Professional Documents
Culture Documents
shared publicly
AWS System Manager - central Parameter Store - keep parameters for your app in one
place to manage fleets/applications place
GuardDuty - AI which monitor suspicious IAM account CodeDeploy - Deploy Code to EC2,ECS or Lambda
activity, and create alerts if detect something
CodePipeline - Define all deploy steps and automate them
AWS Artifact - it's tool where you can download report of using Code-family tools
compliance to prove that you are good with company policies
which you set f.ex. in AWS Config CodeStar - simplified CodePipeline
Event Bridge
packages/dependencies) internet requests only on subnet level
One NACL can be reused with other subnets
MFA Endpoints(PrivateLink) connect AWS
services to VPC's f.ex. with S3
SNS - Simple Notification Service Firewall for entire subnet
App Integration
SQS / Amazon MQ - Simple Queue Service checking ingress / egress requests
Network ACL's allow or deny requests on subnet level
SES - Simple Email Service Stateless: requests and responses are decoupled managed
CloudMap - helped for microservice architecture, you are able to
assign names to resources and other services are able to track Elastic IPs can be used for fixed IP addresses but with limit to
resources of each service which can be helpful for microservice quatas
architecture S3 Transfer Accelerator - it helps to boost file transfer via AWS
edge network Every VPC has CIDR block(range if IP's), each subnet is part of
this VPC range
Network Management
KMS - Key Management Service, CloudHSM - cryptographic Global Accelerator - service which boost network requests, it EC2 instances has auto assigned public and private IP's
keys to encrypt data Load balancing traffic between regions!
VPC peering(pair connection) or transit gateways(many
connection between VPC's) can connect to VPC to other VPC's
Secret Manager
Elastic Beanstalk - easy-use deployment package np web (transit tools between few VPCs)
Data Protection server on node.js with mysql
Amazon Macie - discover vulnerabilities on AWS accounts, it Simplifying Deployment Elastic Lightsail - less configuration, easy-use pre-configured
scans S3 bucket using AI to find sensitive, unsecured data and Your own network in cloud to group for grouping Instances
shows them package of host environment
Copilot - CLI for containerized app Can have public / private subnets
ACM - Amazon Certification Manager
AppRunner - easy deploy of containerized app Networking VPC
VPC have to have min. 2 subnets and 1 route table(which control
subnets visibility)
Every VPC has CIDR block(range if IP's), each subnet is part of
Designing for failure yields a self-healing infrastructure that this VPC range
acts with the maturity that is expected of recent workloads.
Preventing emergency calls guarantees a base level of Inspector - it's AI scanning of workloads(EC2, DB) to check if
satisfaction for the service-owning team. This also removes a there are any vulnerabilities and exposure them to give you
level of stress that can otherwise grow into accelerated attrition. oportunity to take an action Aplication Protection Route53 - DNS tool
Right sizing is the process of matching instance types and sizes Detective - it's tool which looking for suspicion traffic which is
to your workload performance and capacity requirements at the made by accounts or resources, you can analyse what bad actor CloudFront - this is CDN for static files to cache it near to user It's free
lowest possible cost. It’s also the process of looking at deployed did and how to handle it. on edge locations AWS Auto Scaling
instances and identifying opportunities to eliminate or downsize VPC Flow Logs It can help you quickly scale your resources (add/remove
without compromising capacity or other requirements, which Enabling Monitoring Services instances) according to your metrics from CloudWatch
results in lower costs.
NACL - ACL for subnets Monitoring CloudWatch - default service for monitoring, collecting logs and
Firewalls analyze Data, you can enable CloudWatch Agent for detailed
WAF - prevent SQL Injection, XSS etc logs, also you can set alarms if some metrics are too higher ELB - Elastic Load Balancer - this is service which helps you to
Pay as you Go
X-Ray- it's tool which add metadata across requests in network Scaling distribute traffic in network equally to your instances of service
Economics of scale and you are able spy single request how is handle and from which is managed by Auto Scaling Service, also it health-check
Flexible Concepts AWS Shield - prevent DDoS
where comes from your instances, it's good for HTTP trafic
AWS enables you to select the operating system,
programming language, web application platform, Security Groups - ACL for EC2
database, and other services you need. With AWS, you Network protection
receive a virtual environment that lets you load the NLB - Network Load Balancer - It is service which operate on
non HTTP logic where you can distribute traffic on subnet level
software and services your application requires. This depending on workload, it doesn't have some many configuration
Firewall Manager - central firewall managing place
eases the migration process for existing applications while as ELB cause is designed to application which compute data
preserving options for building new solutions.
Easy to use
Technology
Increase speed and agility – In a cloud computing environment, AWS is designed to allow application providers, ISVs, and
AWS Cloud Practicioner
new IT resources are only a click away, which means that you vendors to quickly and securely host your applications – whether
reduce the time to make those resources available to your an existing application or a new SaaS-based application. You
developers from weeks to just minutes. This results in a dramatic can use the AWS Management Console or well-documented
increase in agility for the organization, since the cost and time it web services APIs to access AWS’s application hosting platform.
takes to experiment and develop is significantly lower.
Lambdas -
serverless code
execution
business that has been honed for over a decade. embedded AWS services for 5G diffrent types SSD / HDD
High Availability Most providers of real-time communications Core features
Availablies Zones Elastic Volume - autoscaling of volume
align with service levels that provide availability from 99.9% to Outposts - this is a server near you company infrastructure
99.999%. Depending on the degree of high availability (HA) that Scalable and high-performance which can serve AWS services close us it is possible of your Snapshots - keeping versions of store
you want, you must take increasingly sophisticated measures network, AWS Infrastructure in your on-presmises ECR - Elastic Container Registry
Using AWS tools, Auto Scaling, and Elastic Load MultiAttachment - can be attached to many EC2
along the full lifecycle of the application.
Balancing, your application can scale up or down ECS - Elastic Container Service
based on demand. Backed by Amazon’s massive Containerisation
infrastructure, you have access to compute and EKS - Elastic Kubernetes Service
storage resources when you need them.
Fargate - serverless build on ECS/EKS
default choice
Benefits of Cloud Computing system where you are not worried about
EFS - Elastic File this is (network) file system cluster resources
Stop spending money running and maintaining data centers
System have pre-formatted and configured file system
– Focus on projects that differentiate your business, not the
infrastructure. Cloud computing lets you focus on your own we can create custom structure and work on any files
customers, rather than on the heavy lifting of racking, stacking,
and powering servers.
Cost-Effective Cloud Concepts Cost Explorer - Visualize and Explore Your AWS Costs and
Cost Managment multiaccess and auto scalable
You pay only for the compute power, storage, and other Usage
resources you use, with no long-term contracts or up-
Trade fixed expense for variable expense – Instead of having File system optimased to high-performance data access
to invest heavily in data centers and servers before you know
front commitments. For more information on comparing Reports
Data Storage FSx Lustre
how you’re going to use them, you can pay only when you the costs of other hosting alternatives with AWS, see the AWS billing
alternative to EFS
consume computing resources, and pay only for how much you AWS Economics Center. Budgets - create your budgets and alerts
Reduced redundancy - noncritical data, frequently access data
consum Tools
Billings S3 Glacier - there is 3 options for glacier data mainly it is al
about archive data
Benefit from massive economies of scale – By using cloud Standard - frequent access
computing, you can achieve a lower variable cost than you can
get on your own. Because usage from hundreds of thousands of Inteligent Tiering - Data with changing or unknown access
customers is aggregated in the cloud, providers such as AWS Reserved Instances
pattern
can achieve higher economies of scale, which translates into must be bought separately Storage Classes
lower pay as-you-go prices. pay in advance Standard IA - infrequent access data once at month
discounts
the best for long-term, commitment on period time RedShift- for analytics
Kinesis Firehose
Amazon Kinesis - Streaming Data Tool
Kinesis Data Streams
Data Lakes
Amazon QuickSight
BI Business Intelligence Service which help to create analysis,
Visualisation and Searching charts reports, dashboard for product department
Grafana
interactive visualisation of data
Cloud Search
works like search engine for end users on big data
OpenSearch
Searching and analysing data