Show Menu
Cheatography

Core Cloud Concepts with AWS Cheat Sheet by

Building Blocks of the world's biggest cloud provider

Elastic Load Balancing

Load Balancing Service
Distri­butes applic­ation traffic across services
 
Ensures that one resource won't get overlo­aded, and that the traffic is spread out.

Services to run contai­nerized applic­ations

ECS - Elastic Container Service
EKS - Elastic Kubernetes Service

AWS Cloud Resource Provis­ioning

AWS Management Console
AWS Command Line Interface
Software Develo­pment Kits
Web GUI
Automate API requests, services, actions
To access and manage AWS services through an API
Software Develo­pment Kits
to access and manage AWS services.
The API is fitted to the platform or programing language that you use.
AWS Cloud Provision Services:
With AWS Elastic Beanstalk, you provide code and config­uration settings to: Adjust capacity Load balancing Automatic scaling Applic­ation health monitoring
With AWS CloudF­orm­ation, you can treat your infras­tru­cture as code build an enviro­nment by writing lines of code

AWS Organi­zation

A container for your AWS accounts.
comes with an organi­zation root user by default. It allows you to manage permis­sions of your organi­zat­ion's accounts.

AWS Pricing

Free TIer
Always - do not expire.
Free for the first 12 months
Trials - Short term offers
Always Free is available to everyone.
With more data to work with
For specific services
   
free for the first 12 months
Pricing Models:
Pay for what you use:
Pay less when you reserve:
Pay Less with Volume­-Based Discount When You Use More
No need for licensing agreem­ents.
Requires a commitment for future consum­ption.
Pricing per unit gets lower when you cross a threshold.
 
This option is for those who know that they need the resources in the future.
Cost Explorer:
To visualize cost and usage.
Cost Explorer has a web-based dashboard.
Filters and groups help you to drill down to find insights.
The Pricing Calculator lets you create a cost estimate for the use of AWS resources.
The Billing Dashboard lets you pay your AWS bill, monitor usage, and analyze costs.

Innovate with AWS Cloud

Machine Learning - ML
Artificial Intell­igence - AI
Serverless Applic­ations
SageMaker reduces the develo­pment time and complexity of ML.
Service to build voice and text chatbots - Amazon Lex Service that can convert text to speech - Amazon Transcribe Service that can discover text patterns - Amazon Comprehend Service that can detect potential fraud activities online - Amazon Fraud Detection
In AWS, you can run the serverless applic­ation with a service called AWS Lambda.

Cloud Migration and Innovation

Cloud Adoption Framework
Business
People
Governance
Platform
Security
Operations
Ensures that business and IT objectives meets the invest­ment.
Skills, requir­ements, and roles in your organi­zation
minimizing the risk. And simult­ane­ously, to maximize the business value.
To deploy new cloud solutions.
Ensures that the organi­zat­ion's security objectives are met.
Ensuring that the business operations meet the expect­ations.
Cloud Migration Strategies
Rehosting
Replat­forming
Refact­oring
Repurc­hasing
Retaining
Retiring
=lift-­and­-shift.
=lift, tinker and shift.
Changing applic­ation founda­tions
SAAS from tradit­ional model
Apps requiring refact­oring before migration
Removing unnece­ssary apps
 

Severless and Severs

Containers
AWS Lambda
AWS EC2
Let you package code in a single object.
Deploy Code for building and maintain apps
Provides virtual server instances (VSI).
Container orches­tration services help you deploy, manage, and scale your contai­nerized applic­ations.
To run: 0. Deploy code 1. Make Code Ready to Trigger on an Event
To run: 0. Deploy VSI 1. Deploy code 2. Operate Servers

AWS networking

AWS Virtual Private Cloud
VPC is a service that lets you isolate your AWS resources in an isolated network.
Internet Gateway
How traffic can be allowed through a VPN
Virtual Private Gateway
Used to access private resources in the VPC
AWS Direct Connect
Dedicated private connection between a data center and VPC
Subnet
A section of VPC
Access Control Lists (ACL)
A firewall that controls the traffic, both inbound and outbound.
 
Stateless Packet filtering
Security Group
Firewall that controls inbound and outbound traffic
 
Specific to an AWS EC2 instance
Config­uration
Adding custom rules for the traffic.
AWS Route 53
Lets someone access your website from their browser
 
Like a phone book

AWS EBS and AWS S3

AWS EBS
AWS S3
Block Store
Object Store
Block =< 17.6 terabytes
Object <= 5 terabytes
Faster perfor­mance
Data does not suffer loss, degrad­ation, or a corruption for a very long time
Data can be modified
Data can not be modified, unless re-upl­oaded

Database Migration Service - AWS DMS

Helps move data between a source database and a target database.

Monitoring and Analysis

AWS CloudWatch
AWS CloudTrail
Trusted Advisor
To monitor resources
Logs actions inside your AWS enviro­nment.
Checks account, evaluates, and recomm­ends.
Trust finder evaluates best practice in:
- Cost optimi­zation
- Perfor­mance
- Security
- Fault tolerance
- Service limits

Identity and access management

AWS Account Root User
IAM Users
IAM Policies
IAM Groups
IAM Roles
Created when first start an AWS account
entity (person or an applic­ation) that interacts with AWS resources and services.
deny or allow permis­sions to AWS resources and services.
collection of IAM users
Temporary access to services or resources.
Full access to all of the accounts resources and AWS services.
aim to map AWS groups to specific roles within your organi­zation, and apply
the policy to the group instead

Multi-­factor Authen­tic­ation: IMay come in the form of a security code that is sent to your mobile device or an email.

AWS Support Plans

Basic
 
Developer
Business
Enterprise
 

AWS Cloud EC2

A virtual server in the AWS Cloud
To work with EC2:
1. Launch with template config:
The config includes the operating system, applic­ation server, or applic­ations.
2. Connect
Programs and applic­ations
3. Use
Execute commands to install software, add storage, copy, and organize files, and much more.
Instance Types:
General Purpose Instance:
Balances computing, memory, and networking resources
Compute Optimized:
For high-p­erf­ormance and comput­e-i­nte­nsive needs
Memory Optimized Instances:
When huge amounts of data need to be preloaded before running the app
Accele­rated Computing:
Boost the data proces­sing. For graphics applic­ations and streaming.
Storage Optimized:
when you have large datasets on local storage. Eg Wareho­uses, online transa­ction systems, large file systems

AWS Instance Stores

Instance Stores
A storage volume that acts as a physical hard drive
AWS EBS - Elastic Block Store
Provides storage volumes.
 
Used for data that needs to persist
 
Backup the data with AWS EBS snapshots.
Cloud Storage - AWS S3
Also called AWS Simple Storage Service.
 
Allows uploading any type of file.
Object­-level storage contains:
Data - any type of file
 
Metadata - inform­ation about what the data is
 
Key - unique identifier
AWS S3 Storage Classes:
S3 Standard
Ideal for data accessed often
S3 Standa­rd-­Inf­requent Access
Lower storage price but higher data retrieval price.
S3 One Zone-IA (S3 One Zone-I­nfr­equent Access)
It stores data in one Availa­bility Zone, cheaper
S3 Intell­ige­nt-­Tiering
Requires automation and monitoring
S3 Glacier
For archiving data, retrieve objects within a few minutes.
S3 Glacier Deep Archive
Has the lowest cost, can retrieve objects within 12 hours.

AWS Well-A­rch­itected Framework

Operat­ional Excellence Pillar
The operat­ional excellence pillar is a capacity to manage and monitor systems.

It improves supporting systems processes and proced­ures.

It includes:
- Making small and reversible changes
- Prediction of system disrup­tions
- Performing code tasks
- Making docume­ntation notes

Security Pillar
The security pillar consists of protecting systems and data.

Well-A­rch­itected Framework applies security at all levels.

It protects both stored and in-transit data.

When possible, best security practices are automa­tically applied.

Reliab­ility Pillar
The reliab­ility pillar is the ability to minimize disrup­tions of the system.

It obtains computing resources as needed.

It entails boosting system availa­bility.

It automa­tically recovers the system from disrup­tions.

Perfor­mance Efficiency Pillar
The perfor­mance efficiency pillar is the capacity to accurately use computing resources.

It satisfies the efficiency on demand.

Cost Optimi­zation Pillar
Cost optimi­zation pillar helps you run your cloud services at the lowest price points.

Cost optimi­zation performs operations such as:

Analysis of your costs
Operating managed services
Makes sure you only pay for what you use
                   
 

Comments

No comments yet. Add yours below!

Add a Comment

Your Comment

Please enter your name.

    Please enter your email address

      Please enter your Comment.

          Related Cheat Sheets

          Cloud Computing Cheat Sheet
          awsReference Cheat Sheet
          AWS Services Cheat Sheet

          More Cheat Sheets by datamansam