Well Architected Framework

Security on AWS(overview) Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance

AWS Solutions Architect Associate (SAA-C01) Sample Exam Questions

Pass4test Certification IT garanti, The Easy Way!

SAA-C01. AWS Solutions Architect Associate. Exam Summary Syllabus Questions

ARCHITECTING WEB APPLICATIONS FOR THE CLOUD: DESIGN PRINCIPLES AND PRACTICAL GUIDANCE FOR AWS

AWS Course Syllabus. Linux Fundamentals. Installation and Initialization:

The Orion Papers. AWS Solutions Architect (Associate) Exam Course Manual. Enter

Introduction to. Amazon Web Services. Thilina Gunarathne Salsa Group, Indiana University. With contributions from Saliya Ekanayake.

Amazon Web Services Course Outline

Cloudera s Enterprise Data Hub on the Amazon Web Services Cloud: Quick Start Reference Deployment October 2014

MyCloud Computing Business computing in the cloud, ready to go in minutes

Cloud Computing /AWS Course Content

Lean & Mean on AWS: Cost-Effective Architectures. Constantin Gonzalez, Solutions Architect, AWS

Better, Faster, Stronger web apps with Amazon Web Services. Senior Technology Evangelist, Amazon Web Services

Principal Solutions Architect. Architecting in the Cloud

Introduction to Amazon Cloud & EC2 Overview

Filters AWS CLI syntax, 43 Get methods, 43 Where-Object command, 43

How to host and manage enterprise customers on AWS: TOYOTA, Nippon Television, UNIQLO use cases

Amazon Web Services Cloud Computing in Action. Jeff Barr

Driving DevOps Transformation in Enterprises

CPM. Quick Start Guide V2.4.0

Managing and Auditing Organizational Migration to the Cloud TELASA SECURITY

AWS Service Catalog. Administrator Guide

Overview of AWS Security - Database Services

BERLIN. 2015, Amazon Web Services, Inc. or its affiliates. All rights reserved

Basics of Cloud Computing Lecture 2. Cloud Providers. Satish Srirama

Network Security & Access Control in AWS

CIT 668: System Architecture

2013 AWS Worldwide Public Sector Summit Washington, D.C.

CS15-319: Cloud Computing. Lecture 3 Course Project and Amazon AWS Majd Sakr and Mohammad Hammoud

Advanced Architectures for Oracle Database on Amazon EC2

FAQs. Business (CIP 2.2) AWS Market Place Troubleshooting and FAQ Guide

We are ready to serve Latest IT Trends, Are you ready to learn? New Batches Info

Lassoing the Clouds: Best Practices on AWS. Brian DeShong May 26, 2017

AWS Service Drill Downs

Cloud Providers more AWS, Aneka

HPE Digital Learner AWS Certified SysOps Administrator (Intermediate) Content Pack

Lassoing the Clouds: Best Practices on AWS. Brian DeShong May 26, 2017

Web Cloud Solution. User Guide. Issue 01. Date

Cloud Computing. Amazon Web Services (AWS)

Amazon Linux: Operating System of the Cloud

Cloud Computing 4/17/2016. Outline. Cloud Computing. Centralized versus Distributed Computing Some people argue that Cloud Computing. Cloud Computing.

Building a Modular and Scalable Virtual Network Architecture with Amazon VPC

Amazon Web Services. Amazon Web Services

lab Highly Available and Fault Tolerant Architecture for Web Applications inside a VPC V1.01 AWS Certified Solutions Architect Associate lab title

Introduction to Amazon Web Services

Cloud Analytics and Business Intelligence on AWS

Standardized Architecture for PCI DSS on the AWS Cloud

Paperspace. Deployment Guide. Cloud VDI. 20 Jay St. Suite 312 Brooklyn, NY Technical Whitepaper

Cloud Services. Introduction

dbx MNT AWS Setup Guide

You have a business critical application that requires it to be highly available with 6 instances

Architecting for Greater Security in AWS

Amazon Web Services: The Pla6orm for Data Science. Jamie Kinney

Security Aspekts on Services for Serverless Architectures. Bertram Dorn EMEA Specialized Solutions Architect Security and Compliance

JIRA Software and JIRA Service Desk Data Center on the AWS Cloud

Installation of Informatica Services on Amazon EC2

AWS Solution Architect (AWS SA)

AWS Security. Stephen E. Schmidt, Directeur de la Sécurité

Aurora, RDS, or On-Prem, Which is right for you

EXAM - AWS-Solution-Architect- Associate. AWS Certified Solutions Architect - Associate. Buy Full Product

Transcription:

Ahead in the Cloud with Amazon Web Services Matt Wood TECHNOLOGY EVANGELIST

Hello.

Thank you.

Consumer business Seller business

Decades of experience Operations, management and scale

Programmatic access

Unexpected innovation

Blinding flash of the obvious

5 years young

Compute Storage Databases Services & Support

4

Cloud Foundations concepts 4 Maximising value Security in the Cloud

1 Cloud concepts Or: five things I wish I d known before getting started

1. Signing up

On the web

Free tier For new customers

750 hours of compute 10Gb network storage Free tier 5Gb Simple Storage Service SimpleDB, queues, notications

2. Interacting

API driven

REST API driven SOAP

CLI

ec2-run-instances

ec2-terminate-instances

SDK

Ruby Java.Net SDK ios PHP Android

Management console

Linux

Certificate based root access

mza$ ssh -i web/us-east/aws-web.pem root@ec2-204-236-247-169.compute-1.amazonaws.com Last login: Wed Jun 22 11:15:20 2011 from 82.26.6.99 _ ) CentOS _ ( / v5.4 \ HVMx64 Welcome to an EC2 Public Image :-) [root@ip-10-17-135-244 ~]#

Windows

Administrator access

3. Storage options

Ephemeral storage

Included with compute Ephemeral storage Lost at termination Not backed up

When it s gone, it s gone

Elastic Block Store

Network attached Mount as volume Elastic Block Store Snapshot Persistent

Persistent Root partitions. Mount as volumes.

S3

Highly durable Highly available S3 Tolerant to two simultaneous failures

99.999999999% durability

Objects in S3 Billions of objects 556B 600 450 300 150 0 Q4 2006 Q4 2007 Q4 2008 Q4 2009 Q4 2010 Q3 2011

370,000 peak transactions per second

4. Payment options

Pay as you go

Gb/month

ECU/hour

No minimum

No subscriptions

Pricing tiers

Consolidated billing

Options

On-demand

Reserved capacity

Spot instances

On-demand: $0.57 per hour

Bandwidth

Free inbound

Reduced outbound

Pricing calculator

calculator.s3.amazonaws.com/calc5.html

5. Availability Zones

us-east us-west eu-west ap-southeast ap-northeast

eu-west-1a eu-west-1b eu-west-1c

2 Foundations

Compute

Elastic Compute Cloud

Windows + Linux instances

Instance sizes

High memory Micro High CPU Instance sizes Standard Cluster Compute

Dual Nehalem 1.7Tb disk HVM

Amazon Machine Image

State Config Code Services Amazon Machine Image ami-219387e

Pre-configured

Custom

Private Custom Public

Elastic Block Store

m1.large

m1.large 100Gb

m1.large Persistent 100Gb Scalable Elastic block store Snapshot

m1.large AMI SNAPSHOT 100Gb

Template m1.large AMI AMI SNAPSHOT 100Gb SNAPSHOT

Template m1.large AMI AMI SNAPSHOT 100Gb SNAPSHOT Private, stored securely

m1.large AMI AMI SNAPSHOT 100Gb SNAPSHOT

m1.large AMI m1.large SNAPSHOT 100Gb 100Gb

m1.large m1.large m1.large m1.large 100Gb 100Gb 100Gb 100Gb m1.large m1.large m1.large m1.large 100Gb 100Gb 100Gb 100Gb

cc1.4xlarge

cc1.4xlarge 100Gb

Mount, and away you go...

Oracle

Oracle Database 11G Oracle E-business suite Oracle Fusion middleware Oracle Oracle Enterprise manager Oracle Enterprise Linux Oracle on RDS

Licence on EC2 Oracle Use existing licences

Days to minutes

Certified + supported

SAP

Rapid Deployment Solutions SAP BusinessObjects SAP Licence for EC2 Use existing licences

Storage

Simple Storage Service

Files in directories

Objects in buckets

http://s3.amazonaws.com/bucketname/objectid http://bucketname.s3.amazonaws.com/objectid

https://s3.amazonaws.com/bucketname/objectid https://bucketname.s3.amazonaws.com/objectid

Large objects 5Tb

Import/Export

S3 websites

Databases

Flexibility

AMI SNAPSHOT Packaged + ready to roll

Oracle 11g 32 and 64 bit

IBM DB2 32 and 64 bit

SQL Server 32 and 64 bit

PostgreSQL and EnterpriseDB

oracle-corporation

running

Configure, optimise

Snapshots + backup

Relational Database Service

MySQL Oracle Relational Database Service

Managed

Rapid

Scalable storage

Scalable instance

Synchronous replication eu-west-1a eu-west-1b High availability. Multi-AZ.

Asynchronous replication Read replicas

Remove the muck

Extra services

Simple Queue Service

Simple Notification Service

Elastic MapReduce

Input data S3

S3 Input data Code Elastic MapReduce

S3 Input data Code Elastic MapReduce Name node

S3 Input data Code Elastic MapReduce Name node Elastic cluster

S3 Input data Code Elastic MapReduce Name node HDFS Elastic cluster

S3 Input data Code Elastic MapReduce Name node Queries + BI HDFS Via JDBC, Pig, Hive Elastic cluster

S3 Input data Code Elastic MapReduce Name node Output S3 + SimpleDB Queries + BI HDFS Via JDBC, Pig, Hive Elastic cluster

S3 Input data Elastic MapReduce Output S3 + SimpleDB

Undifferentiated heavy lifting

Platform grows with you

Premium support Bronze, Silver, Gold, Platinum

3 Maximising Value

Elasticity

Design for elasticity

Horizontal scale

Everything fails, all the time Werner Vogels

Build for failure

Build for availability

Treat your data as your royal garden

Compute as an interchangeable resource

Auto-scaling

Elastic Load Balancer

Choice of instance sizes

Elastic by default SimpleDB, SQS, SNS, S3

Automatic

Applications in the cloud

3 tiers

Application tier Code Configuration

Application tier Code Configuration Operating system Integration settings Service tier Launch configuration Services + configuration

Application tier Code Configuration Operating system Integration settings Service tier Launch configuration Services + configuration AMIs Architecture Multi-AZ Infrastructure tier Scaling rules Security groups Middleware

Value baked into each tier

Value in application

Value in service tier

Optimisation Configuration Value in service tier Technology choices

Value in infrastructure

Engine room Optimised Value in infrastructure Scalable Fault tolerant

Maximising Automation maximises this value value

Automate everything

CloudFormation

Template

Define a full infrastructure stack

EC2 SNS Auto-scaling SimpleDB RDS SQS Resources Elastic Beanstalk CloudWatch Security groups Tags

Template CloudFormation Provisioned resources

Complete definition

Atomic

Idempotent

Free Only pay for the provisioned resources

JSON

Plain text Perfect for version control JSON Validate-able

Declarative language

{ "AWSTemplateFormatVersion" : "2010-09-09", } "Description" : "Create an EC2 instances", "Parameters" : { "KeyName" : { "Description" : "Name of an existing EC2 KeyPair to enable SSH access to the instance", "Type" : "String" } }, "Mappings" : { "RegionMap" : { "us-east-1" : { "AMI" : "ami-76f0061f" }, "us-west-1" : { "AMI" : "ami-655a0a20" }, "eu-west-1" : { "AMI" : "ami-7fd4e10b" }, "ap-southeast-1" : { "AMI" : "ami-72621c20" }, "ap-northeast-1" : { "AMI" : "ami-8e08a38f" } } }, "Resources" : { "Ec2Instance" : { "Type" : "AWS::EC2::Instance", "Properties" : { "KeyName" : { "Ref" : "KeyName" }, "ImageId" : { "Fn::FindInMap" : [ "RegionMap", { "Ref" : "AWS::Region" }, "AMI" ]}, "UserData" : { "Fn::Base64" : "80" } } } }, "Outputs" : { "InstanceId" : { "Description" : "InstanceId of the newly created EC2 instance", "Value" : { "Ref" : "Ec2Instance" } }, "AZ" : { "Description" : "Availability Zone of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "AvailabilityZone" ] } }, "PublicIP" : { "Description" : "Public IP address of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "PublicIp" ] } } }

{ "AWSTemplateFormatVersion" : "2010-09-09", "Description" : "Create an EC2 instances", "Parameters" : { "KeyName" : { "Description" : "Name of an existing EC2 KeyPair to enable SSH access to the instance", "Type" : "String" } }, "Mappings" : { "RegionMap" : { "us-east-1" : { "AMI" : "ami-76f0061f" }, "us-west-1" : { "AMI" : "ami-655a0a20" }, "eu-west-1" : { "AMI" : "ami-7fd4e10b" }, "ap-southeast-1" : { "AMI" : "ami-72621c20" }, "ap-northeast-1" : { "AMI" : "ami-8e08a38f" } } }, "Resources" : { "Ec2Instance" : { "Type" : "AWS::EC2::Instance", "Properties" : { "KeyName" : { "Ref" : "KeyName" }, "ImageId" : { "Fn::FindInMap" : [ "RegionMap", { "Ref" : "AWS::Region" }, "AMI" ]}, "UserData" : { "Fn::Base64" : "80" } } } }, Headers Parameters Mappings Resources } "Outputs" : { "InstanceId" : { "Description" : "InstanceId of the newly created EC2 instance", "Value" : { "Ref" : "Ec2Instance" } }, "AZ" : { "Description" : "Availability Zone of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "AvailabilityZone" ] } }, "PublicIP" : { "Description" : "Public IP address of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "PublicIp" ] } } } Outputs

Elastic Beanstalk

Java web applications

Upload WAR

Your Application Application Service Java Web Platform HTTP Service Tomcat Language Interpreter Java Operating System Linux Server Amazon EC2

Best practice

Highly available

Customisable

Flexible

Free Only pay for the provisioned resources

Monitored

Insight

CloudWatch

Free 5 minute resolution

Detailed monitoring 1 minute resolution

CPUUtlization DiskReadBytes DiskReadOps DiskWriteBytes DiskWriteOps NetworkIn NetworkOut DatabaseConnections FreeStorageSpace ReadLatency ReadThroughput SwapUsage WriteLatency WriteThroughput

Custom metrics

Price aware

Mix On-demand, Reserved Capacity and Spot

Relate to business metrics

Cost per user

Cost per operation

White papers: aws.amazon.com/ whitepapers

Premature optimisation

Maximise value

4 Security in the Cloud

Shared responsibility

Requirement based access

Certification

ISO 27001 + SAS 70 Type II

PCI DSS Level 1

Control objectives Security organisation Employee lifecycle Logical security Secure data handling Physical security Environmental safeguards Change management Data integrity Incident handling Availability and redundancy

DDOS Man in the Middle IP spoofing

Data access control

Detailed logging

Data stays local

Identity and access control

API level rights management

Account

Billing Account credentials Account MFA

Account DBA Developer Sys admin Finance Roles

Account DBA Developer Sys admin Finance Roles Sally Robert Users Chris

Security credentials Multifactor authentication Management console access Data read/write access API level access

Account DBA Developer Sys admin Finance Roles Sally Robert Users Chris

Network isolation

Virtual Private Cloud

Virtual network topology

IP address range Public, private subnets Virtual network topology Route tables Network gateways

Network access control

Inbound Outbound Network access control S3 access VPN

Dedicated instances

Public facing website Public subnet

Public subnet Network ACLs + security groups Private subnet Multi-tier applications

Public subnet Private subnet IPsec VPN On-premise Extend your data centre

Private subnet IPsec VPN On-premise Extend your data centre

DR

Backup to EC2 and EBS DR VM import

aws.amazon.com/security

aws.amazon.com

Thank you!

QUESTIONS + FEEDBACK: matthew@amazon.com @mza ON TWITTER

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback