EC2
Elastic Compute Cloud is web service that provides , resizable compute capacity in the cloud
VPC
Virtual Private Cloud - A secure , isolated private cloud hosted within a public cloud.
Resources in VPC
Public subnet
Private subnet
NAT Gateway
VPC Gateway
Routing tables
Network ACL - Access Control List
Internet Gateway
Security Group
VPN - virtual private network
Transit Gateways
Auto Scaling
It Monitors the applications & automatically adjusts capacity to maintain steady , predictable performance at the lowest possible cost.
Two types :
Horizontal --> Adding more machines
Vertical --> Adding High CPU , RAM & Storage
ECR
- Its not the above ECR , in AWS we called it as " Elastic Container Registry ".
- Its like Docker hub / Git hub ( container registry )
- Used to store , share and deploy container images.
ECS
- Elastic Container Service.
- Its a scable container orchestration solution for running , stopping & Managing containers in a cluster.
- Its like Kubernetes.
Route 53
- IP to Name & Name to IP conversion.
- Its a high available & scalable Domain Name System web service.
- DNS port is 53
S3
- Simple Storage Service / bucket.
- Object storage like image , files etc
- Its reliable & Scalable object storage through a web service interface.
- You can even host a website out of it.
- Billing calculate how you use & store " Pay As You Go"
S3 Glacier
- Its an advanced version of S3.
- Its used for Archiving solution.
RDS
- Relational Database Service
- Its a web service that makes easier to setup , operate & scale a relational database in the cloud.
LAMBDA
- Serverless concept or serverless computing platform.
- Its an event driven like triggering.
- It will automatically allocate resources.
- Enables developers to run code without provisioning or managing servers.
Trusted Advisor
- Inspects and provides recommendations to improve performance , security & cost optimization.
- Its like customer care/service.
SNS
- Simple Notification Service
- Web service that makes it set up , operate & send notification from the cloud.
- App to App or App to client - Notification service
CloudTrail
- Provides viability into users activity by recording all the actions taken on your accounts.
- Monitor API users
- For Security Audit , we can use this service.
Cloudwatch
- Its monitors the complete stack like applications , infrastructure , network & services.
- Its alarms , logs & event data to take automated actions and reduce mean time to resolution/repair ( MTTR ).
IAM
- Identity Access Management
- You can create N number of users or assign users to a group.
- Its as many inbuilt policies.
- Manages centrally fine-grained permissions.
CLI
- Command Line Interface.
- Using AWS CLI we can control complete console using AWS packages.
- Unified tool to manage AWS services directly from the command line.
S3 Browser
- Its a freeware Windows client.[TBD]
Pricing Calculator
- Its a Calculator.
- Creates an estimate for the usage of resources.
- Do this always before provisioning any services.
KMS
- Key Management Service.
- Centralized Encryption key service.
- Control services from here.
- Create and Manage Keys and control the use of encryption across a wide range of AWS services.
Important :
Difference between ECR Vs ECS
ECR provides a repository that stores docker images.
ECS used to deploy i.e takes the image and use them to deploy in different containers.
Things to know
Password Hardening
MFA - Multi Factor Authentication
Opening of Ports
Never start services without knowing
Always do the calculation