376 CloudPractitioner HitchhikersguidetoAWS PDF 1583957225

Hitchhiker 's Guide to AWS Cloud
Course Navigation
AWS Cer t if ied Clou d Pr act it ion er (CLF-C01)
Dem yst if yin g t h e
Clou d
Section 1
Get t in g St ar t ed
w it h AWS
Section 2
Th e Big Pict u r e
Section 3
I den t it y an d Access
M an agem en t (I AM )
Section 4
AWS Net w or k in g
Section 5
AWS Com pu t e
Section 6
AWS St or age
Section 7
Next
Course Navigation
Elast icit y an d Scalin g
EC2
Section 8
Con t en t Deliver y an d
Dom ain Nam e Syst em
(DNS)
Section 9
M on it or in g an d
Loggin g
Section 10
Not if icat ion Ser vices

Section 11
Dat abase Ser vices

Section 12
Ser ver less

Section 13
Secu r it y an d
Com plian ce
Section 14
Back Next
Course Navigation
Ot h er AWS Ser vices
Section 15
AWS Billin g an d
Su ppor t Ser vices
Section 16
Back Next
Dem ystifying the Cloud
Course Navigation
I n t h e Begin n in g, Bef or e Th er e Was a Clou d
Dem yst if yin g t h e Clou d
Section 1
Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud
Topic 2: What Are Clouds

Made Of?
Dear St u den t s,
Topic 3: Introduction to Welcom e to the Linux Academ y AWS Cer t if ied Clou d Pr act it ion er (CLF-C01)
Cloud Term inology course. This course will help prepare you for the exam and is designed to
give you high-level overviews of the various AWS services, provide you with
h an ds-on labs to reinforce your learning, and introduce you to concepts
Topic 4: Prim ary Benefits related to AWS best pr act ices.
of Cloud/AWS
There are n o pr er equ isit es for this course, and it uses everyday language to
Topic 5: AWS Global convey im portant concepts. This course is designed for business and sales
Infrastructure professionals who need to understand AWS services and concepts, as they
work with AWS professionals but will not necessarily work directly with AWS
Topic 6: So That 's What on a daily basis. For those of you who intend to work hands-on with AWS
Clouds (AWS) Are Made Of from a technical perspective on a day-to-day basis, please consider taking the
AWS Essen t ials course instead.
Topic 7: What Are Clouds I hope you find the course entertaining as well as insightful. I'm ready to get
Made Of?: Just the FAQs started, and I bet you are too. So it 's tim e to wrap up this welcom e m essage
and jum p straight into the course.
Topic 8: Wrap It Up:
Dem ystifying the Cloud Let 's get started!
TiaWilliams
AWS Tr ain in g Ar ch it ect
Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud
AWS Cert ified Cloud Pract it ioner:
Made Of? What Are Clouds Made Of?
Topic 3: Introduction to
Cloud Term inology
Topic 4: Prim ary Benefits Sect ion 1.1 t opics include:

of Cloud/AWS
- In t he Beginning, Before There Was a Cloud
- Tradit ional Archit ect ure
Topic 5: AWS Global
Infrastructure - Com ponent s
- Sprawl
Topic 6: So That 's What - Challenges
Clouds (AWS) Are Made Of - Corporat e Dat a Cent ers

Made Of?: Just the FAQs

Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
In the beginning...
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud

Made Of?
Cloud Term inology
Topic 4: Prim ary Benefits

of Cloud/AWS
Topic 5: AWS Global

Infrastructure
Topic 6: So That 's What

Clouds (AWS) Are Made Of
Com m odore 64

Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud

Made Of?
Cloud Term inology

of Cloud/AWS
Topic 5: AWS Global

Infrastructure



Dem ystifying the Cloud Just kidding... We aren't really
going back that far.
Back t o M ain
Course Navigation
Section 1
Tr adit ion al Clien t ?Ser ver Ar ch it ect u r e

Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud Ser ver Clien t

Made Of?
Cloud Term inology

of Cloud/AWS
Topic 5: AWS Global

Infrastructure



Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud

Made Of?
Cloud Term inology

of Cloud/AWS
Typical Com ponents to Support an Application
Topic 5: AWS Global Com pu t e St or age

Infrastructure


Topic 8: Wrap It Up: Net w or k Dat abase

Back Next
Back t o M ain
Course Navigation
Dem yst if yin g t h e Clou d Un ch eck ed Dat a Cen t er Gr ow t h
Section 1 Server Sprawl
Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud

Made Of?
Cloud Term inology

of Cloud/AWS
Topic 5: AWS Global

Infrastructure



Back Next
Back t o M ain
Course Navigation
Section 1 Bu sin ess Ch allen ges
Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Cost Control
Before Capital expenditures for equipm ent purchases. Equipm ent lifecycle is typically three
Was a There
Clou d Was a Cloud
to five years.

Made Of?
Distributed Workforce
Many organizations have rem ote offices, as well as em ployees who travel and/or
work from hom e.
Cloud Term inology
Topic 4: Prim ary Benefits Slow Provisioning

of Cloud/AWS
The tim e to test, prepare, and provision servers and applications can slow business
initiatives.
Topic 5: AWS Global
Infrastructure

Topic 7: What Are Clouds Spr aw l/ Space Pow er Coolin g


Dat a Cen t er Ch allen ges
Back Next
Back t o M ain
Course Navigation
Dem yst if yin g t h e Clou d Th e Cor por at e Dat a Cen t er
Section 1 Dat a Cen t er
Topic 1: I n t h e
Topic
Begin1:n in
In g,
the Beginning,
Bef or e Th er e
Before
Was a There
Clou d Was a Cloud

Made Of?
Cloud Term inology

of Cloud/AWS
Cor por at e Of f ices
Topic 5: AWS Global

Infrastructure


Made Of?: Just the FAQs Rem ot e Wor k er

Rem ot e Wor k er
Rem ot e Wor k er
Back Next Topic
Back t o M ain
Course Navigation
Wh at Ar e Clou ds M ade Of ?
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Was a Clou d Was a Cloud
Topic 2: Wh at Ar e Clou ds
Topic
M ade2:OfWhat
? Are Clouds AWS Cert ified Cloud Pract it ioner:
Made Of?
What Are Clouds Made Of?
Cloud Term inology

of Cloud/AWS Sect ion 1.2 t opics include:
- What Is Cloud Com put ing?
Topic 5: AWS Global - Types of Clouds
Infrastructure
- What Is AWS/ Cloud?


Back Next
Back t o M ain
Course Navigation
Dem yst if yin g t h e Clou d Wh at I s Clou d Com pu t in g?
Section 1
Cloud services are typically hardware (infrastructure) and application
Topic 1: I n t h e services provided over the internet (could be any network). Cloud
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
services com panies provide resources (i.e., com pute, network, storage,
Before There
and database) as a service so that custom ers do not have to incur the
Topic 2: Wh at Ar e Clou ds cost of acquiring and m anaging the required com ponents.
Topic
M ade2:OfWhat
? Are Clouds
Made Of?
Topic 3: Introduction to I aaS:

Cloud Term inology Part or all of an
I n f r ast r u ct u r e as a
Ser vice infrastructure platform
Topic 4: Prim ary Benefits provided by a third party
of Cloud/AWS
Topic 5: AWS Global

Infrastructure
PaaS:
Cloud Entire infrastructure and
Topic 6: So That 's What Plat f or m as a Ser vice
Com puting operating system provided
Services by a third party

SaaS:
Topic 8: Wrap It Up: Entire infrastructure,
Dem ystifying the Cloud Sof t w ar e as a Ser vice operating system , and
software provided by a
third party
Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e Pr ivat e Clou d Hybr id Clou d Pu blic Clou d

Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Was a Clou d Was a Cloud Par t Pr ivat e,
On -Pr em ises Par t Pu blic Clou d/ AWS
Topic
M ade2:OfWhat
? Are Clouds - Fully - Com bination - No capital
Made Of? custom izable of public and costs
- Higher private cloud - Pay as you go
Topic 3: Introduction to security - Often used as - Low overhead
Cloud Term inology
- Capital costs a transition to - Infinite
- High public cloud scalability
overhead - Som etim es - Elasticity
of Cloud/AWS
- Lack of used for - Som e
elasticity backup/DR restrictions
Topic 5: AWS Global
- Potential - Adds - Governance
Infrastructure
latency flexibility and challenges
scalability - Faster and
- Stream lined sim plified
application deploym ents
accessibility
Made Of?: Just the FAQs for rem ote
workers
Wh at t ype of clou d is AWS?
Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Com pu t e
Topic
M ade2:OfWhat
? Are Clouds
Made Of? Storage Dat abases
Cloud Term inology

of Cloud/AWS Networking Analytics
Topic 5: AWS Global

Infrastructure

Developer Tools Security
Topic 7: What Are Clouds Virtualization

Back Next Topic
Back t o M ain
Course Navigation
I n t r odu ct ion t o Clou d Ter m in ology
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
? Are Clouds
Made Of?
Int roduct ion t o Cloud Term inology
Topic 3: I n t r odu ct ion t o
Clou d Ter m in ology
Cloud Term inology

of Cloud/AWS
Sect ion 1.3 t opics include:
- Scalabilit y
Topic 5: AWS Global - Elast icit y
Infrastructure - High Availabilit y and Fault Tolerance



Back Next
Back t o M ain
Course Navigation
Section 1
Scalable (Alternate Usage: Scalability)
Topic 1: I n t h e The ability to easily grow in size, capacity, and/or scope when required
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e (usually based on dem and)
Before There
Topic
M ade2:OfWhat
? Are Clouds Scalin g Based on Dem an d
Made Of?
Topic 3: I n t r odu ct ion t o 1,000 Users 2,000 Users 6,000 Users

Cloud Term inology

of Cloud/AWS
Topic 5: AWS Global

Infrastructure



Back Next
Back t o M ain
Course Navigation
Section 1
Elast ic (Alternate Usage: Elasticity)
Topic 1: I n t h e The ability to not only grow (scale) when required but also reduce in size
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e when required
Before There
Topic
M ade2:OfWhat
? Are Clouds Elast icit y ? Gr ow in g an d Sh r in k in g on Dem an d
Made Of?
Topic 3: I n t r odu ct ion t o 1,000 Users 2,000 Users 1,000 Users

Cloud Term inology

of Cloud/AWS
Topic 5: AWS Global

Infrastructure



Back Next
Back t o M ain
Course Navigation
Section 1
Fault Tolerant (Alternate Usage: Fault Tolerance)
Topic 1: I n t h e
The ability to withstand a certain am ount of failure and still rem ain
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e functional (and/or be self-healing and return to full capacity)
Before There
Topic 2: Wh at Ar e Clou ds Highly Available (Alternate Usage: High Availability)

Topic
M ade2:OfWhat
? Are Clouds
Made Of? The concept of som ething being accessible when you attem pt to access
it (and/or the ability to access som ething via m ultiple platform s)
Cloud Term inology

of Cloud/AWS
Topic 5: AWS Global

Infrastructure

Clouds (AWS) Are Made Of Sin gle Poin t of Failu r e Internet

Topic 8: Wrap It Up: Router

Back Next Topic
Back t o M ain
Course Navigation
Pr im ar y Ben ef it s of Clou d/ AWS
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
? Are Clouds
Made Of?
Prim ary Benefit s of Cloud/ AWS
Cloud Term inology
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
of ef it s of Clou d/ AWS
Cloud/AWS
- Ease of Use
Topic 5: AWS Global - Flexibilit y
Infrastructure - Cost -Effect iveness
- Scalabilit y and Elast icit y
Topic 6: So That 's What - High Availabilit y and Fault Tolerance


Back Next
Back t o M ain
Course Navigation
Dem yst if yin g t h e Clou d Ease of Use
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic AWS Con sole
M ade2:OfWhat
? Are Clouds
Made Of? - Graphical user interface
- Access to AWS services
Cloud Term inology
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
Topic 5: AWS Global

Infrastructure

API Access
- Interact program m atically with
AWS services
- Access to AWS services
- Com m and line access
Back Next
Back t o M ain
Course Navigation
Dem yst if yin g t h e Clou d Flexibilit y
Section 1
Choose as m any AWS services as needed. You receive a virtual
Topic 1: I n t h e
platform from AWS, and you load the software services you need to
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e support your applications.
Before There
Topic
M ade2:OfWhat
? Are Clouds Cost -Ef f ect iven ess
Made Of?
Pay only for the am ount of services you need. There are no long-term
Clou d Ter m in ology contracts or up-front com m itm ents. Discounts are provided for
Cloud Term inology certain services reserved for a m inim um period of tim e.
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS Scalabilit y an d Elast icit y
Topic 5: AWS Global Scalability and elasticity are two benefits we discussed in our
Infrastructure term inology lesson. Scalability gives us the ability to add resources on
dem and to accom m odate growth. Elasticity m eans it 's designed to
Topic 6: So That 's What grow and shrink on dem and based on need.
Topic 7: What Are Clouds High Availabilit y an d Fau lt Toler an ce

When an environm ent is fault tolerant, it is able to withstand the loss

of a com ponent within the infrastructure while rem aining functional.
High availability is the ability of a system to rem ain in an operational
state for a long period of tim e. Highly available system s are able to
stay operational during m aintenance and system failures.
Back Next Topic
Back t o M ain
Course Navigation
AWS Global I n f r ast r u ct u r e
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic 2: Wh at Ar e Clou ds AWS Cert ified Cloud Pract it ioner:

Topic
M ade2:OfWhat
? Are Clouds
Made Of? AWS Global Infrast ruct ure
Cloud Term inology
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits Sect ion 1.5 t opics include:
Ben
Cloud/AWS - Regions
- Availabilit y Zones
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure
- Dat a Cent ers
I n f r ast r u ct u r e
- What 's in It for You?


Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
? Are Clouds
Made Of?

Cloud Term inology
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS AWS Global I n f r ast r u ct u r e
The AWS Global Infrastructure consists of 21 regions around the world
Topic
Topic 5: 5:AWS
AWSGlobal
Global with 64 Availability Zones ? and even m ore are being added. The red on
Infrastructure
I n f r ast r u ct u r e the diagram represents the regions that are com ing soon.
Topic 6: So That 's What At the highest level, AWS' physical infrastructure is m ade up of num erous
regions located all around the world. Each region com prises m ultiple
Availability Zones, which are where AWS data centers are located.
View an interactive global view of the AWS infrastructure.

Back Next
Back t o M ain
Course Navigation
Section 1
Availabilit y Zon es (AZs)
Topic 1: I n t h e Availability Zones (within a region) work together to m ake up a

Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e collection of your AWS resources. Properly designed applications will
Before There
Was a Clou d Was a Cloud utilize m ultiple Availability Zones for high availability and fault tolerance.
AZs have direct low latency connections between each other, and each
Topic
M ade2:OfWhat
? Are Clouds AZ is isolated from the others to ensure fault tolerance.
Made Of?

Cloud Term inology
AWS Region
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure
I n f r ast r u ct u r e Availability
Availability
Zone #1
Zone
#1
Availability Availability
Topic 8: Wrap It Up: Zone #2 Zone #3
Back Next
Back t o M ain
Course Navigation
Section 1
Dat a Cen t er s
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Located in each Availability Zone is one or m ore AWS data centers,
Before There
Was a Clou d Was a Cloud which contain the physical servers that run AWS resources.
Topic
M ade2:OfWhat
? Are Clouds
Made Of?

Clou d Ter m in ology Availabilit y
Cloud Term inology
Zon e
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
AWS Dat a Cen t er
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure



Back Next
Back t o M ain
Course Navigation
Dem yst if yin g t h e Clou d Wh at 's in I t f or You ?
Section 1
Topic 1: I n t h e Here's why you should care about regions and Availability Zones:
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Was a Clou d Was a Cloud - Provision resources closest to the people that will use them
- Multiple Availability Zones and regions m eans the AWS
Topic
M ade2:OfWhat
? Are Clouds infrastructure is fault tolerant
Made Of? - Expands high availability beyond a single geographical area
Topic 3: I n t r odu ct ion t o - Applications m ay be configured for high availability by
Topic 3: Introduction to provisioning them in m ultiple regions for failover/disaster
Cloud Term inology recovery
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure



Back Next Topic
Back t o M ain
Course Navigation
So Th at 's Wh at Clou ds (AWS) Ar e M ade Of
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
? Are Clouds
Made Of?
Cloud Term inology
So That 's What Clouds (AWS)
Are Made Of
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure
I n f r ast r u ct u r e Sect ion 1.6 t opics include:
- Net working
Topic 6:
Topic 6:SoSo That
Th at's'sWhat
Wh at
Clou ds(AWS)
(AWS)Are
Ar eMade
M adeOf - Com put e
Clouds
Of - St orage

Back Next
Back t o M ain
Course Navigation
Dem yst if yin g t h e Clou d AWS Cloud
Section 1
Topic 1: I n t h e Virtual Private Cloud

Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
? Are Clouds
Made Of?

Cloud Term inology
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits Networking
Ben
Cloud/AWS
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure
Topic 6:
Topic 6:SoSo That
Th at's'sWhat
Wh at Direct Route 53
Clou ds(AWS)
Clouds (AWS)Are
Ar eMade
M adeOf Connect
Of


Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e Com pute
Before There
Topic
M ade2:OfWhat
? Are Clouds
Made Of?

Cloud Term inology EC2 Lam bda
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure
Topic 6:
Topic 6:SoSo That
Th at's'sWhat
Wh at
Clou ds(AWS)
Clouds (AWS)Are
Ar eMade
M adeOf
Of


Back Next
Back t o M ain
Course Navigation
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
? Are Clouds
Made Of?

Cloud Term inology
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure
Topic 6:
Topic 6:SoSo That
Th at's'sWhat
Wh at
Clou ds(AWS)
Clouds (AWS)Are
Ar eMade
M adeOf
Of
Storage

S3 Glacier
Back Next Topic
Back t o M ain
Course Navigation
Wh at Ar e Clou ds M ade Of ?: Ju st t h e FAQs
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
Made Of?
What Are Clouds Made Of?:
Cloud Term inology
Just t he FAQs
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS

Topic
Topic 5: 5:AWS
AWSGlobal
Global
Infrastructure - Just t he FAQs
Topic 6:
Topic 6:SoSo That
Th at's'sWhat
Wh at
Clou ds(AWS)
Clouds (AWS)Are
Ar eMade
M adeOf
Of

M ade Of ?: Ju st t h e FAQs

Back Next
Back t o M ain
Course Navigation
Wh at Ar e Clou ds M ade Of ?: Ju st t h e FAQs
Dem yst if yin g t h e Clou d Ju st t h e FAQs
Section 1
Topic 1: I n t h e - Bef or e Th er e Was a Clou d

Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e - Traditional architecture and challenges with space, power,
Before There
Was a Clou d Was a Cloud cooling, cost, and support requirem ents
- Wh at I s t h e Clou d?
Topic
M ade2:OfWhat
? Are Clouds - Infrastructure as a Service
Made Of? - Platform as a Service
- Software as a Service
Topic 3: Introduction to - Types of Clou ds
Cloud Term inology - Public
- Private
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits - Hybrid
Ben
Cloud/AWS - Ter m in ology
- Elasticity, scalability, high availability, and fault tolerance
Topic
Topic 5: 5:AWS
AWSGlobal
Global - Pr im ar y Ben ef it s of Clou d
Infrastructure
I n f r ast r u ct u r e - Flexibility, pay as you go, elasticity, scalability, high availability,
and fault tolerance
Topic 6:
Topic 6:SoSo That
Th at's'sWhat
Wh at
Clou ds(AWS)
(AWS)Are
Ar eMade
M adeOf - AWS Global I n f r ast r u ct u r e
Clouds
Of - Regions
- Availability Zones
Topic 7: Wh at Ar e Clou ds - Data centers
M ade Of ?: Ju st t h e FAQs - So Th at 's Wh at Clou ds Ar e M ade Of
- Com pute
- Networking
- Storage
Back Next Topic
Back t o M ain
Course Navigation
Wr ap I t Up
Section 1
Topic 1: I n t h e
Topic
Begin1:
n in
Ing,the
BefBeginning,
or e Th er e
Before There
Topic
M ade2:OfWhat
Made Of?
Dem yst ifying t he Cloud
Cloud Term inology
Topic 4:
Topic 4:Prim
Pr imary
ar yBenefits
Ben
Cloud/AWS
Sect ion 1 t opics included:
- In t he Beginning, Before There Was a Cloud
Topic
Topic 5: 5:AWS
AWSGlobal
Global
- What Are Clouds Made Of?
Infrastructure
I n f r ast r u ct u r e - Int roduct ion t o Cloud Term inology
- Prim ary Benefit s of Cloud/ AWS
Topic 6:
Topic 6:SoSo That
Th at's'sWhat
Wh at
Clou ds(AWS)
(AWS)Are
Ar eMade
M adeOf - AWS Global Infrast ruct ure
Clouds
Of - So That 's What Clouds (AWS) Are Made Of
Topic 7: What Are Clouds - Just t he FAQs
Made Of?: Just the FAQs - Wrap It Up!
M ade Of ?: Ju st t h e FAQs
Topic
Topic 8:
8:Wrap
Wr apItI tUp:
Up:
Dem
Demystifying
yst if yin gthe
t h eCloud
Clou d
Back Next Topic
Back t o M ain
Getting Started with AWS
Course Navigation
AWS Fr ee Tier
w it h AWS
Section 2
Topic1:
Topic 1:AWS
AWSFree
Fr eeTier
Tier
Topic 2: Access and Tour

the AWS Managem ent
Console
Let 's Get St art ed:
What You Need t o Know

- AWS Free Tier
Back Next
Back t o M ain
Course Navigation
AWS Fr ee Tier
w it h AWS
Section 2
Topic1:
Topic 1:AWS
AWSFree
Fr eeTier
Tier
Topic 2: Access and Tour

the AWS Managem ent
Console
AWS Fr ee Tier
Alw ays Fr ee
A Available to all AWS custom ers at no cost
Fr ee f or 12 M on t h s
B Free for 12 m onths following your initial AWS
sign-up date
Tr ial
C Short-term free trials
Visit the AWS Fr ee Tier page for current details on available

Free Tier services.
Back Next Topic
Back t o M ain
Course Navigation
Access an d Tou r t h e AWS M an agem en t Con sole
w it h AWS
Section 2
Topic
Topic1:
1:AWS
AWSFree
Fr eeTier
Tier
Topic
Topic2:2:Access
Accessand
an dTour
Tou r
the
t h e AWS Con sole ent
AWS
Console
Managem
Let 's Get St art ed:
What You Need t o Know

- What Is t he AWS Console?
- Access and Tour t he AWS Console
Back Next
Back t o M ain
Course Navigation
w it h AWS
Section 2
Topic
Topic1:
1:AWS
AWSFree
Fr eeTier
Tier The AWS Managem ent Console is the graphical user interface
Topic (GUI) that is used to m anage an AWS account. Below is a
Topic2:2:Access
Accessand
an dTour
Tou r
the sum m ary of tasks that can be com pleted using the AWS
t h e AWS Con sole ent
AWS Managem
Console M an agem en t Con sole:
Adm in ist er Sear ch an d Per son alize

you r AWS n avigat e t o you r con sole
accou n t . ser vices. w it h ser vice
sh or t cu t s.
Tag r esou r ces Cr eat e Access h elpf u l

f or easy r esou r ce r esou r ces f or
iden t if icat ion gr ou ps f or lear n in g abou t
an d edit in g. collect ion s of AWS ser vices
r elat ed an d f eat u r es.
r esou r ces.
Back
Next Topic
Back t o M ain
The Big Picture
Course Navigation
You r Piece of t h e AWS Clou d
Th e Big Pict u r e
Section 3
Topic
Topic 1:
1:Your
You rPiece
Pieceofofthe
AWS Cloud
t h e AWS Clou d

Seeing t he Big Pict ure

- Your Piece of t he AWS Cloud Pie
Back Next
Back t o M ain
The Big Picture
Course Navigation
Th e Big Pict u r e You r Piece of t h e AWS Clou d Pie

Section 3
We've talked about AWS and the m akeup of AWS cloud. As an AWS
Topic
Topic 1:
1:Your
You rPiece
Pieceofofthe custom er, you get a slice of the AWS cloud pie. Let 's take a look at what
AWS Cloud
t h e AWS Clou d you can do with a piece of the cloud.
Back Next
Back t o M ain
The Big Picture
Course Navigation
Th e Big Pict u r e
Section 3
AWS Clou d
Topic
Topic 1:
1:Your
You rPiece
Pieceofofthe
AWS Cloud
t h e AWS Clou d
Region
Availabilit y Zon e Availabilit y Zon e
Vir t u al Pr ivat e Clou d
Back Next Topic
Back t o M ain
Identity and Access Managem ent (IAM)
Course Navigation
Over view of I den t it y an d Access M an agem en t
Section 4
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access
M an agem en
Managem entt
Topic 2: IAM Users, IAM: Managing Users, Groups, and Roles
Groups, Roles, and
Policies
Topic 3: IAM: Just the

FAQs
- Overview of IAM
Topic 4: IAM: Wrap It Up!
- IAM Best Pract ices
- Mult i-Fact or Aut hent icat ion
- Best Pract ices for IAM Users and Groups
- IAM Password Policies
Back Next
Back t o M ain
Course Navigation
I den t it y an d Access Wh at I s I AM ?
Section 4
- I AM (I dentity and Access M anagem ent) is the service where AWS
Topic
Topic 1:
1: Over view of
Overview of user accounts and their access to various AWS services is m anaged.
IIdentity
den t it y and
an d Access
Access - The com m on use of I AM is to m anage:
M an agem en
Managem entt - Users
- Groups
Topic 2: IAM Users, - Access policies
Groups, Roles, and - Roles
Policies - User credentials
- User password policies
Topic 3: IAM: Just the - Multi-factor authentication (MFA)
FAQs - API keys for program m atic (CLI) access
- The user created when you create an AWS account is called the
Topic 4: IAM: Wrap It Up! r oot user.
- By default, the root user has full adm inistrative rights and access to
every part of the account.
- Any new or additional users created in the AWS account are created
with no access to any AWS resources. The only granted access is the
ability to log in.
- For a user to access an AWS service, perm ission m ust be granted to
that user, which is m anaged in/by IAM.
Identity and Access Managem ent
Back Next
Back t o M ain
Course Navigation
I den t it y an d Access I AM Best Pr act ices
Section 4
- AWS Best Pr act ices: Guidelines that recom m end settings,
Topic
Topic 1:
1: Over view of
Overview of configurations, and architecture for m aintaining a high level of
IIdentity
den t it y and
an d Access
Access security, accessibility, and efficiency.
M an agem en
Managem entt - When a new AWS root account is created, it is best practice to
com plete the tasks listed in IAM under Security Status, including:
Topic 2: IAM Users, - Delet e your root access keys
Groups, Roles, and - Act ivat e MFA on your root account
Policies - Cr eat e individual IAM users
- Use groups to assign perm issions
Topic 3: IAM: Just the - Apply an IAM password policy
FAQs
Back Next
Back t o M ain
Course Navigation
I den t it y an d Access Act ivat e M FA on You r Root Accou n t
Section 4
- What is M FA?
Topic
Topic 1:
1: Over view of
Overview of - MFA stands for M ulti-Factor Authentication.
IIdentity
den t it y and
an d Access
Access - It is an additional layer of security on your root account that is
M an agem en
Managem entt provided by a third party.
- It provides a continually changing, random , six-digit code you
Topic 2: IAM Users, need to input (along with your password) when logging in to
Groups, Roles, and your root account.
Policies
- How do you get an M FA code?

Topic 3: IAM: Just the - Vir t u al M FA device
FAQs
- Sm artphone or tablet
- Com m only used app (iOS and Android): Google
Authenticator
- Har dw ar e k ey f ob
- Sm all physical device with a display that you can attach to
your keychain
- Ordered directly from AWS
- API k eys f or pr ogr am m at ic (CLI ) access
- Special credentials required for accessing AWS resources via
the com m and line interface (CLI)
Back Next
Back t o M ain
Course Navigation
Section 4
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access User n am e__________
M an agem en
Managem entt Passw or d__________
Topic 2: IAM Users,

Groups, Roles, and M FA Code
Policies 534253

FAQs
Topic 4: IAM: Wrap It Up! M FA Code____________
Access Gr an t ed
Back Next
Back t o M ain
Course Navigation
I den t it y an d Access Best Pr act ices f or I AM User s
Section 4
- Best practice is to never use your root account for day-to-day use.
Topic
Topic 1:
1: Over view of
Overview of - If you want full adm in access, create an IAM user and attach the
IIdentity
den t it y and
an d Access
Access Adm in ist r at or Access policy to it.
M an agem en
Managem entt - Use that account as your daily driver.
Topic 2: IAM Users, Best Pr act ices f or I AM Gr ou ps

Groups, Roles, and
Policies
- An IAM group is a collection of IAM users. Groups allow you to set
and m anage perm issions for m ultiple users at the sam e tim e.
- Groups are a m ore convenient and efficient way to m anage account
FAQs
perm issions. For exam ple, if our user Jam es were to switch
positions within the com pany, we could easily rem ove Jam es from
his old group and add him to the new group.
Best Pr act ices f or I AM Passw or d Policy
- A password policy dictates the form at and expiration rules that a

user m ust follow when creating or m odifying their password.
- These rules include:
- Length requirem ents
- Case requirem ents
- Num ber requirem ents
- Non-alphanum eric requirem ents
- Password expiration
- Password reuse
- User rights to change their own password
- Adm inistrator reset requirem ents
Back Next Topic
Back t o M ain
Course Navigation
I AM User s, Gr ou ps, Roles, an d Policies
Section 4
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access AWS Cert ified Cloud Pract it ioner:
M an agem en
Managem entt
Topic 2: I AM User s,
IAM: Managing Users, Groups, and Roles
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies
Topic 3: IAM: Just the Sect ion 4.2 t opics include:

FAQs - IAM User Managem ent
- Applying IAM Policies t o Users
Topic 4: IAM: Wrap It Up! - IAM Group Managem ent
- Applying IAM Policies t o Groups
- IAM Roles
- Using IAM Roles
Back Next
Back t o M ain
Course Navigation
I den t it y an d Access I AM User s
Section 4
- IAM users are individuals who have been granted access to an AWS
account. For exam ple, if your com pany gives you access to their
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access
AWS account, then you are an IAM user (probably one of m any the
M an agem en
Managem entt com pany has set up).
Topic 2: I AM User s, - Each IAM user has three m ain com ponents:
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups, Roles, and - A u ser n am e
Policies
Policies - A passw or d
- Per m ission s to access various AWS services
FAQs - Without perm issions being explicitly granted to an IAM user, that
user will not able to access any AWS services.
- Generally, a com pany's I.T. departm ent will be responsible for
"attaching" what are called IAM permission policies to an IAM user
based on what that user needs access to (in order to do their job).
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies M ar k

FAQs
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic 2: I AM User s, IAM = Identity &

Topic
Gr 2: IAM
ou ps, Users,
Roles, an d Access Managem ent.
Groups,
Policies Roles, and
Policies M ar k
IAM is the AWS
Service where you
Topic 3: IAM: Just the m anage users,
FAQs
groups, polices, and
roles.
In order to access
AWS services, Users,
Groups, and other
AWS resources (such
as EC2), m ust be
granted perm ission
by using IAM Access
Policies OR IAM
S3 Bucket Roles.
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies M ar k

FAQs
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies M ar k

FAQs
If an IAM User does

NOT have an IAM
Policy attached
granting perm ission
to an AWS resource
(such as S3), then
access will be
S3 Bucket DENIED.
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies M ar k

FAQs
I AM S3
Fu ll Access Policy
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic 2: IAM Users, With an IAM S3 policy
Gr ou ps, Roles, an d
Groups, Roles, and attached to the user
Policies
Policies Mark, he can now
M ar k
access the S3 bucket.
FAQs
I AM S3
Fu ll Access Policy
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies Adr ian M ar k Jam es

FAQs
I AM S3
Fu ll Access Policy
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
" Dev "
FAQs
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
Topic 3: IAM: Just the " Dev "
FAQs
Adrian
Topic 4: IAM: Wrap It Up! Mark
Jam es
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
FAQs
I AM S3
Fu ll Access
Policy
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
FAQs
I AM S3
Fu ll Access
Policy
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
FAQs
I AM S3
With Mark
Fu llrem oved
Access
from the Group,
Policy only
Adrian and Jam es
have access to the S3
bucket through the
policy attached to the
group.
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
FAQs
I AM S3
Fu ll Access
Policy
S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
FAQs
I AM S3
Fu ll Access
Policy
EC2 S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
FAQs
I AM S3
Fu ll Access
Policy
I AM Role
EC2 S3 Bucket
Back Next
Back t o M ain
Course Navigation
Section 4 AWS Cloud
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
Access I AM
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Gr ou p
FAQs
I AM S3
Fu ll Access
Policy
I AM Role
EC2 S3 Bucket
Back Next
Back t o M ain
Course Navigation
I AM : Ju st t h e FAQs
Section 4
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies
Topic 3: I AM : Ju st t h e
Topic 3: IAM: Just the Sect ion 4.3 t opics include:
FAQs
FAQs - Just t he FAQs
Back Next
Back t o M ain
Course Navigation
I AM : Ju st t h e FAQs
I den t it y an d Access Ju st t h e FAQs
Section 4 - The r oot u ser account is created when the AWS account is created.
- The root account has access to ever yt h in g within the AWS account.
Topic
Topic 1:
1: Over view of
Overview of
- The root account should n ot be used for daily m anagem ent tasks.
IIdentity
den t it y and
an d Access
Access
- Create an additional account for daily adm in ist r at ion .
M an agem en
Managem entt
- I AM u ser s have no rights by default when created, except the ability
Topic 2: I AM User s, to log in.
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups, Roles, and
- I AM gr ou ps can be used to grant m ultiple users the sam e access.
Policies
Policies - Policies assigned to users and groups grant access to AWS
resources.
Topic 3: I AM : Ju st t h e - I AM r oles are used to grant on e AWS resource access to another
FAQs
FAQs resource (e.g., allow EC2 to access S3).
- M u lt i-f act or au t h en t icat ion (M FA) provides an additional layer of
Topic 4: IAM: Wrap It Up! protection when logging in to AWS.
- Use passw or d policies to enforce password com plexity and
strength.
- API access k eys m ay be used for logging in to the com m and line
interface.
Back Next
Back t o M ain
Course Navigation
I AM : Wr ap I t Up!
Section 4
Topic
Topic 1:
1: Over view of
Overview of
IIdentity
den t it y and
an d Access
M an agem en
Managem entt
Topic
Gr 2: IAM
ou ps, Users,
Roles, an d
Groups,
Policies Roles, and
Policies
Topic 3: I AM : Ju st t h e Sect ion 4.4 t opics included:

FAQs
FAQs - Overview of Ident it y and Access Managem ent
- IAM Users, Groups, Roles, and Policies
Topic
Topic 4:
4: IIAM:
AM : Wrap
Wr ap ItI t Up!
Up!
- IAM: Just t he FAQs
- IAM: Wrap It Up!
Back Next
Back t o M ain
AWS Networking
Course Navigation
Net w or k in g 101
Vir t u al Pr ivat e Clou d (VPC)

Section 5
Topic 1:
1: Net
Networking
w or k in g101
Topic 101
Topic 2: Conceptual
Overview of VPCs
Virt ual Privat e Cloud (VPC)
Topic 3: A Walkthrough of
VPC Basics
Topic 4: Internet - Net working 101
Gateways and Route
- Visualizing t he Net work
Tables
Topic 5: VPC Subnets,

Security Groups, and
NACLs
Topic 6: VPCs: Just the

FAQs and Wrap It Up!
Back Next
Back t o M ain
AWS Networking
Course Navigation
Net w or k in g 101
Vir t u al Pr ivat e Clou d (VPC) Com par in g Net w or k s t o Neigh bor h oods
Section 5
Networks are the roads that allow your data to m ove from device to
Topic 1:
1: Net
Networking device. Networks connect to other networks to allow data to m ove to
Topic w or k in g101
101
rem ote devices.
Topic 2: Conceptual
Overview of VPCs
VPC Basics
Topic 4: Internet
Gateways and Route
Tables

NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation
Net w or k in g 101
Section 5
Houses represent the different com puters on a network.
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic 2: Conceptual
Overview of VPCs
VPC Basics
Topic 4: Internet
Gateways and Route
Tables

NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation
Net w or k in g 101
Section 5
Cars represent the data as it m oves across the network.
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic 2: Conceptual
Overview of VPCs
VPC Basics
Topic 4: Internet
Gateways and Route
Tables

NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation
Net w or k in g 101

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic 2: Conceptual
Overview of VPCs Com puter
VPC Basics
Switch
Topic 4: Internet
Gateways and Route
Tables
Com puter
Topic 5: VPC Subnets, Router
NACLs
Topic 6: VPCs: Just the Switch

Com puter
Com puter
Back Next Topic
Back t o M ain
AWS Networking
Course Navigation
Con cept u al Over view of VPCs

Section 5
Topic 1:
1: Net
Networking
w or k in g101
Topic 101
Topic
Topic 2:
Over
2: Con
Overview
cept u al
Conceptual
view ofof VPCs
VPCs
VPC Basics
Topic 4: Internet - What Is a VPC?
Gateways and Route
- VPC Concept ual Analogy
Tables
- Applying t he Concept s
NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation
Vir t u al Pr ivat e Clou d (VPC) Wh at I s a VPC?

Section 5
Sim plif ied Def in it ion
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
A VPC (Virtual Private Cloud) is a private subsection of AWS that you
control, into which you can place AWS resources (such as EC2 instances
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view ofof VPCs
VPCs and databases). You have full control over who has access to the AWS
Overview
resources that you place inside your VPC.
Topic 3: A Walkthrough of AWS Def in it ion

VPC Basics
"Am azon Virtual Private Cloud (Am azon VPC) lets you provision a
Topic 4: Internet logically isolat ed section of the Am azon Web Services (AWS) cloud
Gateways and Route where you can launch AWS resources in a vir t u al n et w or k that you
Tables
define. You h ave com plet e con t r ol over you r vir t u al n et w or k in g
en vir on m en t , including selection of your own IP address range,
Topic 5: VPC Subnets, creation of su bn et s, and configuration of r ou t e t ables and n et w or k
Security Groups, and gat ew ays."
NACLs
NOTE: When you create an AWS account, a "default " VPC is created for
Topic 6: VPCs: Just the you.
Back Next
Back t o M ain
AWS Networking
Course Navigation

Facebook / VPC An alogy
Section 5
Facebook
You r My Fr ien d's

Topic 1:
Topic 1: Net
Networking
w or k in g101
101 Hom epage Hom epage Hom epage
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs
Posts, Photos,
Videos
VPC Basics
Topic 4: Internet
Gateways and Route
Tables
AWS
Security Groups, and Friend's
You r My
NACLs VPC
VPC VPC

EC2
RDS
Back Next
Back t o M ain
AWS Networking
Course Navigation
Vir t u al Pr ivat e Clou d (VPC) Su bn et s

Section 5
Wh at I s a Su bn et ?
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 A subnet (shorthand for "subnetwork") is a subsection of a network.
Generally, a subnet includes all of the com puters in a specific location.
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs
Exam ple
Topic 3: A Walkthrough of Continuing the neighborhood analogy, where houses represent

VPC Basics
com puters, all houses on the sam e street in a neighborhood would be a
subnet.
Topic 4: Internet
Gateways and Route
Tables

NACLs
Su bn et 1
Su bn et 2
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
AWS Clou d
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view ofof VPCs
VPCs Vir t u al Pr ivat e Clou d
Overview
VPC Basics
Su bn et
Topic 4: Internet
Gateways and Route
Tables

NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
AWS Clou d
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view ofof VPCs
Overview
VPC Basics
Su bn et
Topic 4: Internet
Gateways and Route
Tables

NACLs Am azon EC2

Am azon RDS
Back Next Topic
Back t o M ain
AWS Networking
Course Navigation
A Walk t h r ou gh of VPC Basics

Section 5
Topic 1:
1: Net
Networking
w or k in g101
Topic 101
Topic
Topic 2:
Over
2: Con
Overview
cept u al
Conceptual
view ofof VPCs
VPCs
Topic 3: A Walk t h r ou gh
of VPC Basics
VPC Basics
Topic 4: Internet - VPC Walkt hrough in t he AWS Console
Gateways and Route
Tables

NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation
A Walk t h r ou gh of VPC Basics

Section 5
AWS Clou d
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view ofof VPCs
Overview
of VPC Basics Su bn et
VPC Basics
Topic 4: Internet
Gateways and Route
Tables

NACLs
Topic 6: VPCs: Just the Am azon EC2

Back Next Topic
Back t o M ain
AWS Networking
Course Navigation
I n t er n et Gat ew ays an d Rou t e Tables

Section 5
Topic 1:
1: Net
Networking
w or k in g101
Topic 101
Topic
Topic 2:
Over
2: Con
Overview
cept u al
Conceptual
view ofof VPCs
VPCs
Virt ual Privat e Cloud
of VPC Basics
VPC Basics
Topic 4: I n t er n et
Topic
Gat ew4:ays
Internet
an d Rou t e - Int ernet Gat eways
Gateways and Route
Tables - Rout e Tables
Tables
- Net working Securit y
NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation
I n t er n et Gat ew ays (I GWs)
Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 A com bination of hardware and software that provides your private
network with a r ou t e to the world outside (m eaning the internet) of the
Topic
Topic 2:
2: Con cept u al
Conceptual VPC
Over view of
Overview of VPCs
VPCs
Topic 3: A Walkthrough of AWS Def in it ion
of VPC Basics
VPC Basics
Topic 4: I n t er n et "An internet gateway is a horizontally scaled, r edu n dan t an d h igh ly

Topic
Gat ew4:ays
Internet
an d Rou t e available VPC com ponent that allow s com m u n icat ion bet w een
Gateways and Route
Tables in st an ces in you r VPC an d t h e in t er n et . It therefore im poses no
Tables
availability risks or bandwidth constraints on your network traffic."
Topic 5: VPC Subnets, NOTE: Your default VPC already has an IGW at t ach ed.
NACLs

I n t er n et Gat ew ay
Back Next
Back t o M ain
AWS Networking
Course Navigation
Vir t u al Pr ivat e Clou d (VPC) I n t er n et

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 AWS Clou d
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
I GW
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Rou t e Table

NACLs
Su bn et
Am azon EC2
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 AWS Clou d Det ach ed
Topic
Topic 2:
2: Con cept u al
Conceptual I GW
Over view of
Overview of VPCs
VPCs
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Rou t e Table

NACLs
Su bn et
Am azon EC2
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 AWS Clou d
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
I GW
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Rou t e Table

NACLs
Su bn et
Am azon EC2
Back Next
Back t o M ain
AWS Networking
Course Navigation
Rou t e Tables
Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 The AWS definition is sim ple enough, so let 's jum p right down to it!
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs
AWS Def in it ion
Topic 3: A Walkthrough of "A route table contains a set of r u les, called r ou t es, that are used to
of VPC Basics
VPC Basics
det er m in e w h er e n et w or k t r af f ic is dir ect ed."
Topic
Gat ew4:ays
Internet
an d Rou t e NOTE: Your def au lt VPC already has a m ain route table.
Gateways and Route
Tables
Tables

NACLs

Rou t e Table
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 AWS Clou d
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs
Vir t u al Pr ivat e Clou d I GW
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Rou t e Table

NACLs
Su bn et Su bn et
Am azon EC2 Am azon EC2
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
Topic
Topic 2:
2: Con cept u al
Conceptual I GW
Over view of
Overview of VPCs
VPCs
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Rou t e Table

NACLs
Su bn et Su bn et
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
Topic
Topic 2:
2: Con cept u al
Conceptual I GW
Over view of
Overview of VPCs
VPCs
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Rou t e Table

NACLs
Su bn et Su bn et
Back Next
Back t o M ain
AWS Networking
Course Navigation
Net w or k in g Secu r it y
Section 5
Net work Access Cont rol List (NACL)
A firewall/security layer on the subnet level
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Securit y Group (SG)
Topic
Topic 2:
2: Con cept u al
Conceptual A firewall/security layer on the instance/server level
Over view of
Overview of VPCs
VPCs
Topic 3: A Walk t h r ou gh What Is a Firewall?

Topic 3: A Walkthrough of A firewall is a type of software that either allows or blocks certain kinds of
of VPC Basics
VPC Basics
internet traffic to pass through it.
Topic
Gat ew4:ays
Internet
an d Rou t e Example: If the NACL and SG are configured to allow web traffic (HTTP),
Gateways and Route
Tables then HTTP requests will be allowed into the subnet and then into the EC2
Tables
instance. If they are configured to deny FTP traffic, then any FTP request
will be blocked.
Security Groups, and Vir t u al Pr ivat e Clou d
NACLs
Net w or k Access Con t r ol List (NACL)

Pr ivat e Su bn et
Secu r it y Gr ou p
Am azon EC2
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 AWS Clou d
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Rou t e Table
ALLOW DENY
NACLs
Su bn et Su bn et
Secu r it y Gr ou p Secu r it y Gr ou p
Back Next Topic
Back t o M ain
AWS Networking
Course Navigation
VPC Su bn et s, Secu r it y Gr ou ps, an d NACLs

Section 5
Topic 1:
1: Net
Networking
w or k in g101
Topic 101
Topic
Topic 2:
Over
2: Con
Overview
cept u al
Conceptual
view ofof VPCs
VPCs
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e - VPC Subnet s
Gateways and Route
Tables - Securit y Groups
Tables
- NACLs
Topic 5: VPC Su bn et s,
Topicr it5:yVPC
Secu Subnets,
Gr ou ps, an d
NACLs
NACLs

Back Next
Back t o M ain
AWS Networking
Course Navigation
Vir t u al Pr ivat e Clou d (VPC) Su bn et s

Section 5
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
A subnet (shorthand for "subnetwork") is a subsection of a network.
Topic
Generally, a subnet includes all the com puters in a specific location. Think
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs about your home network, and how it relates to your ISP's network. Think of
your hom e network as a subnet of your ISP's network.
of VPC Basics
VPC Basics
AWS Def in it ion
Topic
Gat ew4:ays
Internet
an d Rou t e "When you create a VPC, it spans all of the Availability Zones in the region.
Gateways and Route
Tables
Tables
After creating a VPC, you can add on e or m or e su bn et s in each
Availabilit y Zon e. Each subnet m u st r eside en t ir ely within one
Topic 5: VPC Su bn et s, Availability Zone and can n ot span zon es."
Topicr it5:yVPC
Secu Subnets,
Gr ou ps, an d
NACLs
NACLs NOTE: Your def au lt VPC already has a subnets created by default.

Back Next
Back t o M ain
AWS Networking
Course Navigation
Vir t u al Pr ivat e Clou d (VPC) Availabilit y Zon e Availabilit y Zon e

Section 5

Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs
Rou t e Table
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Topicr it5:yVPC
Secu Subnets,
Gr ou ps, an d
NACLs
NACLs
Topic 6: VPCs: Just the Pu blic Su bn et Pr ivat e Su bn et

Back Next
Back t o M ain
AWS Networking
Course Navigation
I n t er n et
Section 5 I GW
VPC
Topic 1:
Topic 1: Net
Networking
w or k in g101
101
Topic
Topic 2:
2: Con cept u al
Conceptual Rou t e Table
Rou t e Table
Over view of
Overview of VPCs
VPCs w / I GW w / ou t I GW
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables
Topicr it5:yVPC
Secu Subnets,
Gr ou ps, an d
NACLs
NACLs
Topic 6: VPCs: Just the Pu blic Su bn et Pr ivat e Su bn et

Back Next
Back t o M ain
AWS Networking
Course Navigation
Net w or k in g Secu r it y
Section 5 Net w or k Access Con t r ol List (NACL)
An optional firewall/security layer that controls inbound and outbound
Topic 1:
Topic 1: Net
Networking
w or k in g101
101 traffic for one or m ore subnets. The default VPC has a NACL associated
with the default subnet.
Topic
Topic 2:
2: Con cept u al
Conceptual
Over view of
Overview of VPCs
VPCs Secu r it y Gr ou p (SG)
A firewall/security layer on the instance/server level
of VPC Basics
VPC Basics Wh at I s a Fir ew all?
A type of software that either allows or blocks certain kinds of internet
Topic traffic to pass through it
Gat ew4:ays
Internet
an d Rou t e
Gateways and Route
Tables
Tables Exam ple: If the NACL and SG are configured to allow web traffic (HTTP),
then HTTP requests will be allowed into the subnet and then into the EC2
Topicr it5:yVPC Subnets, instance. If they are configured to deny FTP (File Transfer Protocol) traffic,
Secu Gr ou ps, an d
NACLs then any FTP request will be blocked.
NACLs

FAQs and Wrap It Up! Net w or k Access Con t r ol List (NACL)
Fir ew all
Pr ivat e Su bn et
Secu r it y Gr ou p
Secu r it y
Am azon EC2
Back Next
Back t o M ain
VPC Subnets, Security Groups, and NACLs
HTTP I n t er n et
FTP
Availability Zone Availability Zone
I n t er n et
Gat ew ay (I GW)
VPC
RT w / I GW RT w / o I GW
FTP - DENY
HTTP - ALLOW
NACL
Pu blic Su bn et Pr ivat e Su bn et
Back Next
VPC
Rou t er
I n bou n d Ou t bou n d
Ru les Ru les
For t h e "default " NACL, ALL t r af f ic is allow ed (bot h

in bou n d/ ouNet
t bou n d).
w or k Access Con t r ol List (NACL)
Back Next
VPC
Rou t er
I n bou n d & Ou t bou n d Ru les "rules"
1. Ru les ar e evalu at ed based on rule # f r om

low est t o h igh est .
2. Th e f ir st r u le evalu at ed t h at applies t o t h e
t r af f ic t ype get s im m ediat ely applied an d
execu t ed r egar dless of t h e r u les t h at com e
af t er (h ave a h igh er rule #).
Back Next
VPC
Rou t er
" Def au lt " NACL " New " NACL
Allows bot h in bou n d an d Wh en you cr eat e a n ew NACL,

ou t bou n d SSH t r af f ic sin ce t h e all t r af f ic is denied by def au lt .
SSH ALLOW r u le h as a low er
rule #.
All ot h er t ypes of t r af f ic w ill

be denied via t h e cat ch -all
f ailsaf e DENY r u le. Net w or k Access Con t r ol List (NACL)
Back Next
VPC
Rou t er
" Def au lt " NACL " New " NACL
Allows bot h in bou n d an d Allows bot h in bou n d an d

ou t bou n d HTTP t r af f ic sin ce ou t bou n d SSH t r af f ic, sin ce t h e
t h e HTTP ALLOW r u le h as a SSH ALLOW r u le h as a low er
low er rule #. rule #.
All ot h er t ypes of t r af f ic w ill All ot h er t ypes of t r af f ic w ill be

be denied via t h e cat ch -all denied via t h e cat ch -all f ailsaf e
f ailsaf e DENY r u le. DENY
Net w or k Access Conrtur ol
le.List (NACL)
Back Next
HTTP I n t er n et
FTP
Availability Zone Availability Zone
I n t er n et
Gat ew ay (I GW)
VPC
FTP - DENY
HTTP - ALLOW
NACL
Back Next
AWS Networking
Course Navigation
Ju st t h e FAQs an d Wr ap I t Up!

Section 5
Topic 1:
1: Net
Networking
w or k in g101
Topic 101
Topic
Topic 2:
Over
2: Con
Overview
cept u al
Conceptual
view ofof VPCs
VPCs
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e - Just t he FAQs
Gateways and Route
Tables - Wrap It Up!
Tables
Topicr it5:yVPC
Secu Subnets,
Gr ou ps, an d
NACLs
NACLs
Topic 6: VPCs:
Topic 6: Ju st t hJust
e FAQs
the
an d Wr
FAQs apWrap
and I t Up!It Up!
Back Next
Back t o M ain
AWS Networking
Course Navigation
Vir t u al Pr ivat e Clou d (VPC) Ju st t h e FAQs

Section 5
- A network can be com pared to a neighborhood. The roads represent

Topic 1:
Topic 1: Net
Networking
w or k in g101
101 the network, and the houses represent the com puters on the
network.
Topic
Topic 2:
2: Con cept u al
Conceptual - The cars represent the data m oving through the network. When a
Over view of
Overview of VPCs
VPCs
car (data) leaves the neighborhood (network), it is destined for
Topic 3: A Walk t h r ou gh another network.
Topic 3: A Walkthrough of - A single street with houses represents a subnet with com puters.
of VPC Basics
VPC Basics
- A VPC is a private part of the AWS cloud that custom ers create to
Topic 4: I n t er n et hold AWS resources they wish to use.
Topic
Gat ew4:ays
Internet
an d Rou t e - A default VPC is created when a new AWS account is created.
Gateways and Route
Tables - Multiple VPCs m ay be created.
Tables
- VPCs cross Availability Zones (AZs).
Topic 5: VPC Su bn et s, - Subnets are created within a VPC.
Topicr it5:yVPC
Secu Subnets,
Gr ou ps, an d - Subnets m ay be public or private.
NACLs - Private subnets do not have access to the internet, but public
NACLs
subnets do have access to the internet (assum ing a route table with
a route to the internet gateway [IGW] exists). The term s "public"
Topic 6: VPCs:
e FAQs
the
an d Wr apWrap
I t Up!It Up!
subnet and "private" subnet are labels.
FAQs and
- A route/no route to the IGW is what m akes a subnet public or
private.
- An internet gateway provides internet connectivity. IGWs m ay be
attached to and detached from a VPC.
- Route tables are used to direct traffic to various destinations. Route
tables m ay or m ay not have a route to an IGW.
- Security (firewall security) is provided by the NACL and the security
group (discussed in the EC2 section). NACLs have rules to allow
traffic into and out of subnets. A NACL can be assigned to one or
m ore subnets.
Back Next
Back t o M ain
AWS Networking
Course Navigation

Section 5
Topic 1:
1: Net
Networking
w or k in g101
Topic 101
Topic
Topic 2:
Over
2: Con
Overview
cept u al
Conceptual
view ofof VPCs
VPCs
of VPC Basics
VPC Basics
Topic
Gat ew4:ays
Internet
an d Rou t e - Net working 101
Gateways and Route
Tables - Concept ual Overview of VPCs
Tables
- A Walkt hrough of VPC Basics
Topic 5: VPC Su bn et s, - Int ernet Gat eways and Rout e Tables
Topicr it5:yVPC
Secu Subnets,
Gr ou ps, an d
NACLs
- VPC Subnet s, Securit y Groups, and Net work Access Cont rol
NACLs List s (NACLs)
- Just t he FAQs
Topic 6: VPCs:
e FAQs
the - Wrap It Up!
an d Wr
FAQs apWrap
and I t Up!It Up!
Back Next Topic
Back t o M ain
AWS Com pute Services
Course Navigation
Com pu t e 101
Elast ic Com pu t e Clou d (EC2)

Section 6
Topic 1:
1: Com
Com pu
pute
t e 101
Topic 101
Topic 2: Overview of
Com pute Services
Elast ic Com put e Cloud (EC2)
Topic 3: Elastic Com pute

Cloud (EC2) Instances
Topic 4: Connecting to an - Com put e Basics
EC2 Instance from
Windows
Topic 5: Connecting to an
EC2 Instance from
Term inal (Not Windows)
Topic 6: Com pute: Just

the FAQs and Wrap It Up!
Back Next
Back t o M ain
Course Navigation
Com pu t e 101
Elast ic Com pu t e Clou d (EC2) Com pu t e Basics

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
Topic 2: Overview of
Com pute Services
Basic
Com puter
Cloud (EC2) Instances Com ponents
EC2 Instance from
Windows
Topic 5: Connecting to an Har d Dr ive

CPU
EC2 Instance from Oper at in g Syst em
(Pr ocessin g Pow er ) (Local St or age)
Term inal (Not Windows) (Lin u x or Win dow s)

Net w or k Car d Fir ew all RAM

(I n t er n et Access) (Secu r it y)
Back Next Topic
Back t o M ain
Course Navigation
Over view of Com pu t e Ser vices

Section 6
Topic 1:
1: Com
Com pu
pute
t e 101
Topic 101
Topic
Topic 2:
Com
2: Over view of
Overview of
Compu t e Ser
pute vices
Services

Topic 4: Connecting to an - What Is Elast ic Com put e Cloud (EC2)?
EC2 Instance from
- Com ponent s
Windows
- Purchasing Opt ions
- Benefit s and Use Cases
EC2 Instance from

Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Wh at I s EC2?

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
Think of EC2 (Elastic Com pute Cloud) as a basic com puter.
Topic
Topic 2:
2: Over view of
Overview of
Com
Compu t e Ser
pute vices
Services AWS Def in it ion
"Am azon Elastic Com pute Cloud (Am azon EC2) provides scalable
Cloud (EC2) Instances com pu t in g capacit y in the Am azon Web Services (AWS) cloud. Using
Am azon EC2 elim inates your need to invest in hardware up front, so you
can develop and deploy applications faster. You can use Am azon EC2 to
EC2 Instance from
lau n ch as m an y or as f ew vir t u al ser ver s as you n eed, configure
Windows security and networking, and m anage storage. Am azon EC2 enables
you to scale up or down to handle changes in requirem ents or spikes in
popularity, reducing your need to forecast traffic."
EC2 Instance from
Term inal (Not Windows) NOTE: There are two types of AWS com pute services we will cover in
this course: EC2 and Lam bda. We will go over Lam bda in a later section.
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) EC2 Com pon en t s: A Con cept u al Un der st an din g
Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
Topic
Topic 2:
2: Over view of
Overview of
Com
Compu t e Ser
pute vices
Services
EC2 Instance
Com ponents
NOTE: This is an over-simplified comparison.

EC2 Instance from
Windows
AM I s I n st an ce Type EBS
EC2 Instance from
Term inal (Not Windows) (Lin u x or Win dow s) (Pr ocessin g Pow er ) (Local St or age)

I P Addr ess Secu r it y Gr ou ps RAM

(I n t er n et Access) (Secu r it y)
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) EC2 I n st an ce Pu r ch asin g Opt ion s (M ost Com m on )
Section 6
On Dem an d
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
On-dem and purchasing allows you to choose any in st an ce t ype you
Topic
Topic 2:
2: Over view of
Overview of like and provision/term inate it at any tim e (on dem and).
Com
Compu t e Ser
pute vices
Services
1. This is the m ost expen sive and m ost f lexible purchasing option.
Topic 3: Elastic Com pute 2. You are only charged when the instance is r u n n in g (and billed by the
Cloud (EC2) Instances hour).
3. You can provision/term inate an on-dem and instance at anytim e.
EC2 Instance from Reser ved
Windows
Reserved purchasing allows you to purchase an instance for a set t im e
Topic 5: Connecting to an per iod of one (1) or three (3) years.
EC2 Instance from
Term inal (Not Windows) 1. This allows for a sign if ican t pr ice discou n t over using on dem and.
2. You can select to pay upfront, partial upfront, no upfront.
Topic 6: Com pute: Just 3. Once you buy a reserved instance, you own it for the selected tim e
the FAQs and Wrap It Up! period and are r espon sible f or t h e en t ir e pr ice ? regardless of how
often you use it.
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) EC2 I n st an ce Pu r ch asin g Opt ion s (M ost Com m on )
Section 6
Spot
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
Spot pricing is a way for you to "bid" on an instance type, and then only
Topic
Topic 2:
2: Over view of
Overview of pay for and use that instance when the spot price is equ al t o or below
Com
Compu t e Ser
pute vices
Services your "bid" price.
Topic 3: Elastic Com pute 1. This option allows Am azon to sell the use of u n u sed in st an ces, for
Cloud (EC2) Instances short am ounts of tim e, at a su bst an t ial discou n t .
2. Spot pr ices f lu ct u at e based on supply and dem and in the spot
Topic 4: Connecting to an m arketplace.
EC2 Instance from 3. You are ch ar ged by t h e m in u t e.
Windows 4. When you have an active bid, an instance is pr ovision ed f or you
w h en t h e spot pr ice is equ al t o or less t h an you r bid pr ice.
Topic 5: Connecting to an 5. A provisioned instance au t om at ically t er m in at es w h en t h e spot
EC2 Instance from pr ice is gr eat er t h an you r bid pr ice.
See a full list of instance purchasing options.
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) How Ar e You Ch ar ged?

Section 6
NOTE: Fr ee Tier use is available for EC2.
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
1. Pu r ch asin g Opt ion s
Topic
Topic 2:
2: Over view of
Overview of Most com m on (not an inclusive list):
Com
Compu t e Ser
pute vices
Services - On dem and
- Reserved
Topic 3: Elastic Com pute - Spot
2. I n st an ce Type: The instance's processing capacity (think CPU)
Topic 4: Connecting to an - General purpose
EC2 Instance from - Com pute optim ized
Windows - Accelerated com puting
- Mem ory optim ized
Topic 5: Connecting to an - Storage optim ized
EC2 Instance from
Term inal (Not Windows) 3. EBS Opt im ized: An option for higher IOPS perform ance
Topic 6: Com pute: Just 4. AM I Type: Think operating system

the FAQs and Wrap It Up! - Linux (price varies based on distro/software packages)
- Windows (price varies based on version/software packages)
5. Dat a Tr an sf er : In/out of the instance
6. Region : In which the instance is provisioned
NOTE: Before any m ajor usage of EC2 instances, you should m ake sure
to review AWS's current pricing m odel to m ake sure you understand
how m uch you will be required to pay.
See detailed EC2 pricing based on storage class.

Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Ben ef it s an d Use Cases

Section 6
Addit ion al Ben ef it s
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
1. Elastic web-scale com puting
Topic
Topic 2:
2: Over view of
Overview of 2. Full root control of the server
Com
Compu t e Ser
pute vices
Services 3. Flexible options (m any instance types, AMIs to choose from )
4. Integrates with alm ost all other AWS services
Topic 3: Elastic Com pute 5. Extrem ely reliable
Cloud (EC2) Instances 6. High level of built-in security
7. Inexpensive
Topic 4: Connecting to an 8. Very easy to start (create an EC2 instance within m inutes)
EC2 Instance from
Windows Pr im ar y Use Cases
Topic 5: Connecting to an 1. Multi-tier web applications

EC2 Instance from 2. Web servers
Term inal (Not Windows) 3. Batch processing
4. Video processing
Topic 6: Com pute: Just 5. GPU intensive workloads
Back Next Topic
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) I n st an ces

Section 6
Topic 1:
1: Com
Com pu
pute
t e 101
Topic 101
Topic
Topic 2:
Com
Compu
2: Over view of
Overview
t e Ser
pute vices
Services
of
Topic 3: Elastic
Topic 3: Elast icCom
Compute
pu t e
Clou d (EC2)
I n st an ces

Topic 4: Connecting to an - Am azon Machine Im ages (AMI)
EC2 Instance from
- Inst ance Types
Windows
- Elast ic Block St ore (EBS)
- Securit y Groups
EC2 Instance from

Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Am azon M ach in e I m age (AM I )

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
A preconfigured package required to launch an EC2 instance that
includes an oper at in g syst em , software packages, and other required
Topic
Topic 2:
2: Over view of
Overview of
Com settings
Compu t e Ser
pute vices
Services
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
(EC2) Instances
I n st an ces AWS Def in it ion
Cloud
"An Am azon Machine Im age (AMI) pr ovides t h e in f or m at ion r equ ir ed

t o lau n ch an in st an ce, which is a virtual server in the cloud. You specify
EC2 Instance from
Windows
an AMI when you launch an instance, and you can launch as m an y
in st an ces f r om t h e AM I as you need. You can also launch instances
from as m any different AMIs as you need."
EC2 Instance from

AMI
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) AM I Opt ion s

Section 6
AMIs com e in three m ain categories:
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
1. Com m u n it y AM I s
- Free to use
Topic
Topic 2:
2: Over view of
Overview of
Com - Generally, with these AMIs, you just select the OS you want
Compu t e Ser
pute vices
Services
2. AWS M ar k et place AM I s
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
(EC2) Instances
I n st an ces - Pay to use
Cloud
- Generally com es packaged with additional, licensed software
3. M y AM I s
EC2 Instance from
Windows
- AMIs you create yourself
EC2 Instance from
I n st an ce Type Opt ion s
1. General purpose
2. Com pute optim ized
3. GPU optim ized
4. Mem ory optim ized
5. Storage optim ized
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Con cept u al Un der st an din g of AM I s

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
AM I Com pon en t s M y Lin u x EC2 I n st an ce
Topic
Topic 2:
2: Over view of
Overview of
1. Root volu m e t em plat e 1. Root volu m e t em plat e
Com
Compu t e Ser
pute vices
Services
- Operating system - Am azon Linux
- Application software - Apache web server
Topic 3: Elastic
Compute
pu t e 2. Lau n ch per m ission s 2. Lau n ch per m ission s
Clou d (EC2)
I n st an ces 3. Block device m appin g 3. Block device m appin g
- EBS (hard drive m apping) - EBS m apping to volum e
EC2 Instance from
Windows
EC2 Instance from

When you create an AMI, you are essentially
creating a t em plat e you can use to lau n ch
an ot h er EC2 in st an ce that has the exact sam e
com pon en t s as the original.
AMI of the "My Linux

EC2 Instance"
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Con cept u al Un der st an din g of AM I s

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
M y Lin u x EC2 I n st an ce
Topic
Topic 2:
2: Over view of
Overview of
1. Root volu m e t em plat e
Com
Compu t e Ser
pute vices
Services
- Operating system
- Application software
Topic 3: Elastic
Compute
pu t e 2. Lau n ch per m ission s
Clou d (EC2)
I n st an ces 3. Block device m appin g
- EBS (hard drive m apping) Cr eat e an AM I
EC2 Instance from
AMI of the "My Linux
Windows
EC2 Instance"
Quickly create addit ion al
EC2 Instance from in st an ces using the AMI.

" M y Lin u x EC2 " M y Lin u x EC2 " M y Lin u x EC2

I n st an ce" #2 I n st an ce" #3 I n st an ce" #4
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) I n st an ce Types

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
The CPU (cen t r al pr ocessin g u n it ) of your instance
Topic
Topic 2:
2: Over view of
Overview of
Com
Compu t e Ser
pute vices
Services
AWS Def in it ion
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces "When you launch an instance, the in st an ce t ype that you specify
determ ines the h ar dw ar e of t h e h ost com pu t er used for your
Topic 4: Connecting to an instance. Each instance type offers different com pu t e, m em or y, an d
EC2 Instance from st or age capabilit ies and are grouped in instance fam ilies based on
Windows these capabilities. Select an instance type based on the requirem ents of
the application or software that you plan to run on your instance."
EC2 Instance from

Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) I n st an ce Type Com pon en t s

Section 6
- Fam ily: A way of categorizing instance types based on what they are
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101 optim ized to do
Topic
Topic 2:
2: Over view of
Overview of - Type: Subcategory for each fam ily type
Com
Compu t e Ser
pute vices
Services
- vCPUs: The num ber of virtual CPUs the instance type uses
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces - M em or y (GiB): The am ount of RAM the instance type uses
Topic 4: Connecting to an - I n st an ce st or age (GB): The local instance storage volum e (your
EC2 Instance from hard drive)
Windows
- EBS-opt im ized available: Indicates if EBS-optim ized is an option for
Topic 5: Connecting to an the instance type
EC2 Instance from
Term inal (Not Windows) - Net w or k per f or m an ce: Network perform ance rating based on its
data transfer rate (bandwidth capability)
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Elast ic Block St or e (EBS)

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
EBS is a st or age volu m e for an EC2 instance. (Think of it as a h ar d
Topic
Topic 2:
2: Over view of
Overview of dr ive.)
Com
Compu t e Ser
pute vices
Services
Topic 3: Elastic
Compute
pu t e AWS Def in it ion
Clou d (EC2)
I n st an ces
"Am azon Elastic Block Store (Am azon EBS) provides block-level storage
Topic 4: Connecting to an volum es for use with EC2 instances. EBS volum es are h igh ly available
EC2 Instance from an d r eliable st or age volu m es t h at can be at t ach ed t o an y r u n n in g
Windows in st an ce t h at is in t h e sam e Availabilit y Zon e. EBS volum es that are
attached to an EC2 instance are exposed as st or age volu m es t h at
Topic 5: Connecting to an per sist in depen den t ly f r om t h e lif e of t h e in st an ce."
EC2 Instance from

St or age
Am azon
EBS
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Elast ic Block St or e (EBS)

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101 1. Ever y EC2 in st an ce M UST h ave a root volu m e, w h ich m ay or m ay n ot be EBS.
2. By def au lt , EBS root volu m es ar e set t o be delet ed w h en t h e in st an ce is t er m in at ed.
Topic
Topic 2:
2: Over view of
Overview of How ever, you can ch oose t o h ave EBS volu m es per sist af t er t er m in at ion .
Com
Compu t e Ser
pute vices
Services
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces
EBS
Topic 4: Connecting to an Am azon EC2 (Root Volu m e)
EC2 Instance from
Windows
3. Du r in g t h e cr eat ion of an EC2 in st an ce (or an yt im e af t er w ar ds), you can add addit ion al
EBS volu m es t o t h e in st an ce.
Topic 5: Connecting to an 4. An y addit ion al volu m e can be at t ach ed or det ach ed f r om t h e in st an ce at an y t im e, an d
EC2 Instance from is NOT delet ed (t h e def au lt ) w h en t h e in st an ce is t er m in at ed.

EBS
(Root Volu m e)
Am azon EC2
EBS
(Addit ion al Volu m es)
Back Next
Back t o M ain
Course Navigation
Elast ic Com pu t e Clou d (EC2) Secu r it y Gr ou ps

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
Security groups are very sim ilar to NACLs, in that they allow or den y
t r af f ic. However, security groups are found on the in st an ce level (as
Topic
Topic 2:
2: Over view of
Overview of
Com opposed to the subnet level). In addition, the way allow / den y r u les
Compu t e Ser
pute vices
Services
w or k ar e dif f er en t f r om NACLs.
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces
AWS Def in it ion
"A security group acts as a vir t u al f ir ew all t h at con t r ols t h e t r af f ic f or
EC2 Instance from
Windows
on e or m or e in st an ces. When you lau n ch an in st an ce, you associat e
on e or m or e secu r it y gr ou ps w it h t h e in st an ce. You add rules to each
security group that allow traffic to or from its associated instances. You
can m odify the rules for a security group at any tim e; the new rules are
EC2 Instance from
autom atically applied to all instances that are associated with the
security group. When we decide whether to allow traffic to reach an
instance, we evaluate all the rules from all the security groups that are
associated with the instance."
Fir ew all Secu r it y
Secu r it y Gr ou ps
Back Next
Back t o M ain
Course Navigation

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
VPC
Topic
Topic 2:
2: Over view of
Overview of
Com
Compu t e Ser
pute vices
Services
NACLs
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces
Public Subnet
EC2 Instance from
Windows
I n bou n d Ou t bou n d
EC2 Instance from Ru les Ru les
Wh en you cr eat e a n ew SG, all inbound t r af f ic is denied

an d all outbound t r af f ic is allowed by def au lt .
Su bn et 1 (Pu blic)
Back Next
Back t o M ain
Course Navigation

Section 6
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
VPC
Topic
Topic 2:
2: Over view of
Overview of
Com
Compu t e Ser
pute vices
Services
NACLs
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces
Public Subnet
EC2 Instance from
I n bou n d an d Ou t bou n d
Windows
Ru les Rules
1. All t r af f ic is den ied u n less t h er e is
an explicit ALLOW r u le f or it .
EC2 Instance from
2. Th er e ar e n o DENY r u les ? on ly
ALLOW r u les.
Su bn et 1 (Pu blic)
Back Next
Back t o M ain
NACLs and Security Groups
HTTP I n t er n et
FTP
Availabilit y Zon e Availabilit y Zon e
I n t er n et
Gat ew ay (I GW)
VPC
FTP - DENY
HTTP - ALLOW
NACL
HTTP - Allow ed HTTP - Not Allow ed
Secu r it y Gr ou p Secu r it y Gr ou p Secu r it y Gr ou p

Am azon EC2
Back Next
Course Navigation
Con n ect in g t o an EC2 I n st an ce f r om Win dow s

Section 6
Topic 1:
1: Com
Com pu
pute
t e 101
Topic 101
Topic
Topic 2:
Com
Compu
2: Over view of
Overview
t e Ser
pute vices
Services
of
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces

Topic 4: Connecting
Topic 4: Con n ect in gtot oan - Connect ing t o an EC2 Inst ance from a Windows Com put er
an
EC2EC2 I n st anfrom
Instance ce f r om
Win dow s
Windows
EC2 Instance from

Back Next
Back t o M ain
Course Navigation
Con n ect in g t o an EC2 I n st an ce f r om Win dow s
Elast ic Com pu t e Clou d (EC2) Con n ect in g t o an EC2 I n st an ce f r om Win dow s

Section 6
Win dow s
SSH
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
Topic I n t er n et
Topic 2:
2: Over view of
Overview of
Com
Compu t e Ser
pute vices
Services
Availabilit y Zon e
Topic 3: Elastic
Compute
pu t e
VPC
Clou d (EC2)
I n st an ces
I GW
Topic 4: Connecting
Topic 4: Con n ect in gtot oan
an
Instance ce f r om
Win dow s
Windows
Topic 5: Connecting to an Rou t e Table

EC2 Instance from
NACL

the FAQs and Wrap It Up! Pu blic Su bn et
Secu r it y Gr ou p
I n st an ce
Back Next
Back t o M ain
Course Navigation
Con n ect in g t o an EC2 I n st an ce f r om Ter m in al (Not Win dow s)

Section 6
Topic 1:
1: Com
Com pu
pute
t e 101
Topic 101
Topic
Topic 2:
Com
Compu
2: Over view of
Overview
t e Ser
pute vices
Services
of
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces

Topic 4: Connecting
Topic 4: Con n ect in gtot oan - Connect ing t o an EC2 Inst ance from Term inal (Not Windows)
an
Instance ce f r om
Win dow s
Windows
Topic
Topic 5:
5: Con n ect in g to
Connecting t oan
an
Instance ce f r om
Ter
Termm in al (Not
inal (Not Windows)
Win dow s)

Back Next
Back t o M ain
Course Navigation
Con n ect in g t o an EC2 I n st an ce f r om Ter m in al (Not Win dow s)
Elast ic Com pu t e Clou d (EC2) Con n ect in g t o an EC2 I n st an ce f r om Ter m in al

Section 6
M ac/ Lin u x
SSH
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101
Topic I n t er n et
Topic 2:
2: Over view of
Overview of
Com
Compu t e Ser
pute vices
Services
Availabilit y Zon e
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
(EC2) Instances
I n st an ces
VPC
Cloud
I GW
Topic 4: Connecting
Topic 4: Con n ect in gtot oan
an
Instance ce f r om
Win dow s
Windows
Topic
Topic 5:
Connecting t oan
an Rou t e Table
Instance ce f r om
Ter
Termm in al (Not
inal (Not Windows)
Win dow s)
NACL

the FAQs and Wrap It Up! Pu blic Su bn et
Secu r it y Gr ou p
I n st an ce
Back Next
Back t o M ain
Course Navigation

Section 6
Topic 1:
1: Com
Com pu
pute
t e 101
Topic 101
Topic
Topic 2:
Com
Compu
2: Over view of
Overview
t e Ser
pute vices
Services
of
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces

Topic 4: Connecting
Topic 4: Con n ect in gtot oan - Just t he FAQs
an
Instance ce f r om
Win dow s
- Wrap It Up!
Windows
Topic
Topic 5:
Connecting t oan
an
Instance ce f r om
Ter
Termm in al (Not
inal (Not Windows)
Win dow s)
Topic 6: Com
Topic 6: Ju st pute:
t h e FAQs
Just
an dFAQs
the Wr apand
I t Up!
Wrap It Up!
Back Next
Back t o M ain
Course Navigation

Ju st t h e FAQs
Section 6
- Com pute is m ade up of several com ponents, including an operating
system , CPU, hard drive, network card, security, and RAM.
Topic 1:
Topic 1: Com
Com pu
pute
t e 101
101 - AWS has several com pute offerings, including EC2.
- EC2 has several purchasing options, including:
Topic
Topic 2:
2: Over view of
Overview of
- On -dem an d: The default and m ost expensive option
Com
Compu t e Ser
pute vices
Services
- Reser ved in st an ces: Based on a tim e com m itm ent of one or
three years
Topic 3: Elastic
Compute
pu t e
- Spot in st an ces: Based on bid pricing
Clou d (EC2)
I n st an ces
- Spot instances are used for services when the com pute can
be shut down and restarted at any tim e without im pacting
Topic 4: Connecting
Topic 4: Con n ect in gtot oan services.
an
Instance ce f r om
- EC2 uses EBS to work as local storage for the instance.
Win dow s
Windows
- AMIs are an im age (prepackaged operating system , applications,
and configuration) for an instance.
Topic
Topic 5:
Connecting t oan
an - Security groups act as a firewall (security) for EC2 instances.
Instance ce f r om
Ter m in al (Not
(Not Windows)
Win dow s) - Connecting to a Linux instance using SSH is different from a
Term inal
Windows com puter using PuTTY versus connecting from Term inal
on a Mac/Linux system .
Topic 6: Com
t h e FAQs
Just
- Rem ote Desktop is used to connect to a Windows EC2 instance.
an dFAQs
the Wr apand
I t Up!
Wrap It Up!
Back Next
Back t o M ain
Course Navigation

Section 6
Topic 1:
1: Com
Com pu
pute
t e 101
Topic 101
Topic
Topic 2:
Com
Compu
2: Over view of
Overview
t e Ser
pute vices
Services
of
Topic 3: Elastic
Compute
pu t e
Clou d (EC2)
I n st an ces
Topic 4: Connecting
Topic 4: Con n ect in gtot oan Sect ion 6 t opics included:
an
Instance ce f r om
Win dow s
Windows
- Com put e 101
- Overview of Com put e Services
Topic
Topic 5:
Connecting t oan - Elast ic Com put e Cloud (EC2) Inst ances
an
Instance ce f r om - Connect ing t o an EC2 Inst ance from Windows
Ter
Termm in al (Not
inal (Not Windows)
Win dow s)
- Connect ing t o an EC2 Inst ance from Term inal (Not
Windows)
Topic 6: Com
t h e FAQs
Just - Just t he FAQs and Wrap It Up!
an dFAQs
the Wr apand
I t Up!
Wrap It Up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age 101
AWS St or age Ser vices

Section 7
Topic 1:
1: St
Storage
or age 101
Topic 101
Topic 2: Overview of AWS AWS St orage Services
Storage Services
Topic 3: S3 Storage
Classes
Topic 4: Storage Gateway - St orage Basics
Topic 5: Just the FAQs and

Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age 101
AWS St or age Ser vices Evolu t ion of St or age

Section 7
Topic 1:
Topic 1: St
Storage
or age 101
101
Topic 2: Overview of AWS

Storage Services
Topic 3: S3 Storage
Classes
Storage Array
Topic 4: Storage Gateway

Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age 101

Section 7
Topic 1:
Topic 1: St
Storage
or age 101
101

Storage Services
Topic 3: S3 Storage
Classes
Storage Array
Topic 5: Just the FAQs and Volum e

Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age 101

Section 7
Topic 1:
Topic 1: St
Storage
or age 101
101
Bulk Storage
Storage Services Think of bulk storage as a giant hard drive where you can
upload alm ost any type of data. The data is accessed using an
application service. There is no access to the underlying storage
Topic 3: S3 Storage
Classes
operating system . Exam ples of cloud bulk storage services
include Dropbox, Google Drive, and Am azon S3.

Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age 101

Section 7
Topic 1:
Topic 1: St
Storage
or age 101
101 Block Storage
Think of block storage as the storage used with a com puter. The
Topic 2: Overview of AWS com puter would see a volum e where the operating system and
Storage Services applications can be installed (e.g., the C:\ drive on a Windows
com puter).
Topic 3: S3 Storage
Am azon EBS is block st or age t h at at t ach es t o
Classes
an EC2 in st an ce.

Wrap It up!
Back Next Topic
Back t o M ain
AWS Storage
Course Navigation
Over view of AWS St or age Ser vices

Section 7
Topic 1:
1: St
Storage
or age 101
Topic 101
Topic
Topic 2:
AWS
2: Over view of
Overview
St orServices
of AWS
age Ser vices
AWS St orage Services
Storage
Topic 3: S3 Storage
Classes
Topic 4: Storage Gateway - Overview of Sim ple St orage Service

Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
AWS St or age Ser vices Wh at I s Sim ple St or age Ser vice (S3)?
Section 7
Topic 1:
Topic 1: St
Storage
or age 101
101
An online, bulk storage service you can access from alm ost any device.
Topic
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
age Ser vices AWS Def in it ion
Storage
"Am azon S3 has a sim ple web services interface that you can use to
Topic 3: S3 Storage
st or e an d r et r ieve an y am ou n t of dat a, at an y t im e, f r om an yw h er e
Classes
on t h e w eb. It gives any user access to the sam e highly scalable,
reliable, fast, inexpensive data storage infrastructure that Am azon uses
Topic 4: Storage Gateway to run its own global network of websites. The service aim s to m axim ize
benefits of scale and to pass those benefits on to users."
Wrap It up! NOTE: AWS has m ultiple storage services. We previously discussed
Am azon EBS storage in the com pute section. In this section, we will
discuss Am azon S3 and the associated storage classes.
Am azon Sim ple

Storage Service (S3)
Back Next
Back t o M ain
AWS Storage
Course Navigation
Com pon en t s an d St r u ct u r e
Section 7
Basics:
1. S3 = Sim ple Storage Service
Topic 1:
Topic 1: St
Storage
or age 101
101 2. It is AWS?s prim ary storage service. Bucket
3. You can store any type of file in S3.
Topic
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
age Ser vices Bu ck et s:
Storage
1. Root-level ?folders? you create in S3 are referred to as bu ck et s.
S3
Topic 3: S3 Storage
Folder
Classes 2. Any ?subfolder ? you create in a bucket is referred to as a f older .
Topic 4: Storage Gateway Object s: S3

Object
1. Files stored in a bucket are referred to as object s.

Wrap It up!
Region s:
1. When you create a bucket, you m ust select a specific region for it
to exist in. This m eans an y dat a you u pload t o t h e S3 bu ck et w ill be
ph ysically locat ed in a dat a cen t er in t h at r egion .
2. Best pr act ice is to select the region that is physically closest t o you (to
r edu ce t r an sf er lat en cy).
OR
3. If you are serving files to a cu st om er based in a certain area of the world,

cr eat e t h e bu ck et in a r egion closes t o you r cu st om er s (to reduce latency
for your custom ers).
Back Next
Back t o M ain
AWS Storage
Course Navigation

Section 7
AWS Clou d
Topic 1:
Topic 1: St
Storage
or age 101
101
Region (e.g., us-east-1)
Topic
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
Storage age Ser vices
S3
Topic 3: S3 Storage
Classes
Object
My Spreadsheet

Wrap It up! Bucket with
Objects
Folder :
MyProject
Object
My Presentation
Back Next
Back t o M ain
AWS Storage
Course Navigation
Cr eat in g an S3 Bu ck et :
Section 7 1. Choose a bucket nam e:
- Bu ck et n am es m u st f ollow a set of r u les:
- Bucket nam es m ust be unique across all of AWS.
Topic 1:
Topic 1: St
Storage
or age 101
101
- Bucket nam es m ust be 3 to 63 characters in length.
- Bucket nam es can only contain lowercase letters, num bers, and
Topic
Topic 2:
2: Over view of
Overview of AWS
hyphens.
AWS St orServices
- Bucket nam es m ust not be form atted as an IP address (e.g.,
192.168.5.4).
Topic 3: S3 Storage 2. Select a region.
Classes
3. Block/allow public access.
4. Set storage class.
NOTE: There are m ore ?advanced? rules that allow for som e varying
form ats, which can be found here:
h t t p:/ / docs.aw s.am azon .com / Am azon S3/ lat est / dev/ Bu ck et Rest r ict ion s.h t m l
Wrap It up!
Uploadin g (I m por t in g) an Object t o a Bu ck et :

1. Navigate into a bucket.
2. Select ?Upload.?
3. Select a file to upload.
4. Click ?Start Upload.?
Cr eat in g a Folder in a Bu ck et :
1. Navigate into a bucket.
2. Click on ?Create Folder.?
3. Give the folder a nam e.
4. Select ?Upload.?
5. Select a file to upload.
6. Click ?Start Upload.?
Back Next Topic
Back t o M ain
AWS Storage
Course Navigation
S3 St or age Classes

Section 7
Topic 1:
1: St
Storage
or age 101
Topic 101
Topic
Topic 2:
AWS
2: Over view of
Overview
St orServices
of AWS
age Ser vices
Storage
Topic 3: S3 St or age
Topic 3: S3 Storage
Classes
Classes
Topic 4: Storage Gateway - St orage Classes
- Durabilit y and Availabilit y
Topic 5: Just the FAQs and - Ot her S3 Feat ures
Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
AWS St or age Ser vices Wh at I s an S3 St or age Class?

Section 7
A storage class represents the "classification" assigned to each object in
S3.
Topic 1:
Topic 1: St
Storage
or age 101
101
Topic
Topic 2:
2: Over view of
Overview of AWS Available storage classes include:
AWS St orServices
Storage age Ser vices - Standard
- Standard-IA (Infrequent Access)
Topic 3: S3 Storage - One Zone-IA (Infrequent Access)
Classes
Classes - Intelligent-Tiering
- Glacier
- Glacier Deep Archive
Each storage class has varying attributes that dictate things like:
Wrap It up! - Storage cost
- Object availability
- Object durability
- Frequency of access (to the object)
Each object m ust be assigned a storage class ("standard" is the default

class).
You can change the storage class of an object at any tim e (for the most
part).
Back Next
Back t o M ain
AWS Storage
Course Navigation
AWS St or age Ser vices S3 St or age Classes

Section 7
Standard:
1. Designed for general, all-purpose storage
Topic 1:
Topic 1: St
Storage
or age 101
101 2. The default storage option
3. 99.999999999% object durability (?11 nines?)
Topic
Topic 2:
2: Over view of
Overview of AWS 4. 99.99% object availability
AWS St orServices
Storage age Ser vices 5. The m ost expensive storage class
Topic 3: S3 St or age Standard-IA (Infrequent Access):

Topic 3: S3 Storage
Classes 1. Designed for objects that you do not access frequently but m ust be im m ediately
Classes available when accessed (uses m ultiple Availability Zones)
2. 99.999999999% object durability
3. 99.90% object availability
Topic 4: Storage Gateway 4. Less expensive than the standard storage class
Topic 5: Just the FAQs and One Zone-IA (Infrequent Access):

Wrap It up! 1. Designed for objects that you do not access frequently but m ust be im m ediately
available when accessed (only uses one Availability Zone)
4. ~20% less expensive than the Standard-IA storage class
Intelligent-Tiering:
1. Designed to optim ize costs by autom atically m oving data to the m ost
cost-effective tier based on your usage
2. 99.999999999% object durability (?11 nines?)
4. Pricing depends on the assigned storage class
Back Next
Back t o M ain
AWS Storage
Course Navigation
AWS St or age Ser vices S3 St or age Classes

Section 7
Glacier/ Glacier Deep Archive:
1. Designed for long-term archival storage
Topic 1:
Topic 1: St
Storage
or age 101
101
2. May take several hours for objects stored in Glacier to be retrieved
Topic
Topic 2:
2: Over view of
Overview of AWS
4. The cheapest S3 storage class (very low cost)
AWS St orServices
5. Glacier Deep Archive has a longer default m inim um storage duration
Topic 3: S3 St or age and a longer default retrieval tim e than Glacier
Topic 3: S3 Storage
Classes
Classes Det ailed S3 pr icin g based on st or age class:
https://aws.am azon.com /s3/pricing/

Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
Object Du r abilit y an d Availabilit y
Section 7
Object Durability:
1. The percent (%) over a one-year tim e period that a file stored in S3 will
Topic 1:
Topic 1: St
Storage
or age 101
101 not be lost
Topic
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
Storage age Ser vices For object durability of 99.999999999% (11 nines), that m eans there is
a 0.000000001% chance of a file in S3 being lost in a year.
Topic 3: S3 Storage
Classes
Classes OR
If you have 10,000 files stored in S3 (at 11 nines durability), then you can
expect to lose one file in 10 m illion years.

Wrap It up!
Object Availability:
1. The percent (%) over a one-year tim e period that a file stored in S3 will
be accessible
For object availability of 99.99%, that m eans there is a 0.01% chance you
won't be able to access a file stored in S3 in a year.
OR
For every 10,000 hours, you can expect a total of one hour for which a
file m ay not be available to access.
Back Next
Back t o M ain
AWS Storage
Course Navigation
AWS St or age Ser vices Ot h er S3 Feat u r es an d Ben ef it s

Section 7
Feat u r es
Topic 1:
Topic 1: St
Storage
or age 101
101
Object Sharing:
Topic - The ability to m ake any object publicly available via a URL link
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
Object Lifecycles:
Topic 3: S3 St or age - Set rules to autom atically transfer objects between storage classes
Topic 3: S3 Storage
Classes
Classes
at defined tim e intervals
Object Versioning:
Topic 4: Storage Gateway - Autom atically keep m ultiple versions of an object (when enabled).
Topic 5: Just the FAQs and Additional Benefits

Wrap It up!
1. Durable, reliable, scalable
2. Security (offers three different kinds of encryption)
3. Integrates with almost all other AWSservices
4. Can run big data analytics on objects directly in S3
5. Easy to get data in and out of S3
6. Robust admin and access management options available
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age Gat ew ay

Section 7
Topic 1:
1: St
Storage
or age 101
Topic 101
Topic
Topic 2:
AWS
2: Over view of
Overview
St orServices
of AWS
age Ser vices
Storage
Topic 3: S3 Storage
Classes
Classes
Topic 4: St or age Sect ion 7.4 t opics include:

Gat ew ay
Topic 4: Storage Gateway - What Is St orage Gat eway?

Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age Gat ew ay
AWS St or age Ser vices Wh at I s St or age Gat ew ay?

Section 7
Topic 1:
Topic 1: St
Storage
or age 101
101
A way to integrate your existing application services with AWS cloud
Topic storage services without fully m igrating to the AWS cloud. Applications
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
Storage age Ser vices connect to the AWS cloud using a virtual server or hardware device
using com m on storage protocols. Data can be backed up to the AWS
Topic 3: S3 St or age cloud, or the data m ay be m oved to the AWS cloud and cached locally at
Topic 3: S3 Storage
Classes your data center. All data that is transferred using Storage Gateway is
Classes
optim ized for fast and efficient transfers.
Topic 4: St or age
Gat ew ay
Topic 4: Storage Gateway AWS Def in it ion
Topic 5: Just the FAQs and "AWS Storage Gateway is a hybrid storage service that enables your
Wrap It up! on-prem ises applications to seam lessly use AWS cloud storage. You can
use the service for backup and archiving, disaster recovery, cloud data
processing, storage tiering, and m igration. The service helps you reduce
and sim plify your data center and branch or rem ote office storage
infrastructure. Your applications connect to the service through a virtual
m achine or hardware gateway appliance using standard storage
protocols, such as NFS, SMB, and iSCSI. The gateway connects to AWS
storage services, such as Am azon S3, Am azon S3 Glacier, Am azon S3
Glacier Deep Archive, Am azon EBS, and AWS Backup, providing storage
for f iles, volu m es, snapshots, and vir t u al t apes in AWS. The service
includes a highly optim ized data transfer m echanism , with bandwidth
m anagem ent, autom ated network resilience, and efficient data transfer,
along with a local cache for low-latency on-prem ises access to your
m ost active data.
Back Next
Back t o M ain
AWS Storage
Course Navigation
St or age Gat ew ay
St or age Gat ew ay Deploym en t Types
Section 7
File Gat ew ay
Data is uploaded to S3 for use with object-based workloads. S3 file storage can
Topic 1:
Topic 1: St
Storage
or age 101
101 also be used for storage tiering to allow for data storage on the m ost cost-effective
storage class.
Topic
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
age Ser vices Volu m e Gat ew ay
Storage
Volum es are created in the AWS cloud. The applications in the custom er data
center can access these volum es. There are two types: stored volum es and cached
Topic 3: S3 Storage volum es. With st or ed volu m es, all data is stored at the custom er location (data
Classes
Classes center) and periodically backed up to AWS using snapshots. Cach ed volu m es store
the data in the AWS cloud, and the data is cached in the custom er 's data center for
Topic 4: St or age
fast access.
Gat ew ay
Tape Gat ew ay
Cost-effective, long-term , off-site data archiving. A virtual tape library (VTL)
interfaces with the custom er 's existing tape backup software.
Wrap It up!
Back Next Topic
Back t o M ain
AWS Storage
Course Navigation

Section 7
Topic 1:
1: St
Storage
or age 101
Topic 101
Topic
Topic 2:
AWS
2: Over view of
Overview
St orServices
of AWS
age Ser vices
Storage
Topic 3: S3 Storage
Classes
Classes
Topic 4: St or age Sect ion 7.5 t opics include:

Gat ew ay
Topic 4: Storage Gateway - Just t he FAQs
- Wrap It Up!
Topic 5: Ju st t h e FAQs
an d Wr ap I t Up!
Wrap It up!
Back Next
Back t o M ain
AWS Storage
Course Navigation

Ju st t h e FAQs
Section 7
- AWS Sim ple Storage Service (S3) is a bulk storage service.
- Buckets are the equivalent of top-level folders. Subfolders m ay also
Topic 1:
Topic 1: St
Storage
or age 101
101
be created. Objects m ay be uploaded into folders or directly into a
bucket.
Topic
Topic 2:
2: Over view of
Overview of AWS
AWS St orServices
age Ser vices
- S3 storage classes include:
Storage
- St an dar d
Topic 3: S3 St or age - St an dar d-I A
Topic 3: S3 Storage
Classes - I n t elligen t -Tier in g
Classes
- On e Zon e-I A
Topic 4: St or age - Glacier
Gat ew ay - Glacier Deep Ar ch ive
- Storage classes define durability and availability ratings, as well as
Topic 5: Ju st t h e FAQs m inim um storage duration (billing).
an d Wr ap I t Up! - View the following chart for m ore inform ation on S3 durability and
Wrap It up!
availability: https://aws.am azon.com /s3/storage-classes/
- Storage Gateway provides a hybrid environm ent for storing data
between the custom er site and AWS cloud. "Storage Gateway is a
highly optim ized data transfer m echanism , with bandwidth
m anagem ent, autom ated network resilience, and efficient data
transfer."
- There are three Storage Gateway types:
- File Gateway
- Volum e Gateway (includes stored volum es and cached volum es)
- Tape Gateway
Back Next
Back t o M ain
AWS Storage
Course Navigation

Section 7
Topic 1:
1: St
Storage
or age 101
Topic 101
Topic
Topic 2:
AWS
2: Over view of
Overview
St orServices
of AWS
age Ser vices
Storage
Topic 3: S3 Storage
Classes
Classes
Topic 4: St or age
Gat ew ay
Topic 4: Storage Gateway Sect ion 7 t opics included:
- St orage 101
Topic 5: Ju st t h e FAQs - Overview of AWS St orage Services
an d Wr ap I t Up!
Wrap It up! - S3 St orage Classes
- St orage Gat eway
- Just t he FAQs and Wrap It Up!
Back Next Topic
Back t o M ain
Elasticity and Scaling EC2
Course Navigation
Elast ic Load Balan cin g (ELB)
ELB an d Au t o Scalin g
Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB) AWS Cert ified Cloud Pract it ioner:
ELB and Aut o Scaling
Topic 2: Auto Scaling
Topic 3: Just the FAQs and Sect ion 8.1 t opics include:
Wrap It Up!
- What Is Elast ic Load Balancing?
- Benefit s of Elast ic Load Balancing
Back Next
Back t o M ain
Course Navigation
ELB an d Au t o Scalin g Wh at I s Elast ic Load Balan cin g (ELB)?

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB) An ELB evenly distributes traffic between EC2 instances that are
associated with it.
AWS Def in it ion
Wrap It Up! "A load balancer distributes incoming application traffic across multiple EC2
instances in multiple Availability Zones. This in cr eases t h e f au lt t oler an ce
of your applications. Elastic Load Balancing detects unhealthy instances
and routes traffic only to healthy instances."
Elastic Load
Balancing (ELB)
Back Next
Back t o M ain
Course Navigation
ELB an d Au t o Scalin g ELB Basics

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)

User 1 User 2 User 3 User 4 User 5 User 6

Wrap It Up! We all w an t t o access you r
w ebsit e!
Elastic Load
Balancing (ELB)
Web Server 1 Web Server 2
Back Next
Back t o M ain
Course Navigation

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)

w ebsit e!
Elastic Load
Balancing (ELB)
This prevents one

server from becom ing
overloaded and
potentially crashing.
Back Next
Back t o M ain
Course Navigation

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)

w ebsit e!
Elastic Load
Balancing (ELB)
User 4 User 6
Or if a server crashes,
the ELB will re-route all
users to the working
User 2 server(s).
User 1 User 3 User 5
Back Next
Back t o M ain
Course Navigation

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load Elastic Load Balancing is a foundational com ponent of h igh
Balan cin g (ELB)
Balancing (ELB) availabilit y an d f au lt t oler an ce.

Wrap It Up! We now know Elastic Load Balancing can evenly distribute traffic
between all active servers ? but what happens if dem and
(traffic) is so high that the active servers can't handle it?
Back Next Topic
Back t o M ain
Course Navigation
Au t o Scalin g
Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Topic 2: Au t o Scalin g
Wrap It Up!
- What Is Aut o Scaling?
- Benefit s of Aut o Scaling
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
Wh at I s Au t o Scalin g?
Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
(ELB) Auto Scaling autom ates the process of adding (scalin g u p) or rem oving
Balancing
(scalin g dow n ) EC2 instances based on t r af f ic dem an d for your
Topic 2: Au t o Scalin g application.
AWS Def in it ion

Wrap It Up!
"Auto Scaling helps you ensure that you have the correct num ber of
Am azon EC2 instances available to handle the load for your application. You
create collections of EC2 instances, called Auto Scaling groups. You can
specify the m inim um num ber of instances in each Auto Scaling group,
and Auto Scaling ensures that your group never goes below this size.
You can specify the m axim um num ber of instances in each Auto Scaling
group, and Auto Scaling ensures that your group never goes above this
size. If you specify the desired capacity, either when you create the
group or at any tim e thereafter, Auto Scaling ensures that your group
has this m any instances. If you specify scaling policies, then Auto
Scaling can launch or term inate instances as dem and on your
application increases or decreases."
Auto Scaling
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
ELB an d Au t o Scalin g Au t o Scalin g Basics

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)

w ebsit e!
Elastic Load
Balancing (ELB)
M ax capacit y M ax capacit y
of 3 u ser s of 3 u ser s
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
ELB an d Au t o Scalin g Au t o Scalin g Basics

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)

w ebsit e!
Elastic Load
Balancing (ELB)
This prevents one

M ax capacit y server from becom ing M ax capacit y
overloaded and
potentially crashing.
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
ELB an d Au t o Scalin g Au t o Scalin g Basics: HA an d Fau lt Toler an ce

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)
User s User s User s User s
Wrap It Up! We also w an t t o access you r
w ebsit e!
Elastic Load
Balancing (ELB)
User 4 User 6
Or if a server crashes,
the ELB will re-route all
users to the working
User 2 server(s).
User 1 User 3 User 5
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
ELB an d Au t o Scalin g Au t o Scalin g Basics: Wh y Do We Need I t ?

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)

w ebsit e!
User s
Elastic Load
Balancing (ELB)
User 4 User 6
User s
The EC2 instances will
overload, possibly
crash, and run
User 2 extrem ely slow.
User 1 User 3 User 5 User s User s
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
ELB an d Au t o Scalin g Au t o Scalin g Basics: Scalin g Up

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)

w ebsit e!
Auto Scaling will

autom atically add
additional servers
based on dem and.
Elastic Load
Balancing (ELB)
Au t o Scalin g
M ax capacit y M ax capacit y M ax capacit y
of 3 u ser s of 3 u ser s of 3 u ser s
Web Server 1 Web Server 2 Web Server 2
User 1 User 3 User 5 User 2 User 4User 6 User 7 User 8
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
ELB an d Au t o Scalin g Au t o Scalin g Basics: Scalin g Dow n

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Balancing (ELB)
User 5 User 2 User 7 User 8

Wrap It Up! Th an k you ? w e en joyed you r
w ebsit e!
Auto Scaling will

autom atically r em ove
additional servers
based on dem and.
Elastic Load
Balancing (ELB)
Au t o Scalin g
M ax capacit y M ax capacit y
User 1 User 3 User 4User 6
Back Next
Back t o M ain
Course Navigation
Au t o Scalin g
ELB an d Au t o Scalin g Au t o Scalin g Basics Su m m ar y

Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load Au t o Scalin g builds on the benefits of Elast ic Load Balan cin g
Balan cin g (ELB)
Balancing (ELB) while adding the benefits of scalabilit y and elast icit y.

Wrap It Up!
Back Next Topic
Back t o M ain
Course Navigation
Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Topic
Topic 3:
3: Ju st the
Just t h e FAQs
FAQsand
an d WrItap
Wrap Up!I t Up!
- Just t he FAQs
- Wrap It Up!
Back Next
Back t o M ain
Course Navigation
Ju st t h e FAQs
Section 8
- Elastic Load Balancing (ELB) evenly distributes traffic between EC2
instances that are associated with it.
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
(ELB)
- ELB can distribute traffic across m ultiple instances across m ultiple
Balancing
Availability Zones, which increases application fault tolerance.
Topic 2: Au t o Scalin g - ELB can detect unhealthy instances and redirect traffic to healthy
instances.
- Auto Scaling autom ates the process of scaling up (adding) or scaling
Topic
Topic 3:
3: Ju st the
Just t h e FAQs
FAQsand
down (rem oving) EC2 instances based on traffic dem ands.
an d WrItap
Wrap Up!I t Up!
- Auto Scaling adds scalability and elasticity to ELB.
Back Next
Back t o M ain
Course Navigation
Section 8
Topic
Topic 1:
1: Elast ic Load
Elastic Load
Balan cin g (ELB)
Elast icit y and Scaling EC2
Topic
Topic 3:
3: Ju st the
Just t h e FAQs
FAQsand
an d WrItap
Wrap Up!I t Up!

- Elast ic Load Balancing (ELB)
- Aut o Scaling
Back Next
Back t o M ain
Content Delivery and Dom ain Nam e System (DNS)
Course Navigation
Rou t e 53
Clou dFr on t an d DNS

Section 9
Topic 1: Route 53
Topic 1: Rou t e 53 AWS Cert ified Cloud Pract it ioner:
CloudFront and DNS
Topic 2: CloudFront
Wrap It Up!
- What Is Rout e 53?
- DNS Review
- Rout e 53 Feat ures and Benefit s
Back Next
Back t o M ain
Course Navigation
Rou t e 53

Wh at I s Rou t e 53?
Section 9
Route 53 is where you con f igu r e an d m an age w eb dom ain s f or
Topic 1: Route 53
Topic 1: Rou t e 53 w ebsit es or applicat ion s you h ost on AWS.
AWS Def in it ion

Topic 2: CloudFront
"Am azon Route 53 perform s three m ain functions:

Dom ain r egist r at ion : Am azon Route 53 lets you register dom ain
Wrap It Up!
nam es such as example.com.
Dom ain Nam e Syst em (DNS) ser vice: Am azon Route 53 translates
friendly dom ains nam es like www.example.com into IP addresses like
192.0.2.1. Am azon Route 53 responds to DNS queries using a global
network of authoritative DNS servers, which reduces latency.
Healt h ch eck in g: Am azon Route 53 sends autom ated requests over the
internet to your application to verify that it 's reachable, available, and
functional.
You can use any combination of these functions. For example, you can use
Amazon Route 53 as both your registrar and your DNSservice, or you can use
Amazon Route 53 as the DNSservice for a domain that you registered with
another domain registrar."
Am azon Route 53
Back Next
Back t o M ain
Course Navigation
Rou t e 53
Clou dFr on t an d DNS Rou t e 53 Basics

Section 9
Let 's take a look at a general exam ple to understand how dom ain s
an d DNS fit together to m ake websites accessible to visitors.
Topic 1: Route 53
Topic 1: Rou t e 53
Topic 2: CloudFront

Wrap It Up!
I w an t t o go t o
lin u xacadem y.com
Gen er al Visit or
t o a Websit e
What happens (internally) when a user enters

www.linuxacademy.com into a web browser?
Back Next
Back t o M ain
Course Navigation
Rou t e 53
Clou dFr on t an d DNS DNS Basics

Section 9

Topic 1: Route 53
Topic 1: Rou t e 53 www.linuxacademy.com into a web browser?
Topic 2: CloudFront
DNSServer:

I am a database of website
Wrap It Up! w w w.lin u xacadem y.com domains and their
I P Addr ess? corresponding IP addresses.
Web browsers send me

domain names, and I return
the correct IP address so they
can find the server on the
internet.
Websit e adm in s m u st r egist er t h eir w eb

dom ain an d I P addr ess w it h DNS
pr ovider s if t h ey w an t u ser s t o f in d
t h eir w ebsit e w it h ou t k n ow in g t h e I P
addr ess.
Linux Academ y Web

Server IP Address:
123.123.1.23
Back Next
Back t o M ain
Course Navigation
Rou t e 53
Clou dFr on t an d DNS DNS Basics

Section 9

Topic 1: Route 53
Topic 1: Rou t e 53 www.linuxacademy.com into a web browser?
Topic 2: CloudFront
DNSServer:

I am a database of website
Wrap It Up! w w w.lin u xacadem y.com domains and their
I P Addr ess? corresponding IP addresses.
Web browsers send me

domain names, and I return
the correct IP address so they
can find the server on the
internet.
Linux Academ y Web

Server IP Address:
123.123.1.23
Back Next
Back t o M ain
Course Navigation
Rou t e 53

DNS Basics
Section 9
Topic 1: Route 53 I n t er n et
Topic 1: Rou t e 53
DNS
Ser ver
Topic 2: CloudFront

Wrap It Up! Route 53
(DNS)
VPC
Elastic
Load
Balancing
(ELB)
NACL NACL
Pu blic Su bn et Pu blic Su bn et
Au t o Scalin g Gr ou p
Web Ser ver Web Ser ver
u s-east -1a u s-east -1b
Back Next
Back t o M ain
Course Navigation
Clou dFr on t

Section 9
Topic 1: Route 53
Topic
CloudFront and DNS
Topic 2:
2: Clou dFr on t
CloudFront
Wrap It Up!
- What Is CloudFront ?
- CloudFront Feat ures and Benefit s
Back Next
Back t o M ain
Course Navigation
Clou dFr on t
Clou dFr on t an d DNS Wh at I s Clou dFr on t ?

Section 9
Topic 1: Route 53
Topic 1: Rou t e 53
CloudFront is a content delivery network (CDN) that allows you to store
(cache) your content at "edge locations" located all around the world.
Topic This allows your custom ers to access your content m ore quickly (and
Topic 2:
2: Clou dFr on t
CloudFront
also provides additional security ? especially against DDoS attacks).

AWS Def in it ion
Wrap It Up!
"Am azon CloudFront is a global content delivery network (CDN) service

that securely delivers data, videos, applications, and APIs to your
viewers with low latency and high transfer speeds. CloudFront is
integrated with AWS ? both physical locations that are directly
connected to the AWS global infrastructure, as well as software that
works seam lessly with services including AWS Shield for DDoS
m itigation, Am azon S3, Elastic Load Balancing, or Am azon EC2 as
origins for your applications, and AWS Lam bda to run custom code
close to your viewers."
Am azon
CloudFront
Back Next
Back t o M ain
Course Navigation
Clou dFr on t
Clou dFr on t an d DNS Clou dFr on t Basics

Section 9
Topic 1: Route 53
Topic 1: Rou t e 53 Web Br ow ser (h t t p) I n t er n et
Cu st om er s
Topic
Topic 2:
2: Clou dFr on t
CloudFront

Wrap It Up!
Route 53
Edge Edge Edge

Location Location Location
Am azon
CloudFront
CloudFront "Origin"
ELB
S3
EC2
Back Next
Back t o M ain
Course Navigation

Section 9
Topic 1: Route 53
Topic
CloudFront and DNS
Topic 2:
2: Clou dFr on t
CloudFront
Topic
Topic 3:
3: Ju st the
Just t h e FAQs
FAQsand
an d WrItap
Wrap Up!I t Up!
- Just t he FAQs
- Wrap It Up!
Back Next
Back t o M ain
Course Navigation

Ju st t h e FAQs
Section 9
Rou t e 53
Topic 1: Route 53
Topic 1: Rou t e 53 1. Dom ain registration
2. Dom ain Nam e System (DNS) service
3. Traffic flow (send users to the best endpoint)
Topic
Topic 2:
2: Clou dFr on t
CloudFront 4. Health checking
5. DNS failover (autom atically change dom ain endpoint if system fails)
Topic
Topic 3:
3: Ju st the
Just t h e FAQs
FAQsand 6. Integrates with ELB, S3, and CloudFront as endpoints
an d WrItap
Wrap Up!I t Up!
Clou dFr on t
1. Cache content at edge locations for fast distribution to custom ers
2. Built-in distributed denial of service (DDoS) attack protection
3. Integrates with m any AWS services (S3, EC2, ELB, Route 53, Lam bda)
Back Next
Back t o M ain
Course Navigation

Section 9
Topic 1: Route 53
Topic
Elast icit y and Scaling EC2
Topic 2:
2: Clou dFr on t
CloudFront
Topic
Topic 3:
3: Ju st the
Just t h e FAQs
FAQsand
an d WrItap
Wrap Up!I t Up!

- Rout e 53
- CloudFront
Back Next
Back t o M ain
Monitoring, Logging, and Notifications
Course Navigation
Clou dWat ch M on it or in g, M et r ics, an d Logs
M on it or in g an d Loggin g
Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
(M on it or in g, Metrics,
M et r ics,and
Logs)
an d Logs)
Monit oring and Logging
Topic 2: CloudTrail

- What Is CloudWat ch?
- CloudWat ch Met rics and Alarm s
- Benefit s of CloudWat ch
Back Next
Back t o M ain
Course Navigation
Wh at I s Clou dWat ch ?
Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and
CloudWatch is a service that allows you to m on it or various elem ents of
Logs)
an d Logs) your AWS account.
Topic 2: CloudTrail AWS Def in it ion
"Am azon CloudWatch m onitors your Am azon Web Services (AWS)

resources and the applications you run on AWS in real tim e. You can use
CloudWatch to collect and track metrics, which are variables you can
m easure for your resources and applications. CloudWatch alarms send
notifications or automatically make changes to the resources you are
m onitoring based on rules that you define."
Am azon CloudWatch
Back Next
Back t o M ain
Course Navigation
Clou dWat ch M on it or in g Basics
Section 10
Topic 1:
1: Clou
CloudWatch
Use the
Topic dWat ch
(Monitoring,
M et r ics,and Dashboard to view
Logs)
an d Logs) m etrics that you
select.
Topic 2: CloudTrail
Am azon
CloudWatch
EC2 S3 Billin g
- CPU u t ilizat ion - Nu m ber of object s Wh at abou t m y
- St at u s ch eck s - Bu ck et size m on t h ly bill?
- Disk r ead/ w r it es
Back Next
Back t o M ain
Course Navigation
M on it or in g an d Loggin g Clou dWat ch M on it or in g Basics

Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and You can view the
Logs)
an d Logs) alarm s in CloudWatch
or have the alarm
trigger an action (like
Topic 2: CloudTrail
an SNS m essage).
Am azon
CloudWatch
EC2 S3 Billin g
Threshold set: Threshold set: Threshold set:
CPU u t ilizat ion > Cu r r en t m on t h ly
Nu m ber of
80% billin g > $500
object s in a
bu ck et > 100
Back Next
Back t o M ain
Course Navigation
M on it or in g an d Loggin g Clou dWat ch Ben ef it s

Section 10
1. Monitor m etrics for alm ost all your AWS resources (e.g., EC2
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch instances).
(Monitoring,
M et r ics,and 2. Create and m onitor custom m etrics.
Logs)
an d Logs)
3. Create custom dashboards for easy viewing of m etrics.
4. Monitor and store logs.
Topic 2: CloudTrail
5. Set alarm s and events (and trigger actions based on them ).
If CloudWatch is used to monitor AWSresources, what service

allows us to monitor what AWSIAM users are doing in the
company's AWSaccount?
Back Next Topic
Back t o M ain
Course Navigation
Clou dTr ail
Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and
Logs)
an d Logs)
Monit oring and Logging
Topic 2: CloudTrail
Topic 2: Clou dTr ail

- What Is CloudTrail?
- Benefit s of CloudTrail
Back Next
Back t o M ain
Course Navigation
Clou dTr ail
Wh at I s Clou dTr ail?
Section 10
CloudTrail allows you to m onitor all actions taken by IAM users (i.e.
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and services accessed and actions taken - such as logging who deleted an
Logs)
an d Logs) S3 object).
Topic 2: CloudTrail AWS Def in it ion

"AWS CloudTrail is a service that enables governance, compliance, operational
auditing, and risk auditing of your AWSaccount. With CloudTrail, you can log,
continuously m onitor, and retain account activity related to actions
across your AWS infrastructure. CloudTrail provides event history of your AWS
account activity, including actions taken through the AWSManagement Console, AWS
SDKs, command line tools, and other AWSservices. This event history sim plifies
security analysis, resource change tracking, and troubleshooting."
AWS
CloudTrail
Back Next
Back t o M ain
Course Navigation
Clou dTr ail
M on it or in g an d Loggin g Clou dTr ail Basics

Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch Logs are saved
(Monitoring,
M et r ics,and into an S3 bucket
Logs)
an d Logs)
in a gzip archive.
Topic 2: CloudTrail
AWS
CloudTrail
EC2 S3
M at t sh u t dow n t h e Jam es m odif ied
EC2 I n st an ce.
bu ck et per m ission s
an d gr an t ed pu blic
access.
Back Next Topic
Back t o M ain
Notification Services
Course Navigation
Sim ple Not if icat ion Ser vice
Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and
Logs)
an d Logs)
Not ificat ion Services
Topic 2:
Topic 2: Clou
CloudTrail
dTr ail

- What Is Sim ple Not ificat ion Service?
Section 11 - SNS Use Cases
- SNS Feat ures and Benefit s
Topic
Topic 1:
1: Sim ple
Not if icat ion Service
Notification Ser vice(SNS)

Wrap It Up!
Back Next
Back t o M ain
Course Navigation
Wh at I s Sim ple Not if icat ion Ser vice?
Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and
An AWS service that allows you to au t om at e t h e sen din g of em ail or
Logs)
an d Logs) t ext m essage n ot if icat ion s, based on even t s that happen in your AWS
account
Topic 2:
Topic 2: Clou
CloudTrail
dTr ail
AWS Def in it ion

"Sim ple Notification Service is a web service that coordinates and manages
Section 11 the delivery or sending of messages to subscribing endpoints or clients. In
Am azon SNS, there are two types of clients ? publishers and subscribers
? also referred to as producers and consum ers. Publishers
Topic
Topic 1:
1: Sim ple com m unicate asynchronously with subscribers by producing and
Notification Ser vice(SNS) sending a m essage to a topic, which is a logical access point and
com m unication channel. Subscribers (e.g., web servers, em ail addresses,
Am azon SQS queues, AWS Lam bda functions) consum e or receive the
Wrap It Up! m essage or notification over one of the supported protocols (e.g.,
Am azon SQS, HTTP/S, em ail, SMS, Lam bda) when they are subscribed to
the topic."
Am azon Sim ple

Notification
Service
Back Next
Back t o M ain
Course Navigation
M on it or in g an d Loggin g Clou dWat ch Not if icat ion Wor k f low

Section 10 (tim eline)
I am working just OH NO!

Topic 1:
Topic 1: Clou
CloudWatch
dWat ch fine! All fixed!
I crashed!
(Monitoring,
M et r ics,and
Logs)
an d Logs)
Topic 2:
Topic 2: Clou
CloudTrail
dTr ail
EC2 EC2 EC2

Section 11 No need for further
action
CloudWatch detects
the crash
Topic
Topic 1:
1: Sim ple
OH NO!
Notification Ser vice(SNS) Am azon
My server crashed!
CloudWatch Better fix it!

Wrap It Up!
CloudWatch
Am azon triggersa CWalarm Syst em
CloudWatch Alarm Adm in
M essage
The CWalarm
Text
triggersa text
message to the
system admin with
Am azon Sim ple
info about the
Notification
crashed instance
Service
Back Next
Back t o M ain
Course Navigation
M on it or in g an d Loggin g SNS Basics

Section 10
Topics
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch How you label and
(Monitoring,
M et r ics,and group different
Logs)
an d Logs)
endpoints that you
send m essages to
Topic 2:
Topic 2: Clou
CloudTrail
dTr ail

Section 11
Su bscr ipt ion s
SNS The endpoints that a
Topic
Topic 1:
1: Sim ple topic sends m essages to
(e.g., the em ail address
or phone num ber of our
Topic 2: Just the FAQs and system adm in)
Wrap It Up!
Pu blish er s
The
hum an/alarm /event
that gives SNS the
m essage that needs
to be sent
Back Next
Back t o M ain
Course Navigation
M on it or in g an d Loggin g SNS Ben ef it s

Section 10
1. Send autom ated or m anual notifications.

Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
2. Send notification to em ail, m obile (SMS), and HTTP endpoints.
(Monitoring,
M et r ics,and
Logs)
an d Logs) 3. Closely integrates with other AWS services (such as
CloudWatch) so that alarm s, events, and actions in your AWS can
Topic 2:
Topic 2: Clou
CloudTrail
dTr ail trigger notifications.

Section 11
Topic
Topic 1:
1: Sim ple

Wrap It Up!
Back Next Topic
Back t o M ain
Course Navigation
Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and
Logs)
an d Logs)
Topic 2: Clou
Topic CloudTrail
dTr ail
Not if icat ion Ser vices Sect ion 11.2 t opics include:
Section 11
- Just t he FAQs
- Wrap It Up!
Topic 1: Sim ple
Topic 1: Sim ple
Not if icat ion Ser vice
Notification Service (SNS)
(SNS)
Topic
Topic 2:
2: Ju st the
Just t h e FAQs
FAQsand
an d WrItap
Wrap Up!I t Up!
Back Next
Back t o M ain
Course Navigation
Ju st t h e FAQs
Section 10
Clou dWat ch
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch - CloudWatch allows you to m onitor various elem ents of an AWS
(Monitoring,
M et r ics,and
account.
Logs)
an d Logs)
- CloudWatch alarm s send notifications or autom atically m ake
changes to resources based on rules that you define.
Topic 2: Clou
Topic CloudTrail
dTr ail
- CloudWatch m onitors m etrics for alm ost all AWS resources.
- CloudWatch can create and m onitor custom m etrics.

Clou dTr ail
Section 11
- CloudTrail allows you to m onitor actions taken by IAM users (e.g.,

Topic 1: Sim ple services accessed and actions taken).
Topic 1: Sim ple
Not if icat ion Ser vice
Notification Service (SNS) - CloudTrail enables governance, com pliance, and auditing by
(SNS)
logging and m aintaining history of adm inistrative actions taken
against AWS services.
Topic
Topic 2:
2: Ju st the
Just t h e FAQs
FAQsand
an d WrItap
Wrap Up!I t Up!
- SNS allows you to autom ate the sending of em ail or text m essage
notifications based on events that happen in your AWS account.
- CloudWatch and other AWS services can trigger SNS notifications.
- SNS topics are how you label and group the endpoints that you
send m essages to.
- Subscriptions are the endpoints that a topic sends m essages to
(e.g., the em ail address or phone num ber for the system adm in).
- Publishers give SNS the m essage that needs to be sent.
Back Next
Back t o M ain
Course Navigation
Section 10
Topic 1:
Topic 1: Clou
CloudWatch
dWat ch
(Monitoring,
M et r ics,and
Logs)
an d Logs)
Topic 2: Clou
Topic CloudTrail
dTr ail

Section 11
Sect ion 10 and 11 t opics included:
- CloudWat ch
Topic 1: Sim ple
Topic 1: Sim ple
Not if icat ion Ser vice - CloudTrail
Notification Service (SNS) - Just t he FAQs and Wrap It Up!
(SNS)
Topic
Topic 2:
2: Ju st the
Just t h e FAQs
FAQsand
an d WrItap
Wrap Up!I t Up!
Back Next Topic
Back t o M ain
Database Services
Course Navigation
Relat ion al Dat abase Ser vice (RDS) an d Dyn am oDB
SQL an d NoSQL
Section 12
Topic 1:
1: Relat
Relational
Topic
Database
Dat
ion al
abase Service
Ser vice (RDS)
(RDS)
and Dynamam oDB
an d Dyn oDB
SQL and NoSQL
Topic 2: ElastiCache and
Redshift
- What Is RDS and Dynam oDB?
Wrap It Up! - To SQL or t o NoSQL
- RDS/ Dynam oDB Benefit s and Use Cases
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL AWS Pr im ar y Dat abase Opt ion s

Section 12
In the world of databases, there are two m ain categories:
Topic 1:
Topic 1: Relat
Relational
ion al
Database
1. Relational databases known as "SQL"
Dat abase Service
Ser vice (RDS)
(RDS)
and Dynam 2. Non-relational databases known as "NoSQL"
an d Dyn am oDB
oDB

Redshift
Am azon offers services for both types of databases:

Wrap It Up!
RDS for SQL databases
and
DynamoDB for NoSQL databases
Am azon RDS Am azon

Dynam oDB
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL Wh at I s RDS?

Section 12
Topic 1:
Topic 1: Relat
Relational
ion al
Database Relational Database Service (RDS) is a SQL dat abase ser vice that
Dat abase Service
Ser vice (RDS)
(RDS)
and
an Dynam
d Dyn am oDB
oDB provides a wide range of SQL database options to select from .
Topic 2: ElastiCache and SQL Opt ion s I n clu de:

Redshift 1. Am azon Aurora
2. MySQL
3. MariaDB
Wrap It Up! 4. PostgreSQL
5. Oracle (several Oracle options are available)
6. Microsoft SQL Server (several Microsoft options are available)
AWS Def in it ion
"Am azon Relational Database Service (Am azon RDS) is a web service
that m akes it easier to set up, operate, and scale a relational database
in the cloud. It provides cost-efficient, re-sizable capacity while autom ating
tim e-consum ing adm inistration tasks such as hardware provisioning,
database setup, patching, and backups. It frees you to focus on your
applications so you can give them the fast perform ance, high
availability, security and com patibility they need.
Am azon RDS
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL
Wh at I s Dyn am oDB?
Section 12
Topic 1:
Topic 1: Relat
Relational
ion al
Database Dynam oDB is a NoSQL dat abase ser vice. Unlike RDS, Dynam oDB does
Dat abase Service
Ser vice (RDS)
(RDS)
and
an Dynam
d Dyn am oDB
oDB
n ot provide other NoSQL software options.
Topic 2: ElastiCache and Dyn am oDB can r eplace (or is ver y sim ilar t o):
Redshift 1. MongoDB
2. Cassandra DB
3. Oracle NoSQL
Wrap It Up!
AWS Def in it ion
"Am azon Dynam oDB is a fast and flexible NoSQL database service for all
applications that need consistent, single-digit millisecond latency at any
scale. It is a fully m anaged cloud database and supports both docum ent
and key-value store m odels. Its flexible data m odel, reliable
perform ance, and autom atic scaling of throughput capacity m akes it a
great fit for m obile, web, gam ing, ad tech, IoT, and m any other
applications."
Am azon
Dynam oDB
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL To SQL or t o NoSQL?

Section 12
Wh at is t h e dif f er en ce?
Topic 1:
Topic 1: Relat
Relational
ion al
Database
Dat abase Service
Ser vice (RDS)
(RDS)
and
an Dynam
d Dyn am oDB
oDB

Redshift
Am azon RDS Am azon
Topic 3: Just the FAQs and Dynam oDB
Wrap It Up!
1. St or es r elat ed dat a in 1. St or es r elat ed dat a in

t ables (u sin g colu m n s JSON-lik e, n am e-valu e
an d r ow s) docu m en t s
2. Typically u sed f or ver y 2. Typically u sed f or

st r u ct u r ed dat a, su ch as n on -st r u ct u r ed dat a su ch
con t act list s as cat alogin g docu m en t s
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL Wh at Ar e t h e Dif f er en ces/ Ben ef it s?

Section 12
RDS:
Topic 1:
Topic 1: Relat
Relational
ion al 1. For when you need a SQL database option
Database
Dat abase Service
Ser vice (RDS)
(RDS) 2. Easy to set up, highly available, fault-tolerant, and scalable
and
an Dynam
d Dyn am oDB
oDB 3. Used when data is clearly defined
4. Com m on use cases include online stores and banking system s
Redshift
Topic 3: Just the FAQs and Dyn am oDB:

Wrap It Up! 1. For when you need a NoSQL database option
2. Fast, highly scalable, and fully m anaged
3. Used when data is fluid and can change
4. Com m on use cases include social networks, web analytics
Back Next Topic
Back t o M ain
Database Services
Course Navigation
Elast iCach e an d Redsh if t
SQL an d NoSQL
Section 12
Topic 1:
1: Relat
Relational
Topic
Database
Dat
ion al
abase Service
Ser vice (RDS)
(RDS)
and Dynamam oDB
an d Dyn oDB
SQL and NoSQL
Topic 2:
Topic 2: Elast
ElastiCache
iCach eand
an d
Redshift
Redsh if t
- What Is Elast iCache?
Wrap It Up! - What Is Redshift ?
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL
Wh at I s Elast iCach e?
Section 12
Topic 1:
Topic 1: Relat
Relational
ion al
Database ElastiCache is a data caching service used to help im prove
Dat abase Service
Ser vice (RDS)
(RDS)
and
an Dynam
d Dyn am oDB
oDB
speed/perform ance of web applications running on AWS.
Topic 2:
2: Elast
ElastiCache AWS Def in it ion
Topic iCach eand
an d
Redshift
Redsh if t
"Am azon ElastiCache is a web service that m akes it easy to deploy,
operate, and scale an in-m em ory data store or cache in the cloud. The
Wrap It Up!
service im proves the perform ance of web applications by allowing you
to retrieve inform ation from fast, m anaged, secure in-m em ory data
stores, instead of relying entirely on slower disk-based databases.
Am azon ElastiCache supports two open-source in-m em ory engines."
Redis: A fast, open source, in-m em ory data store and cache
Memcached: A widely adopted m em ory object caching system
Am azon
ElastiCache
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL Wh at I s Redsh if t ?

Section 12
Topic 1:
Topic 1: Relat
Relational
ion al
Database
Dat abase Service
Ser vice (RDS)
(RDS) Redshift is a dat a w ar eh ou se database service designed to handle
and
an Dynam
d Dyn am oDB
oDB pet abyt es of data for analysis.
Topic 2:
Topic 2: Elast
ElastiCache
iCach eand
an d AWS Def in it ion
Redshift
Redsh if t
"Am azon Redshift is a fast, fully managed data warehouse that m akes it
Topic 3: Just the FAQs and sim ple and cost-effective to analyze all your data using standard SQL
Wrap It Up! and your existing Business Intelligence (BI) tools. It allows you to run
complex analytic queries against petabytes of structured data, using
sophisticated query optim ization, colum nar storage on
high-perform ance local disks, and m assively parallel query execution."
Am azon
Redshift
Back Next Topic
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL
Section 12
Topic 1:
1: Relat
Relational
Topic
Database
Dat
ion al
abase Service
Ser vice (RDS)
(RDS)
and Dynamam oDB
an d Dyn oDB
SQL and NoSQL
Topic 2:
Topic 2: Elast
ElastiCache
iCach eand
an d
Redshift
Redsh if t
Topic 3:
Topic 3: Ju
Just
st the
t h eFAQs
FAQsand Sect ion 12.3 t opics include:
Wrap It Up!
an d Wr ap it Up! - Just t he FAQs
- Wrap It Up!
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL
Ju st t h e FAQs
Section 12 RDS
- RDS stands for Relational Database Service (RDS).
- RDS is a SQL database service.
Topic 1:
Topic 1: Relat
Relational
ion al - SQL options include Am azon Aurora, MySQL, MariaDB, PostgreSQL,
Database
Dat abase Service
Ser vice (RDS)
(RDS)
and Dynam Oracle, and Microsoft SQL Server
an d Dyn am oDB
oDB
- RDS stores related data in tables using colum ns and rows.
Topic 2:
2: Elast
ElastiCache - RDS is typically used for very structured data, such as a contact list.
Topic iCach eand
an d
Redshift
Redsh if t
Dyn am oDB
- Dynam oDB is a NoSQL database service.
Topic 3:
Topic 3: Ju
Just
st the
t h eFAQs
FAQsand - Dynam oDB can replace (or is sim ilar to) MongoDB, Cassandra DB,
Wrap It Up!
an d Wr ap it Up! and Oracle NoSQL.
- Supports docum ent and key-value store m odels
- Dynam oDB is a great fit for m obile, web, gam ing, ad tech, and IoT.
- Designed for applications that need consistent, single-digit
m illisecond latency at any scale.
- Dynam oDB stores related data in JSON-like, nam e-value docum ents
- Typically used for non-structured data, such as cataloging
docum ents
Redsh if t
- Redshift is a fully m anaged data warehouse database service
designed to analyze data using standard SQL and Business
Intelligence (BI) tools.
Elast iCach e
- Am azon ElastiCache is a web service that m akes it easy to deploy,
operate, and scale an in-m em ory data store or cache in the cloud.
Back Next
Back t o M ain
Database Services
Course Navigation
SQL an d NoSQL
Section 12
Topic 1:
1: Relat
Relational
Topic
Database
Dat
ion al
abase Service
Ser vice (RDS)
(RDS)
and Dynamam oDB
an d Dyn oDB
SQL and NoSQL
Topic 2:
Topic 2: Elast
ElastiCache
iCach eand
an d
Redshift
Redsh if t
Topic 3:
Topic 3: Ju
Just
st the
t h eFAQs
FAQsand
Wrap It Up!
an d Wr ap it Up! Sect ion 12 t opics included:
- Relat ional Dat abase Service (RDS) and Dynam oDB
- Elast iCache and Redshift
Back Next Topic
Back t o M ain
Serverless Com pute
Course Navigation
Lam bda
Ser ver less

Section 13
Topic 1: Lam bda

Topic 1: Lam bda AWS Cert ified Cloud Pract it ioner:
Serverless

- What Is Lam bda?
- Lam bda Benefit s and Use Cases
Back Next
Back t o M ain
Serverless Com pute
Course Navigation
Lam bda
Ser ver less

Wh at I s Lam bda?
Section 13
Topic 1: Lam bda
Topic 1: Lam bda Lam bda is serverless com puting. It is the next generation of cloud
com puting that will replace EC2 instances (for the m ost part).
AWS Def in it ion
"AWS Lam bda is a com pute service that lets you run code without
provisioning or managing servers. AWS Lam bda executes your code only when
needed and scales automatically, from a few requests per day to thousands
per second. You pay only for the compute time you consume ? there is no
charge when your code is not running. With AWS Lam bda, you can run code
for virtually any type of application or back-end service ? all with zero
adm inistration. AWS Lam bda runs your code on a high-availability compute
infrastructure and performs all of the administration of the compute resources,
including server and operating system maintenance, capacity provisioning and
automatic scaling, and code monitoring and logging. All you need to do is
supply your code in one of the languages that AWS Lam bda supports
(currently Node.js, Java, C#, Ruby, Go, .NET Core, and Python)."
AWS Lam bda
Back Next
Back t o M ain
Serverless Com pute
Course Navigation
Lam bda
Ser ver less

EC2/ Lam bda Com par ison
Section 13
Topic 1: Lam bda I n t er n et

Topic 1: Lam bda
Route 53
(DNS)
VPC
Elastic
Load
Balancing
(ELB)
NACL NACL
Pu blic Su bn et Pu blic Su bn et
Au t o Scalin g Gr ou p
Web Ser ver Web Ser ver
u s-east -1a u s-east -1b
Back Next
Back t o M ain
Serverless Com pute
Course Navigation
Lam bda
Ser ver less EC2/ Lam bda Com par ison

Section 13 Open
I n t er n et
Topic 1: Lam bda
Topic 1: Lam bda User s Upload Code
Web Br ow ser Developer
(h t t p pr ot ocol)
AWS Cloud
AWS I n f r ast r u ct u r e
" Con t ain er "
AWS Lam bda
Back Next
Back t o M ain
Serverless Com pute
Course Navigation
Lam bda
Ser ver less Lam bda Ben ef it s an d Use Cases

Section 13
Addit ion al Ben ef it s

Topic 1: Lam bda
Topic 1: Lam bda
1. No servers to m anage
2. Continuous scaling
3. Subsecond m etering
4. Integrates with alm ost all other AWS services
Pr im ar y Use Cases
1. Data processing
2. Real-tim e file processing
3. Real-tim e stream processing
4. Build serverless back-ends for web, m obile, IoT, and third-party API
requests
Back Next Topic
Back t o M ain
Security and Com pliance
Course Navigation
AWS Sh ar ed Respon sibilit y M odel
Secu r it y an d
Com plian ce Ser vices
Section 14
Topic 1:
1: AWS
AWS Sh Shared
Topic
Responsibility
Respon
ar ed
sibilit y Model
M odel
Securit y and Com pliance Services
Topic 2: Security and
Com pliance on AWS

Topic 3: AWS Key
Managem ent Service
- What Is t he Shared Responsibilit y Model?
- Exam ple of How Responsibilit y Is Shared
Wrap It Up!
Back Next
Back t o M ain
Course Navigation
Secu r it y an d Wh at I s t h e Sh ar ed Respon sibilit y M odel?
Section 14
Topic 1:
Topic 1: AWS
AWS Sh Shared
ar ed
Responsibility The Shared Responsibility Model defines what you (as an AWS account
Respon sibilit y Model
M odel
holder/user) and Am azon Web Services are responsible for when it
com es to security and com pliance.
Topic 2: Security and
Com pliance on AWS
AWS Def in it ion
Topic 3: AWS Key
Managem ent Service
"Security and compliance is a shared responsibility between AWSand the
customer. This shared m odel can help relieve custom ers' operational
burden as AWS operates, m anages, and controls the com ponents from
the host operating system and virtualization layer down to the physical
Wrap It Up!
security of the facilities in which the service operates. The custom er
assum es responsibility and m anagem ent of the guest operating system
(including updates and security patches), other associated application
software as well as the configuration of the AWS provided security
group firewall." Image provided by AWS.
Back Next
Back t o M ain
Course Navigation
Secu r it y an d Sh ar ed Respon sibilit y M odel ? EC2 Exam ple
Section 14
AWS is responsible for:
Topic 1:
Topic 1: AWS
AWS Sh Shared
ar ed 1. The setup and m aintenance of the physical hardware located at each
Responsibility
M odel AWS data center
Topic 2: Security and 2. The physical security of data centers (locks, keys, security guards, etc.)
Com pliance on AWS
3. The setup and m aintenance of the host virtualization software
Topic 3: AWS Key
Managem ent Service
You are responsible for:
Topic 4: Just the FAQs and 1. Network-level security (NACLs, security groups)
Wrap It Up!
2. Operating system patches and updates
3. IAM user access m anagem ent
4. Client- and server-side data encryption
Note: This is not an all-inclusive list ? just the most prominent examples.
I n addit ion t o t h e Sh ar ed Respon sibilit y M odel, DDoS pr ot ect ion is

bu ilt in / m it igat ed by m an y cor e AWS ser vices. Bu t w h at if you
w an t t o sim u lat e an at t ack t o t est you r applicat ion's secu r it y?
Back Next Topic
Back t o M ain
Course Navigation
Secu r it y an d Com plian ce on AWS
Secu r it y an d
Section 14
Topic 1:
1: AWS
AWS Sh Shared
Topic
Responsibility
Respon
ar ed
sibilit y Model
M odel
Topic
Topic 2:
2: Secu r it y and
Security an d
Com
Complian ce on AWS
pliance AWS

Topic 3: AWS Key
Managem ent Service
- What Is Penet rat ion Test ing?
- Penet rat ion Test ing Requirem ent s
- Services wit h DDoS Prot ect ion/ Mit igat ion
Wrap It Up!
Back Next
Back t o M ain
Course Navigation
Secu r it y an d DDoS an d Pen et r at ion Test in g
Section 14
AWScustomers are now welcome to carry out security assessments or penetration
Topic 1:
Topic 1: AWS
AWS Sh Shared
ar ed tests against some of their AWSinfrastructure without prior approval. This applies to
Responsibility
M odel eight services:
Topic
Topic 2:
2: Secu r it y and
Security an d - Am azon EC2 instances, NAT Gateways, and Elastic Load Balancers
Com
Complian ce on AWS
pliance AWS
- Am azon RDS
- Am azon CloudFront
Topic 3: AWS Key - Am azon Aurora
Managem ent Service - Am azon API Gateways
- AWS Lam bda and Lam bda Edge functions
Topic 4: Just the FAQs and - Am azon Lightsail resources
Wrap It Up! - Am azon Elastic Beanstalk environm ents
Prohibited Activities
These activities are not allowed at this tim e:
- DNS zone walking via Am azon Route 53 hosted zones

- Denial of service (DoS), distributed denial of service (DDoS),
sim ulated DoS, sim ulated DDoS
- Port flooding
- Protocol flooding
- Request flooding (login request flooding, API request flooding)
For more information on AWSVulnerability and Penetration Testing, see:

https://aws.amazon.com/security/penetration-testing/
Back Next
Back t o M ain
Course Navigation
Secu r it y an d Clou dFr on t an d Rou t e 53 DDoS M it igat ion
Section 14
Topic 1:
Topic 1: AWS
AWS Sh Shared
ar ed
Responsibility
M odel
AWS Cloud
Topic
Topic 2:
2: Secu r it y and
Security an d
Com
Complian ce on AWS
pliance AWS
Topic 3: AWS Key

Managem ent Service
users
Route 53
Wrap It Up!
m ydom ain.com CloudFront Instance
Back Next
Back t o M ain
Course Navigation
Secu r it y an d Ot h er AWS Secu r it y-Relat ed Ser vices
Section 14
- AWS Or gan izat ion s allows for centralized m anagem ent of AWS
Topic 1:
Topic 1: AWS
AWS Sh Shared
ar ed accounts and billing, but it can also define policies that restrict, at
Responsibility
M odel the account level, what services and actions m em ber accounts
m ay take.
Topic
Topic 2:
2: Secu r it y and
Security an d - Am azon Gu ar dDu t y is a threat detection service that provides a
Com
Complian ce on AWS
pliance AWS
way to continuously m onitor and protect AWS accounts and
workloads. GuardDuty uses threat intelligence feeds to detect
Topic 3: AWS Key threats to the environm ent. GuardDuty is designed to actively
Managem ent Service protect the environm ent from threats.
- Am azon I n spect or analyzes the VPC environm ent for potential
Topic 4: Just the FAQs and security issues. Inspector uses a defined tem plate and assesses
Wrap It Up! the environm ent. It provides the findings and recom m ends steps
to resolve any potential security issues found.
- AWS Sh ield provides m anaged DDoS protection. DDoS attacks
happen when m ultiple com prom ised system s attem pt to flood a
target with traffic. That target could be DNS, a web application, or
a network.
- AWS Web Applicat ion Fir ew all (WAF) m onitors web requests
forwarded by an ELB, CloudFront, or API Gateway. WAF can allow
or deny access to content based on specified conditions.
- AWS Ar t if act is a portal that provides access to AWS' com pliance
docum entation, such as paym ent card industry (PCI) and ISO
certifications, and System and Organization Control (SOC) reports.
Back Next Topic
Back t o M ain
Course Navigation
AWS Key M an agem en t Ser vice
Secu r it y an d
Section 14
Topic 1:
1: AWS
AWS Sh Shared
Topic
Responsibility
Respon
ar ed
sibilit y Model
M odel
Topic
Topic 2:
2: Secu r it y and
Security an d
Com
Complian ce on AWS
pliance AWS
Topic 3: AWS Key Sect ion 14.3 t opics include:

Topic 3: AWS Key
M an agem en t Ser vice
Managem ent Service
- AWS Key Managem ent Service

Wrap It Up!
Back Next
Back t o M ain
Course Navigation
AWS Key M an agem en t Ser vice
Secu r it y an d AWS Key M an agem en t Ser vice (KM S)
Section 14
AWS KMS enables encryption of data and provides centralized
Topic 1:
Topic 1: AWS
AWS Sh Shared
ar ed encryption key storage, m anagem ent, and auditing. The data m ay be
Responsibility
M odel encrypted for use with applications or to encrypt data stored on AWS.
Topic
Topic 2:
2: Secu r it y and
Security an d Key f act s about KMS:
Com
Complian ce on AWS
pliance AWS
- Keys m ay be generated in KMS, in an AWS CloudHSM hardware
cluster, or you m ay im port keys from your own encryption key
Topic 3: AWS Key
Topic 3: AWS Key service.
Managem ent Service - Data is subm itted directly to KMS for encryption/decryption using
the m aster keys.
Topic 4: Just the FAQs and - KMS integrates with other AWS services, including:
Wrap It Up! - S3 and Glacier
- Storage Gateway
- EBS and RDS
- Dynam oDB
- SNS
- CloudTrail
For a com prehensive list of services that integrate with KMS visit the
KMS Service Integration page.
Back Next Topic
Back t o M ain
Course Navigation
Secu r it y an d
Section 14
Topic 1:
1: AWS
AWS Sh Shared
Topic
Responsibility
Respon
ar ed
sibilit y Model
M odel
Topic
Topic 2:
2: Secu r it y and
Security an d
Com
Complian ce on AWS
pliance AWS
Topic 3: AWS Key

Topic 3: AWS Key
Managem ent Service Sect ion 14.4 t opics include:
- Just t he FAQs
Topic 4: Just the FAQs and - Wrap It Up!
an d Wr ap I t Up!
Wrap It Up!
Back Next
Back t o M ain
Course Navigation
Secu r it y an d Ju st t h e FAQs
Section 14 Sh ar ed Respon sibilit y M odel
- The Shared Responsibility Model outlines what AWS is responsible
Topic 1:
Topic 1: AWS
AWS Sh Shared
ar ed for (security of the cloud) and what the custom er is responsible for
Responsibility
M odel (security in the cloud).
Topic
Topic 2:
2: Secu r it y and
Security an d
DDos an d Pen et r at ion Test in g
Com
Complian ce on AWS
pliance AWS
- Distributed denial of service (DDoS) attacks attem pt to flood and
overwhelm a server/services in an attem pt to cripple or crash the
Topic 3: AWS Key
Topic 3: AWS Key service.
Managem ent Service
- Services such as CloudFront and Route 53 m ay be used together to
expand the attack surface and m inim ize the im pact of a DDoS
Topic 4: Just the FAQs and attack.
an d Wr ap I t Up!
Wrap It Up!
Ot h er AWS Secu r it y Ser vices
- AWS Artifact provides access to security and com pliance reports on
the AWS infrastructure.
- AWS Inspector proactively m onitors the infrastructure for
vulnerabilities and deviations from best practices.
- AWS Shield provides m anaged protection against DDoS attacks.
- AWS WAF (Web Application Firewall) works with services such as EC2
and ELB, m onitors web requests, and can filter traffic based on
specified conditions.
- Am azon GuardDut y is a t hreat det ect ion ser vice t hat provides a
w ay t o cont inuously m onit or and prot ect AWS account s.
- AWS Organizations can be used to restrict access to various services
from the account level.
- KMS is a service that m anages encryption key storage. KMS
integrates with several services, including S3 and Storage Gateway.
Back Next
Back t o M ain
Course Navigation
Secu r it y an d
Section 14
Topic 1:
1: AWS
AWS Sh Shared
Topic
Responsibility
Respon
ar ed
sibilit y Model
M odel
Topic
Topic 2:
2: Secu r it y and
Security an d
Com
Complian ce on AWS
pliance AWS
Topic 3: AWS Key

Topic 3: AWS Key
Managem ent Service

Topic 4: Just the FAQs and - AWS Shared Responsibilit y Model
an d Wr ap I t Up!
Wrap It Up!
- Securit y and Com pliance on AWS
- AWS Key Managem ent Service
Back Next Topic
Back t o M ain
Other AWS Services
Course Navigation
Addit ion al AWS Ser vices
Ot h er Not ew or t h y
AWS Ser vices
Section 15
Topic 1:
1: Addit
Additional
ion al AWS
Topic
Services
Ser vices
AWS
Ot her Not ewort hy AWS Services

- Addit ional AWS Services
Back Next
Back t o M ain
Other AWS Services
Course Navigation
Ot h er Not ew or t h y Dir ect Con n ect Exam ple
AWS Ser vices
Section 15
Topic 1:
Topic 1: Addit
Additional
ion al AWS
AWS
Services
Ser vices
Back Next
Back t o M ain
Other AWS Services
Course Navigation
Ot h er Not ew or t h y AWS Qu ick St ar t Exam ple: Lin u x Bast ion Host
AWS Ser vices
Section 15
https://aws.am azon.com /quickstart/architecture/linux-bastion/
Topic 1:
Topic 1: Addit
Additional
ion al AWS
AWS
Services
Ser vices
im age source: AWS
Back Next
Back t o M ain
Other AWS Services
Course Navigation
Ot h er Not ew or t h y AWS An alyt ics
AWS Ser vices
Section 15
Am azon At h en a
Topic 1:
Topic 1: Addit
Additional
ion al AWS
AWS
Services Athena is a serverless interactive query service used to analyze data in
Ser vices
Am azon S3 using standard SQL. Because Athena is serverless, there is
no infrastructure to m anage. Athena is billed only for queries that you
run.
Am azon EM R
Am azon EMR provides a m anaged Hadoop fram ework. Am azon EMR is

designed for processing broad sets of big data, including log analysis,
web indexing, m achine learning, and financial analysis.
AWS has other analytic services. Please visit the AWS An alyt ics page to
learn m ore.
Back Next
Back t o M ain
Other AWS Services
Course Navigation
Ot h er Not ew or t h y Ot h er AWS Ser vices
AWS Ser vices
Section 15
Am azon Ligh t sail
Topic 1:
Topic 1: Addit
Additional
ion al AWS
AWS
Services Lightsail is a private virtual server (instance) aim ed at developers to
Ser vices
provide everything needed to launch a service or project quickly. There
are a num ber of "quick start " prepackaged setups to support a variety
of operating system s and solutions.
Am azon Rek ogn it ion
Am azon Rekognition provides video/im age analysis. The service can

identify objects, people, text, etc., in the im age/video. Rekognition also
supports facial recognition and analysis.
Am azon Device Far m (M obile Lab)
Device Farm provides physical devices that can be used to test and
troubleshoot applications on m obile devices, as well as help sim ulate
real-world custom er conditions.
Am azon M ech an ical Tu r k
Am azon Mechanical Turk (MTurk) is a crowdsourcing m arketplace that

sim plifies outsourcing of processes and jobs to a distributed workforce.
Practically any task that can be perform ed rem otely (virtually) can be
tasked via Mechanical Turk. Crowdsourcing is great for m anual,
tim e-consum ing tasks that can be com pleted by distributed workers.
Back Next Topic
Back t o M ain
AWS Billing and Support Services
Course Navigation
AWS Or gan izat ion s
Billin g an d Su ppor t Ser vices

Section 16
Topic 1:
1: AWS
AWS
Topic
Organizations
Or gan izat ion s
AWS Pricing, Billing, and Support Services
Topic 2: AWS Pricing
Model Sect ion 16.1 t opics include:
- What are AWS Organizat ions?
Topic 3: AWS Billing and - AWS Organizat ion Benefit s
Cost Tools - AWS Consolidat ed Billing
Topic 4: AWS Support

Plans and Trusted Advisor
Topic 5: AWS Whitepapers

and Docum entation
Back Next
Back t o M ain
Course Navigation

Wh at Ar e AWS Or gan izat ion s?
Section 16
Topic 1:
Topic 1: AWS
AWS
Organizations Organizations allow you (or your com pany) to m anage billing and
Or gan izat ion s
access to m ultiple AWS accounts (in one user interface).
Model AWS Def in it ion
"AWS Organizations offers policy-based management for multiple AWS

Topic 3: AWS Billing and
Cost Tools
accounts. With Organizations, you can create groups of accounts and
then apply policies to those groups. Organizations enables you to centrally
manage policies across multiple accounts, without requiring custom scripts
and m anual processes. Using AWS Organizations, you can create Service
Control Policies (SCPs) that centrally control AWSservice use across multiple
AWSaccounts. You can also use Organizations to help automate the
creation of new accounts through APIs. Organizations helps sim plif y t h e
and Docum entation
billin g f or m u lt iple accou n t s by enabling you to set up a single
paym ent m ethod for all the accounts in your organization through
consolidated billing. AWS Organizations is available to all AWS
custom ers at no additional charge."
M ain Feat u r es/ Ben ef it s:

1. Centrally m anage access policies across m ultiple AWS accounts
2. Control access to AWS services
3. Autom ate AWS account creation and m anagem ent
4. Consolidate billing across m ultiple AWS accounts
Wh at is
con solidat ed billin g?
Back Next
Back t o M ain
Course Navigation

Wh at I s Con solidat ed Billin g?
Section 16
Topic 1:
Topic 1: AWS
AWS
Organizations Consolidated billing allows you to view, m anage, and pay bills for
Or gan izat ion s
m ultiple AWS accounts in one user interface.
Model AWS Def in it ion
"AWS Organizations enables you to set up a single payment method for all the
Cost Tools
AWSaccounts in your organization through consolidated billing. With
consolidated billing, you can see a com bined view of charges incurred
by all your accounts, as well as take advantage of pricing benefits from
aggregated usage, such as volum e discounts for Am azon EC2 and
Am azon S3."

M ain Feat u r es/ Ben ef it s:
and Docum entation
1. Central location to m anage billing across all your AWS accounts.
2. Gain volum e discounts for usage across all your AWS accounts.
Back Next Topic
Back t o M ain
Course Navigation
AWS Pr icin g M odel

Section 16
Topic 1:
1: AWS
AWS
Topic
Organizations
Or gan izat ion s
Topic
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model

Cost Tools
- What Is t he AWS Pricing Model?
- How Are You Charged for Using AWS?
- Usage Pricing Exam ples
Plans and Trusted Advisor - How t o Find Service Pricing Inform at ion

and Docum entation
Back Next
Back t o M ain
Course Navigation

Section 16
1. AWS works on a pay-as-you-go m ode, m eaning you only pay for what
you use when you are using it. There are no upfront cost, and charges
Topic 1:
Topic 1: AWS
AWS
Organizations im m ediately end when you stop using a particular service or feature
Or gan izat ion s
(for the m ost part).
Topic
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model 2. No long-term contracts or com plex licensing are required.
- Exceptions can be som ething like reserved EC2 instances (not
required)
Cost Tools
3. Volum e discounts are available. So the m ore you use a service, the
cheaper it can get (per unit used).
4. There are no term ination fees.

5. AWS offers a "Free Tier" option for those new to AWS. Free Tier offers
and Docum entation
lim ited AWS resources to you free of charge for 12 m onths (new
accounts only). For m ore inform ation on AWS Free Tier:
https://aws.am azon.com /free/
Back Next
Back t o M ain
Course Navigation

How Does AWS Pr icin g Wor k ?
Section 16
Simple Storage Service (S3): https://aws.am azon.com /s3/pricing/
Topic 1:
Topic 1: AWS
AWS 1. How much data you store:
Organizations
Or gan izat ion s - Applies to data at rest in S3
- Charged per GB stored
Topic
Topic 2:
2: AWS Pr icin g
Pricing - Price per GB varies based on region and storage class
M odel
Model
2. Request Pricing ? moving data in/out of S3:
- PUT, POST, LIST, GET request (API request)
- Lifecycle transition request
Cost Tools
- Data retrieval, data archive, data restore
Topic 4: AWS Support Elastic Cloud Compute (EC2): https://aws.am azon.com /ec2/pricing/
You are charged per second (based on an hourly rate) for the am ount of tim e the
instance is in a "running" state (applies to On-dem and and Spot). Reserved
instances are in one- or three-year term s regardless of use. Hourly rates depend
and Docum entation
on options you select, such as:
1. The Purchasing Option you choose:

- On-dem and, reserved, or spot
2. Instance Type ? the instance's processing capacity (think CPU):

- e.g., general purpose, com pute optim ized, GPU optim ized, etc.
3. AMI Type ? think operating system :

- Linux (price varies based on distro/software packages)
- Windows (price varies based on version/software packages)
4. Region the instance is provisioned in
NOTE: You are also charged for transferring data in/out of an instance.
Back Next Topic
Back t o M ain
Course Navigation
Billin g an d Cost Tools

Section 16
Topic 1:
1: AWS
AWS
Topic
Organizations
Or gan izat ion s
Topic
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model
Topic 3: Billin g an d Cost Sect ion 16.3 t opics include:

Tools
Cost Tools
- What Is TCO Calculat or?
- What Is Sim ple Calculat or?
What Is AWS Cost Explorer?
Plans and Trusted Advisor - AWS Cost Explorer Feat ures and Benefit s

and Docum entation
Back Next
Back t o M ain
Course Navigation

Wh at I s t h e TCO Calcu lat or ?
Section 16
Tot al Cost of Ow n er sh ip (TCO) Calcu lat or
Topic 1:
Topic 1: AWS
AWS
Organizations 1. The TCO calculator is a free tool provided by AWS that allows you to
Or gan izat ion s
estim ate the cost savings of using the AWS cloud vs. using an
Topic
on-prem ises data center.
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model
2. By showing you how m uch you can save by using AWS, the calculator
Topic 3: Billin g an d Cost helps you reduce the Total Cost of Ownership (TCO) by avoiding large
Tools
Cost Tools
capital expenditures on I.T. hardware and infrastructure.
3. The TCO Calculator can also provide directional guidance on cost

savings.
4. The TCO Calculator works by you inputting elem ents of your current
or theoretical on-prem ises data center and com paring those cost
and Docum entation
requirem ents to how m uch it would cost in AWS.
5. Elem ents can be added/m odified as you m ove through the process to
best estim ate the cost savings.
Back Next
Back t o M ain
Course Navigation

Wh at I s t h e AWS Sim ple Calcu lat or ?
Section 16
AWS Sim ple Calculator is used to estim ate the anticipated AWS bill
based on scenarios. Sim ple Calculator estim ates your m onthly bill and
Topic 1:
Topic 1: AWS
AWS
Organizations can provide a per-service breakdown of cost.
Or gan izat ion s
Topic
AWS Sim ple Calcu lat or is being replaced by AWS Pr icin g Calcu lat or ,
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model which estim ates cost for AWS services based on use case. The new
calculator can be found here: https://calculator.aws/#/.
Topic 3: Billin g an d Cost
Tools
Cost Tools
The Pricing Calculator m ay be used to estim ate cost using various
workloads including on-dem and and reserved instances. Pricing
Calculator also helps you identify the cost-effective use case for your
instance. Service costs m ay also be com pared on a per-region basis.

and Docum entation
Back Next
Back t o M ain
Course Navigation

Wh at I s Cost Explor er ?
Section 16
Cost Explor er
Topic 1:
Topic 1: AWS
AWS
Organizations 1. The Cost Explorer is a free tool that allows you to view charts of your
Or gan izat ion s
costs.
Topic
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model 2. View cost data for the past 13 m onths.
Topic 3: Billin g an d Cost 3. Forecast how m uch you are likely to spend over the next three
Tools
Cost Tools
m onths.
4. Use the explorer to discover patterns in how m uch you spend on

AWS resources over tim e, and identify (cost) problem areas.
5. Identify which services you use the m ost, as well as m etrics like
which Availability Zones have the m ost traffic or which linked AWS
and Docum entation
account is used the m ost.
Back Next
Back t o M ain
Course Navigation
AWS Su ppor t Plan s an d Tr u st ed Advisor

Section 16
Topic 1:
1: AWS
AWS
Topic
Organizations
Or gan izat ion s
Topic
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model

Tools
Cost Tools
- AWS Support Plans
- Support Plan Pricing and Com parison
Topic 4: AWS Su ppor t
Plan s an d Tr uSupport
st ed - What Is AWS Trust ed Advisor?
Topic 4: AWS
Advisor
Plans and Trusted Advisor - How t o Handle a Com prom ised AWS Account

and Docum entation
Back Next
Back t o M ain
Course Navigation

AWS Accou n t Su ppor t Plan s
Section 16 1. Basic Included with any AWS account
2. Developer Starts at $29 per m onth
3. Business Starts at $100 per m onth
Topic 1:
Topic 1: AWS
AWS
Organizations 4. Enterprise Starts at $15,000 per m onth
Or gan izat ion s
Topic
Although you get AWS support with each plan, the basic incentive to
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model purchase a m ore expensive plan is the speed/availability in which you
are given support. Enterprise plan holders will receive the highest
Topic 3: Billin g an d Cost priority for access to custom er service and technical support.
Tools
Cost Tools
For example:
- Basic plan holders have no access to a cloud support
Plan s an
Topic d Tr uSupport
4: AWS st ed
Advisor
representative.
- Developer plan holders get business hours access to a Cloud
Support Associate.
- Bu sin ess plan holders get 24/7 access to a Cloud Support Engineer.
and Docum entation
- En t er pr ise plan holders get 24/7 access to a Sr. Cloud Support
Engineer.
A full comparison list can be found here.
As part of all support plans, an AWS best practices and advisory service
is included called AWSTrusted Advisor.
Back Next
Back t o M ain
Course Navigation

Wh at I s AWS Tr u st ed Advisor ?
Section 16
Sim ple Def in it ion
Topic 1:
Topic 1: AWS
AWS
Organizations AWS Trusted Advisor is a service that "advises" and helps you optim ize
Or gan izat ion s
aspects of your AWS account.
Topic
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model
AWS Def in it ion
Tools
Cost Tools
"An online resource to help you reduce cost, increase perform ance, and
im prove security by optim izing your AWS environm ent, Trusted Advisor
provides real-tim e guidance to help you provision your resources
Plan s an
Topic d Tr uSupport
4: AWS st ed
Advisor
following AWS best practices."

Tr u st ed Advisor Cat egor ies:
and Docum entation
1. Cost Optim ization
2. Perform ance
3. Security
4. Fault Tolerance
AWS Trusted Advisor has dif f er en t levels of su ppor t based on the type
of AWS su ppor t accou n t you have (Basic, Developer, Business, or
Enterprise).
Back Next
Back t o M ain
Course Navigation

Tr u st ed Advisor Ser vices
Section 16
Available t o all AWS Su ppor t Plan Accou n t s:
Topic 1:
Topic 1: AWS
AWS
Organizations Seven checks that cover basic security and performance:
Or gan izat ion s
1. Security groups (port checks)
Topic
2. IAM use
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model 3. Is m ulti-factor authentication (MFA) enabled on the root IAM user
account?
Topic 3: Billin g an d Cost 4. EBS public snapshots
Tools
Cost Tools
5. RDS public snapshots
6. Service lim its
7. S3 Bucket Perm issions
Plan s an
Topic d Tr uSupport
4: AWS st ed
Advisor
Available t o On ly Bu sin ess an d En t er pr ise Su ppor t Plan Accou n t s:

and Docum entation
1. Access to full list of Trusted Advisor checks (full list)
2. Notifications to stay up to date with weekly resource deploym ents
3. Program m atic access to retrieve/refresh Trusted Advisor results via
API
With all this talk about support, w h at sh ou ld you do if your AWS

account becom es com pr om ised?
Back Next
Back t o M ain
Course Navigation

I s You r Accou n t Com pr om ised?
Section 16
If your account is com prom ised (or you think it is), follow these steps:
Topic 1:
Topic 1: AWS
AWS
Organizations 1. Change your AWS root account password.
Or gan izat ion s
2. Change all IAM users' passwords.
Topic
3. Delete or rotate all program m atic (API) access keys.
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model 4. Delete any resources in your account that you did not create.
5. Respond to any notifications you received from AWS through the
Topic 3: Billin g an d Cost AWS Support Center and/or contact AWS Support to open a support
Tools
Cost Tools
case.

Plan s an
Topic d Tr uSupport
4: AWS st ed
Advisor

and Docum entation
Back Next
Back t o M ain
Course Navigation
AWS Wh it epaper s an d Docu m en t at ion

Section 16
Topic 1:
1: AWS
AWS
Topic
Organizations
Or gan izat ion s
Topic
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model

Tools
Cost Tools
- What Are Whit epapers?
- How t o Find and Access Whit epapers
Plan s an d Tr uSupport
st ed - What Is AWS Service Docum ent at ion?
Topic 4: AWS
Advisor
Plans and Trusted Advisor - How t o Find and Access AWS Service Docum ent at ion
Topic 5: AWS
Wh it epaper
Topic 5: AWSsWhitepapers
an d
Docu m en t at
and Docum ion
entation
Back Next
Back t o M ain
Course Navigation
AWS Wh it epaper s an d Docu m en t at ion

Wh it epaper s an d Docu m en t at ion
Section 16
AWSWhitepapers (https://aws.amazon.com/whitepapers/)
AWS Whitepapers is a collection of technical docum ents that outline
Topic 1:
Topic 1: AWS
AWS
Organizations m any AWS relevant topics, including (but not lim ited to):
Or gan izat ion s
1. Architecture best practices
Topic
2. Security best practices
Topic 2:
2: AWS Pr icin g
Pricing
M odel
Model 3. Cloud com puting econom ics
4. Serverless architecture
Tools
Cost Tools
All whitepapers have been reviewed and approved by AWS,
independent analysts, or the AWS com m unity (custom ers or partners).
Plan s an
Topic d Tr uSupport
4: AWS st ed
Advisor
AWSService Documentation (https://aws.amazon.com/documentation)
Topic 5: AWS
AWS Service Docum entation is a collection of docum ents specific to
Wh it epaper
Topic 5: AWSsWhitepapers
an d
Docu m en t at ion
each AWS service. They provide detailed technical explanations and
and Docum entation
walkthroughs on how to use each service and feature.
If you need to know how to use a service and/or feature in AWS, this is
where you go to get the answer.
Back En d
Back t o M ain

376 CloudPractitioner HitchhikersguidetoAWS PDF 1583957225

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

376 CloudPractitioner HitchhikersguidetoAWS PDF 1583957225

Uploaded by

Copyright:

Available Formats

Hitchhiker 's Guide to AWS Cloud

Not if icat ion Ser vices

Dat abase Ser vices

Ser ver less

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits Sect ion 1.1 t opics include:

Topic 7: What Are Clouds

Topic 8: Wrap It Up:

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits

Topic 5: AWS Global

Topic 6: So That 's What

Topic 8: Wrap It Up:

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits

Topic 5: AWS Global

Topic 6: So That 's What

Topic 7: What Are Clouds

Topic 8: Wrap It Up:

Tr adit ion al Clien t ?Ser ver Ar ch it ect u r e

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits

Topic 5: AWS Global

Topic 6: So That 's What

Topic 7: What Are Clouds

Topic 8: Wrap It Up:

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits

Topic 5: AWS Global Com pu t e St or age

Topic 6: So That 's What

Topic 7: What Are Clouds

Topic 8: Wrap It Up: Net w or k Dat abase

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits

Topic 5: AWS Global

Topic 6: So That 's What

Topic 7: What Are Clouds

Topic 8: Wrap It Up:

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits Slow Provisioning

Topic 6: So That 's What

Topic 7: What Are Clouds Spr aw l/ Space Pow er Coolin g

Topic 8: Wrap It Up:

Topic 2: What Are Clouds

Topic 4: Prim ary Benefits

Topic 5: AWS Global

Topic 6: So That 's What

Topic 7: What Are Clouds

Topic 8: Wrap It Up:

Back Next Topic

Topic 4: Prim ary Benefits

Topic 7: What Are Clouds

Topic 8: Wrap It Up:

Topic 3: Introduction to I aaS:

Topic 5: AWS Global

Topic 7: What Are Clouds

Topic 1: I n t h e Pr ivat e Clou d Hybr id Clou d Pu blic Clou d

Wh at t ype of clou d is AWS?

Topic 4: Prim ary Benefits

Topic 5: AWS Global

Topic 6: So That 's What

Topic 8: Wrap It Up:

Back Next Topic

Topic 4: Prim ary Benefits