Announcing AWS Step Functions - December 2016 Monthly Webinar Series
AWS 101 December 2014
-
Upload
ian-massingham -
Category
Technology
-
view
700 -
download
4
Transcript of AWS 101 December 2014
![Page 2: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/2.jpg)
Thanks to our sponsors
![Page 3: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/3.jpg)
Before we start…
…we’d love your feedback!
![Page 4: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/4.jpg)
background
![Page 5: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/5.jpg)
Consumer Business
Tens of millions of active
customer accounts
13 countries: US, UK, Germany, Japan, France, Canada, China,
Italy, Brazil, Mexico, India, Spain, Australia
Seller Business
Sell on Amazon websites
Use Amazon technology for your own retail website
Leverage Amazon’s
massive fulfillment centre network
IT Infrastructure Business
Cloud computing
infrastructure for hosting web-scale solutions
Over 1 million registered customers in over 190
countries
![Page 6: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/6.jpg)
How did Amazon…
… get into Cloud Computing?
![Page 7: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/7.jpg)
AWS Mission
Enable businesses and developers to use web
services* to build scalable, sophisticated applications.
*What people now call “the cloud”
![Page 8: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/8.jpg)
![Page 9: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/9.jpg)
Not excess capacity!
![Page 10: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/10.jpg)
Not excess capacity!
Startups on AWS
Find out more at : aws.amazon.com/solutions/case-studies
![Page 11: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/11.jpg)
Powering the Most Popular Internet Businesses
Find out more at : aws.amazon.com/solutions/case-studies
Enterprises on AWS
Find out more at : aws.amazon.com/solutions/case-studies
![Page 12: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/12.jpg)
Each day AWS adds the equivalent server capacity to power Amazon when it was a
global, $7B enterprise
![Page 13: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/13.jpg)
utility computing
![Page 14: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/14.jpg)
On demand Pay as you go
Uniform Available
Utility computing
![Page 15: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/15.jpg)
Utility computing
On demand Pay as you go
Available Uniform
![Page 16: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/16.jpg)
Utility computing
![Page 17: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/17.jpg)
Utility computing
Compute
Storage
Security Scaling
Database
Networking Monitoring
Messaging
Workflow
DNS Load Balancing
Backup CDN
On demand Pay as you go
Uniform Available
![Page 18: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/18.jpg)
On a global footprint
Region
US-WEST (N. California) EU-WEST (Ireland)
ASIA PAC (Tokyo)
ASIA PAC (Singapore)
US-WEST (Oregon)
SOUTH AMERICA (Sao Paulo)
US-EAST (Virginia)
GOV CLOUD
ASIA PAC (Sydney)
CHINA (Beijing) EU-CENTRAL (Frankfurt)
![Page 19: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/19.jpg)
At the end of a web service aws ec2 run-instances --image-id ami-a813fadf --count 3 --placement AvailabilityZone=eu-west-1a --instance-type m3.medium
aws ec2 run-instances --image-id ami-a813fadf --count 5 --placement AvailabilityZone=eu-west-1c --instance-type m3.large
![Page 20: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/20.jpg)
and a rich Management Console
![Page 21: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/21.jpg)
elasticity
![Page 22: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/22.jpg)
Traditional IT capacity
Elastic capacity
Capacity
Time Your IT needs
![Page 23: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/23.jpg)
On and Off Fast Growth
Variable peaks Predictable peaks
Elastic capacity
![Page 24: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/24.jpg)
Elastic capacity
On and Off Fast Growth
Predictable peaks Variable peaks
WASTE
CUSTOMER DISSATISFACTION
![Page 25: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/25.jpg)
Elastic capacity
Fast Growth On and Off
Predictable peaks Variable peaks
![Page 26: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/26.jpg)
From one instance…
![Page 27: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/27.jpg)
…to thousands
![Page 28: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/28.jpg)
and back…
![Page 29: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/29.jpg)
exploiting elasticity
![Page 30: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/30.jpg)
Sunday Monday Tuesday Wednesday Thursday Friday Saturday
Typical weekly traffic to Amazon.com
![Page 31: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/31.jpg)
November traffic to Amazon.com
November
![Page 32: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/32.jpg)
November traffic to Amazon.com Provisioned capacity
November
![Page 33: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/33.jpg)
November traffic to Amazon.com 76%
24%
Provisioned capacity
November
![Page 34: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/34.jpg)
November 10th 2010 Turned off last physical web server of
Amazon.com
![Page 35: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/35.jpg)
November 10th 2010 Turned off last physical web server of
Amazon.com
October 31st 2011 Turned off last web servers supporting
European business
![Page 36: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/36.jpg)
November traffic to Amazon.com
November
![Page 37: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/37.jpg)
Building a Top500 HPC Cluster on AWS
![Page 38: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/38.jpg)
the toolbox
![Page 39: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/39.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Reference Model security
![Page 40: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/40.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Global infrastructure
Regions An independent collection of AWS resources in a defined geography A solid foundation for meeting location-dependent privacy and compliance requirements
![Page 41: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/41.jpg)
Global infrastructure
Availability Zones Designed as independent failure zones Physically separated within a typical metropolitan region
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 42: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/42.jpg)
Global infrastructure
Edge Locations To deliver content to end users with lower latency A global network of edge locations Supports global DNS infrastructure (Route53) and Cloud Front CDN
Dallas(2)
St.Louis
Miami
Jacksonville Los Angeles (2)
Palo Alto
Seattle
Ashburn(3)
Newark New York (3)
Dublin
London(2)
Amsterdam (2)
Stockholm
Frankfurt(2) Paris(2)
Singapore(2)
Hong Kong (2)
Tokyo (2)
Sao Paulo
South Bend
San Jose
Osaka Milan
Sydney
Madrid
Seoul
Mumbai
Chennai
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 43: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/43.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Networking
Direct Connect Dedicated connection to AWS
VPN Connection Secure internet connection to AWS
Virtual Private Cloud Private, isolated section of the AWS Cloud
Route 53 Highly available and scalable Domain Name Service
![Page 44: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/44.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Compute
Vertical Scaling From $0.02/hr
Elastic Compute Cloud (EC2) Basic unit of compute capacity Range of CPU, memory & local disk options Many Instance types available, from micro to cluster compute C4 cluster compute with custom Intel CPUs coming soon
Feature Details
Flexible Run windows or linux distributions
Scalable Wide range of instance types from micro to cluster compute
Machine Images Configurations can be saved as machine images (AMIs) from which new instances can be created
Full control Full root or administrator rights
Secure Full firewall control via Security Groups
Monitoring Publishes metrics to Cloud Watch
Inexpensive On-demand, Reserved and Spot instance types
VM Import/Export Import and export VM images to transfer configurations in and out of EC2
![Page 45: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/45.jpg)
Compute
Auto-scaling Automatic provisioning of compute resources based upon demand, configuration or schedule
Trigger auto-scaling policy
Feature Details
Control Define minimum and maximum instance pool sizes and when scaling and cool down occurs
Integrated to CloudWatch Use metrics gathered by CloudWatch to drive scaling
Instance types Run auto scaling for on-demand instances and spot. Compatible with VPC
aws autoscaling create-auto-scaling-group --auto-scaling-group-name MyGroup --launch-configuration-name MyConfig --availability-zones eu-west-1a --min-size 4 --max-size 200
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 46: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/46.jpg)
Compute
Elastic Load Balancing Create highly scalable applications Distribute load across EC2 instances in multiple availability zones
Feature Details
Auto-scaling Automatically scales to handle request volume
Available Load balance across instances in multiple availability zones
Health checks Automatically checks health of instances and takes them in or out of service
Session stickiness Route requests to the same instance
Secure sockets layer Supports SSL offload from web and application servers with flexible cipher support
Monitoring Publishes metrics to Cloud Watch
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 47: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/47.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Storage
S3 - Durable storage, any object 99.999999999% durability of objects Unlimited storage of objects of any type Up to 5TB size per object
Feature Details
Flexible object store Buckets act like drives, folder structures within
Access control Granular control over object permissions
Server-side encryption 256bit AES encryption of objects
Multi-part uploads Improved throughput & control
Object versioning Archive old objects and version new ones
Object expiry Automatically remove old objects
Access logging Full audit log of bucket/object actions
Web content hosting Serve content as web site with built in page handling
Notifications Receive notifications on key events
Import/Export Physical device import/export service
![Page 48: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/48.jpg)
![Page 49: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/49.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Storage
Elastic Block Store High performance block storage device 1GB to 1TB in size (16TB volumes coming soon) Mount as drives to instances
Feature Details High performance file
system Mount EBS as drives and format as required
Flexible size Volumes from 1GB to 1TB in size
Flexible performance Magnetic, EBS General Purpose (SSD) and EBS Provisioned IOPS (SSD) volume types
Secure Private to your instances
Available Replicated within an Availability Zone
Backups Volumes can be snapshotted for point in time restore
Monitoring Detailed metrics captured via Cloud Watch
![Page 50: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/50.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Database Relational Database Service Database-as-a-Service No need to install or manage database instances Scalable and fault tolerant configurations
Feature Details
Platform support Create MySQL, PostgreSQL, Microsoft SQL Server and Oracle RDBMS
Preconfigured Get started instantly with sensible default settings
Automated patching Keep your database platform up to date automatically
Backups Automatic backups and point in time recovery and full DB backups
Backups Volumes can be snapshotted for point in time restore
Failover Automated failover to slave hosts in event of a failure
Replication Easily create read-replicas of your data and seamlessly replicate data across availability zones
![Page 51: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/51.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Database
Amazon Relational Database Service (Amazon RDS) databases stores forum threads, site content, and project configuration data. High availability Multi-AZ database deployment to handle live game metadata and user-generated content. Enterprise-grade fault tolerance for protecting customer data. By managing time-consuming database administration tasks, Amazon RDS allows SEGA to focus on business critical applications.
![Page 52: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/52.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Database
DynamoDB Provisioned throughput NoSQL database Fast, predictable performance Fully distributed, fault tolerant architecture
Feature Details
Provisioned throughput Dial up or down provisioned read/write capacity
Predictable performance Average single digit millisecond latencies from SSD backed infrastructure
Strong consistency Be sure you are reading the most up to date values
Fault tolerant Data replicated across availability zones
Monitoring Integrated to Cloud Watch
Secure Integrates with AWS Identity and Access Management (IAM)
Elastic MapReduce Integrates with Elastic MapReduce for complex analytics on large datasets
![Page 53: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/53.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Database
Redshift Managed Massively Parallel Petabyte Scale Data Warehouse Streaming Backup/Restore to S3 Extensive Security 2 TB -> 1.6 PB
RDS Dynamo DB
Redshift
![Page 54: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/54.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Application Services
CloudFront World-wide content distribution network Easily distribute content to end users with low latency, high data transfer speeds, and no commitments.
Feature Details
Fast Multiple world-wide edge locations to serve content as close to your users as possible
Integrated with other services Works seamlessly with S3 and EC2 origin servers
Dynamic content Supports static and dynamic content from origin servers
Streaming Supports rtmp from S3 and includes support for live streaming from Adobe FMS and Microsoft Media Server
London
Paris
NY
Served from S3 /images/*
3
Served from EC2 *.php
2
Single CNAME www.mysite.com
1
![Page 55: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/55.jpg)
Application Services
Amazon SQS
Processing task/processing trigger
Processing results Amazon SQS Reliable, highly scalable, queue service for storing messages as they travel between instances
Feature Details
Reliable Messages stored redundantly across multiple availability zones
Simple Simple APIs to send and receive messages
Scalable Unlimited number of messages
Secure Authentication of queues to ensure controlled access
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 56: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/56.jpg)
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
Deployment & Admin
Elastic Beanstalk One-click deployment from Eclipse, Visual Studio and Git Rapid deployment of applications All AWS resources automatically created
Feature Details
Platform support Containers for Java, .net and PHP
Resource creation Creates load balancer, instances, autoscaling and monitoring automatically
Monitoring & Logs Integrated with Cloud Watch and consolidates server logs
Versioning Manage versions of applications and easily rollback deployments
Notifications Receive alerts on key events
Full resource access Access all underlying AWS resources as necessary
![Page 57: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/57.jpg)
Deployment & Admin
OpsWorks DevOps focused managed application stacks Underlying Chef recipes allow for complete customisation
Feature Details
Platform support Chef recipes allows for community expansion for platform components such as Solr, NgniX etc
Resource creation Customizable deployments, rollback, partial deployments, patch management, automatic instance scaling, and auto healing
Layered Manage logical application layers and combine into stacks.
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 58: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/58.jpg)
Cloud Formation Automate creation of ‘stacks’ in a repeatable way Scripting framework for AWS resource creation
Feature Details
Platform support Support for AWS resources from EC2 to IAM
Resource creation Creates AWS resources behind the scenes and reports on progress
Declarative Specify stacks in JSON format and source control your environments
Customizable Drive stack creation with parameters
Deployment & Admin
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 59: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/59.jpg)
Deployment & Admin
Identity & Access Management Granular control of user rights with AWS Automated granting of EC2 service rights
Software Developer Kits Comprehensive support of programming models for using AWS services
Compute Storage
AWS Global Infrastructure
Database
App Services
Deployment & Administration
Networking
![Page 60: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/60.jpg)
+ others WorkSpaces Cloud Search
Simple Email Service Simple Workflow Service
Simple Notification Service ElastiCache (Memcache & Redis)
Elastic MapReduce CloudWatch
…and more to come!
![Page 61: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/61.jpg)
security & compliance
![Page 62: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/62.jpg)
Foundation Services
Compute Storage Database Networking
AWS Global Infrastructure Regions
Availability Zones Edge Locations A
maz
on
Shared responsibility
![Page 63: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/63.jpg)
Foundation Services
Compute Storage Database Networking
Client-side Data Encryption & Data Integrity Authentication
Server-side Encryption (File System and/or Data)
Network Traffic Protection (Encryption/Integrity/Identity)
Platform, Applications, Identity & Access Management
Operating System, Network & Firewall Configuration
Customer Data A
maz
on
Shared responsibility
You
AWS Global Infrastructure Regions
Availability Zones Edge Locations
![Page 64: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/64.jpg)
Certifications
SOC 1 Type 2 (formerly SAS-70)
ISO 27001
PCI DSS for EC2, S3, EBS, VPC, RDS, ELB, IAM
FISMA Moderate Compliant Controls
HIPAA & ITAR Compliant Architecture
Physical Security
Datacenters in nondescript facilities
Physical access strictly controlled
Must pass two-factor authentication at least twice for
floor access
Physical access logged and audited
HW, SW, Network
Systematic change management
Phased updates deployment
Safe storage decommission
Automated monitoring and self-audit
Advanced network protection
Security standards
http://aws.amazon.com/security
![Page 65: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/65.jpg)
So what are we going to build
today?
![Page 66: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/66.jpg)
A dynamic web application featuring:
A highly available, fault tolerant architecture Elasticity to deal with spikes in load
A fully managed database Static content served through a CDN
![Page 67: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/67.jpg)
Break
![Page 68: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/68.jpg)
Thanks to our sponsors
![Page 69: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/69.jpg)
Shaun Pearce AWS Solutions Architect
![Page 70: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/70.jpg)
A dynamic web application featuring:
A highly available, fault tolerant architecture Elasticity to deal with spikes in load
A fully managed database Static content served through a CDN
![Page 71: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/71.jpg)
Region
Instance
Availability Zone Availability Zone
![Page 72: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/72.jpg)
Region
Instance
S3
Availability Zone Availability Zone
![Page 73: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/73.jpg)
Region
Instance
Cloud Front
S3
Availability Zone Availability Zone
![Page 74: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/74.jpg)
Region
Instance
Cloud Front
S3
RDS Availability Zone Availability Zone
![Page 75: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/75.jpg)
Region
Instance
Elastic Load Balancer
Cloud Front
S3 Auto scaling Group
RDS Availability Zone Availability Zone
Instance
![Page 76: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/76.jpg)
But before we start….
![Page 77: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/77.jpg)
Region
Cloud Front
RDS Availability Zone Availability Zone
![Page 78: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/78.jpg)
Region
Instance
Availability Zone Availability Zone
![Page 79: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/79.jpg)
bootstrapping passing data to an instance
![Page 80: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/80.jpg)
Instance request
User data
![Page 81: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/81.jpg)
Instance request
User data
Instance
Meta-data service
![Page 82: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/82.jpg)
Script executed on launch: <script> ipconfig /all > c:\ipconfig.txt netstat > c:\netstat.txt
</script>
![Page 83: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/83.jpg)
Script executed on launch: #!/bin/sh yum -y install httpd php php-mysql chkconfig httpd on /etc/init.d/httpd start
![Page 84: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/84.jpg)
security groups instance firewalling
![Page 85: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/85.jpg)
Security Group
instance
Port 80 (HTTP)
Port 22 (SSH)
Name Description Protocol Port range IP Address, range, or another security group
![Page 86: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/86.jpg)
Region
Instance
Availability Zone Availability Zone
![Page 87: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/87.jpg)
index.php Reads instance meta-data
![Page 88: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/88.jpg)
Some php code that gets the data <?php
// get the instance id $url = "http://169.254.169.254/latest/meta-data/instance-id"; $instance_id = file_get_contents($url); // get the AZ where the instance is running $url = "http://169.254.169.254/latest/meta-data/placement/availability-zone";
$zone = file_get_contents($url);
// get the security group it is in $url = "http://169.254.169.254/latest/meta-data/security-groups";
$group = file_get_contents($url); // get the public DNS name $url = "http://169.254.169.254/latest/meta-data/public-hostname";
$hostname = file_get_contents($url); ?>
![Page 89: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/89.jpg)
Some php code that gets the data <?php
// get the instance id $url = "http://169.254.169.254/latest/meta-data/instance-id"; $instance_id = file_get_contents($url); // get the AZ where the instance is running $url = "http://169.254.169.254/latest/meta-data/placement/availability-zone";
$zone = file_get_contents($url);
// get the security group it is in $url = "http://169.254.169.254/latest/meta-data/security-groups";
$group = file_get_contents($url); // get the public DNS name $url = "http://169.254.169.254/latest/meta-data/public-hostname";
$hostname = file_get_contents($url); ?>
![Page 90: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/90.jpg)
And displays it
Instance ID: <?php echo $instance_id; ?> Availability Zone: <?php echo $zone; ?> Security Group: <?php echo $group; ?>
![Page 91: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/91.jpg)
Region
Instance
Availability Zone Availability Zone
![Page 92: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/92.jpg)
S3 For Static Website Hosting
![Page 93: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/93.jpg)
Region
Instance
S3
Availability Zone Availability Zone
![Page 94: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/94.jpg)
CloudFront Global CDN
![Page 95: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/95.jpg)
Region
Instance
Cloud Front
S3
Availability Zone Availability Zone
![Page 96: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/96.jpg)
Amazon RDS Managed Relational DB
![Page 97: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/97.jpg)
Region
Instance
Cloud Front
S3
RDS Availability Zone Availability Zone
![Page 98: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/98.jpg)
auto-scaling with elastic load balancing
![Page 99: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/99.jpg)
Region
Instance
Elastic Load Balancer
Cloud Front
S3 Auto scaling Group
RDS Availability Zone Availability Zone
Instance
![Page 100: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/100.jpg)
Availability Zone Availability Zone
Region
Availability Zone
Instance Instance Instance
Elastic Load Balancer Auto scaling Group
![Page 101: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/101.jpg)
Availability Zone Availability Zone
Region
Availability Zone
Instance Instance Instance Instance Instance Instance
Elastic Load Balancer Auto scaling Group
![Page 102: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/102.jpg)
Availability Zone Availability Zone
Region
Availability Zone
Instance Instance Instance
Elastic Load Balancer Auto scaling Group
![Page 103: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/103.jpg)
Availability Zone Availability Zone
Region
Availability Zone
Elastic Load Balancer Auto scaling Group
Instance Instance
![Page 104: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/104.jpg)
Availability Zone Availability Zone
Region
Availability Zone
Instance Instance
Elastic Load Balancer Auto scaling Group
Instance
![Page 105: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/105.jpg)
Describes what Auto Scaling will create when adding
Instances
- AMI - - Instance Type - - Security Group -
- Instance Key Pair -
Only one active launch configuration at a time
Auto Scaling will terminate instances with old launch
configuration first rolling update
Auto Scaling managed grouping of EC2 instances
Automatic health check to maintain pool size
Automatically scale the number
of instances by policy – Min, Max, Desired
Automatic Integration with ELB
Automatic distribution & balancing across AZs
Parameters for performing an Auto Scaling action
Scale Up/Down and by how much
ChangeInCapacity (+/- #) ExactCapacity (#)
ChangeInPercent (+/- %)
Cool Down (seconds)
Policy can be triggered by CloudWatch events
Launch Configuration Auto-Scaling Group Auto-Scaling Policy
![Page 106: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/106.jpg)
Region
Instance
Elastic Load Balancer
Cloud Front
S3 Auto scaling Group
RDS Availability Zone Availability Zone
Instance
![Page 107: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/107.jpg)
add some load from another EC2 instance
![Page 108: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/108.jpg)
questions?
![Page 109: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/109.jpg)
Next Steps
![Page 110: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/110.jpg)
We typically see customers start by trying our services
Get started now at : aws.amazon.com/getting-started
![Page 111: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/111.jpg)
You can get started for free…
Get started now at : aws.amazon.com/free
![Page 112: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/112.jpg)
Design your application for the AWS Cloud
More details on the AWS Architecture Center at : aws.amazon.com/architecture
![Page 113: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/113.jpg)
AWS Training & Certification Certification
aws.amazon.com/certification
Demonstrate your skills, knowledge, and expertise
with the AWS platform
Self-Paced Labs
aws.amazon.com/training/ self-paced-labs
Try products, gain new skills, and get hands-on
practice working with AWS technologies
aws.amazon.com/training
Training
Skill up and gain confidence to design, develop, deploy and
manage your applications on AWS
![Page 114: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/114.jpg)
We’d love your feedback!
![Page 115: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/115.jpg)
Thanks to our sponsors
![Page 116: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/116.jpg)
@AWS_UKI for local AWS events & news @AWScloud for Global AWS News and Announcements
©Amazon.com, Inc. and its affiliates. All rights reserved.
![Page 117: AWS 101 December 2014](https://reader034.fdocuments.net/reader034/viewer/2022042615/55a77a091a28ab3e4e8b4580/html5/thumbnails/117.jpg)
Thank You – AWS 101 Ian Massingham - Technical Evangelist
8 December 2014
@IanMmmm