Cloud Computing Reviewer

Server composed of:

● Compute: CPU
Pay for compute time (Pricing the cloud)
● Memory: RAM
● Storage: Data
Pay for data stored in cloud (Pricing the cloud)
● Database: Store data in structured way
● Network: Router, Switch, DNS server
IT Terminology
● Network- cables, routers and servers connected with each other.
● Router- A network device that forwards data packets between computer networks.
● Switch- Take a packet and send it to the correct server/client on your network.
What is Cloud Computing?
- On demand delivery of the compute power, database storage, application and other IT resources.
- Pay as you go pricing
- Provision exactly the right type and size of computing
- You can access as many resources- almost instantly
- Simple way to access- server, storage and databases.
Example of Cloud Services
● Gmail, Dropbox and Netflix
The Deployment Models of the Cloud
1. Private Cloud
- Used by single organization, not exposed to the public
2. Public Cloud
- Cloud resources owned and operated by a third party cloud service provider delivered over
the internet.
3. Hybrid Cloud
- Keep some servers on premise and extend some capabilities to the cloud.
The 5 characteristics of cloud computing
1. On demand self-service
- Users can provision resources and use them without human interaction from the service
provider.
2. Broad network access:
- Resources available over the network and can be accessed by diverse client platforms.
3. Multi-tenancy and resource planning
- Multiple customers can share the same infrastructure and application with the security and
privacy
- Multiple customers are serviced from the same physical resources.
4. Rapid elasticity and scalability
- Automatically and quickly acquire and dispose resources when needed
- Quickly and easily scale based on demand.
5. Measured service
- Usage is measured, users pay correctly for what they have used.
The 6 advantages of Cloud Computing:
1. Trade capital expense (CAPEX) for operational expense (OPEX)
2. Benefit from massive economies of scale
3. Stop guessing capacity
4. Increase speed and agility
5. Stop spending money running and maintaining data center
6. Go global in minute

Problems solved by the cloud

● Flexibility- changes resource types when needed
● Cost- Effectiveness- pay as you go, for what you use
● Scalability- accommodate larger loads by making hardware stronger
● Elasticity- ability to scale out and scale in
● High availability and fault-tolerance- build across data centers
● Agility- rapidly develop, test and launch software applications.

Types of Cloud Computing

1. Infrastructure as a service (IaaS)
- Provide a building blocks for cloud IT
- Provide networking, computers, data storage space
- Highest level of flexibility
- Easy parallel with traditional on-premises IT
Examples: Amazon EC2, GCP, Azure, Rackspace, Digital Ocean, Linode
2. Platform as a service (PaaS)
- Removes the need for your org to manage the underlying infrastructure.
- Focus on the deployment and management of your application.
Examples: Elastic beanstalk, Heroku, Google app engine, window azure (microsoft)
3. Software as a service (SaaS)
- Completed product that is run and managed by the service provider.
Examples: Rekognition for machine learning, google apps (gmail), dropbox, zoom

● Region- cluster of data centers

● Data transfer OUT of the cloud (may bayad). IN (free)

IAM Section
● IAM- Identity and Access Management
● Root Account: created by default, shouldn’t be used or shared.
● Users: people within your organization, and can be grouped
● Groups: only contain users, not other groups

● User or Groups: can be assigned to JSON documents called policies

● Policies: define the permissions of the users.
 MFA- Multi Factor Authentication
- The main benefit of MFA. If a password is stolen or hacked, the account is not compromised.
Example: Google Authenticator
How can users access AWS?
To access AWS, to access you have three options
- AWS Management Console: Protected by passwords + MFA
- AWS Command Line Interface or CLI: protected by access key
- AWS Software Developer Kit (SDK): for code: protected by access keys

What’s the AWS CLI?

- A tool that enables you to interact with AWS services using commands in your command line shell.
- You can develop scripts to manage your resources
- Alternative to using AWS Management Console

What’s the AWS SDK?

- Enables you to access and manage AWS services programmatically.

EC2 Sections
EC2- Elastic Compute Cloud = Infrastructure as a service.
- One of the most popular of AWS’ offerings
- Fundamental to understand how the cloud works

EC2 Instances Types

1. General Purpose
- Great for diversity of workloads such as web servers or code repositories
- Balance between: COMPUTE, MEMORY AND NETWORKING
- T2.micro is a general purpose EC2 instance
2. Compute Optimized
- Great for compute-intensive tasks that require high performance processors
3. Memory Optimized
- Fast performance for workloads that process large data sets in memory
4. Storage Optimized
- Great for storage-intensive tasks that require high, sequential read and write access to large
data sets on the local storage.

● Security Group
- Fundamental of network security in AWS.
- They control how the traffic is allowed into or out of our EC2 instances
- Contain allow rules
- Can reference by IP or by security group

● Classic Ports to know

- 22 = SSH (Secure Shell)
- 21= FTP (File transfer Protocol)
 - 22= SFTP ( Secure File Transfer Protocol)
- 80=HTTP
- 443=HTTPS
- 3389=RDP (Remote Desktop Protocol)

EC2 Instances Purchasing Options

● On-demand instances - short workload, predictable pricing, pay by second
- Pay for what you use
- No long term commitment
● Reserved- (1&3 years)
- You reserve a specific instance and attributes
- Reserved Instances- Long workloads
- Convertible Reserved Instances- Long workloads with flexible instances
● Saving Plans (1&3 years)- commitment to an amount of usage, long workload
- Get discount based on the long-term usage up to 72%
● Spot Instances- short workloads, cheap, can lose instances (parang bidding, kung sinong mas mataas
ang ibabayad sa kanya mapupunta)
- The most cost efficient instances in AWS
● Dedicated Host- book an entire physical server, control instance placement
- Allows you address compliance requirements and use your existing server- bound software licenses
● Dedicated Instances- no other customer will share your hardware
● Capacity Reservation- reserve capacity in a specific AZ for any duration.
- No time commitment (create/cancel anytime), no billing discounts

What’s an EBS Volume?

- EBS- Elastic Block Store
- -Storing data on virtual drives
- A network drive you can attach to your instances while they run
- Can only be mounted to one instances at a time
- A specific availability zone.

EBS
 EBS Snapshots
- A backup of your EBS volume at a point in time
EBS Snapshots Features
1. EBS Snapshot Archive
- Move a snapshot to an archive tier that is 75% cheaper
- Take within 24-72 hrs for restoring the archive
2. Recycle Bin for EBS Snapshots
- Setup rules to retain deleted snapshots so you can recover them after an accidental
deletion.

AMI- Amazon Machine Image

- Customization of an EC2 instance
- Built for a specific region

EFS – Elastic File System

-Managed NFS (network file system) that can be mounted on 100s of EC2
-EFS works with Linux EC2 instances in multi-AZ
-Highly available, scalable, expensive (3x gp2), pay per use, no capacity planning

EBS vs. EFS

-EBS is like having your own personal hard drive attached to your computer, while EFS is like a shared network
drive that multiple computers can access at the same time.

Amazon FSx
1. FSx for lustre
-derived from “Linux” and “cluster”
-A fully managed, high-performance, scalable file storage for High Performance Computing (HPC)
2. FSx for windows file server
-A fully managed, highly reliable, and scalable Windows native shared file system
-Can be accessed from AWS or your on-premise infrastructure
3. Fsx for NetApp ONTAP
 Elastic Load Balancing & Auto Scaling Groups Section
● Scalability & High Availability
- Scalability: means that an application / system can handle greeted loads by adapting

Two kinds of scalability

1. Vertical scalability (Upgrade)
- Means increasing the size of the instance
2. Horizontal Scalability (add more)
- Means increasing the number of instances / system for your application

● High Availability
- Usually goes hand in hand with horizontal scaling
- Means running your application / system in at least 2 availability zones
- The goal of H.A is to survive a data center loss (disaster)

What is Load balancing?

- Are servers that forward internet traffic to multiple servers (EC2 Instances) downstream.
- Nag didistribute
- Iisang domain nalang (pinagsasama sama)
- Chinecheck pag di na healty, ililipat na sa ibang instances

Why use an ELB or the Elastic Load Balancer?

- Managed the load balancer
- • AWS guarantees that it will be working
- • AWS takes care of upgrades, maintenance, high availability
- • AWS provides only a few configuration knobs
3 kinds of load balancers offered by AWS
- Application Load Balancer: (HTTP / HTTPS only) - Layer 7
- Network Load Balancer: (ultra-high performance, allows for TCP)- Layer 4
- Classic Load Balancer: (slowly retiring) Layer 4 & 7

What's an Auto Scaling Group?

- The goal is to scale out ( add EC2 instances to match an increase load)
- Scale in (remove EC2 instances) match a decreased load)
- Automatically register new instances to a load balancer
- Replace unhealthy instances.

Auto Scaling Groups- Scaling Strategies

● Manual Scaling: Update the size of an ASG manually
● Dynamic scaling: Respond to changing demand
- Simple / Step Scaling
- Target Tracking Scaling
● Predictive scaling: using machine learning to predict future traffic ahead to time

Amazon S3 Section
● Amazon S3 is one of the main building blocks of AWS
 ● Its advertised as “infinitely scaling” storage
● Many amazon website use amazon S3 as a backbone

● S3 use cases
- Backup and storage
- Disaster recovery
- Archive
- Hybrid Cloud storage
- Application Hosting
- Media Hosting
- Data lakes and big data analysis
● Amazon S3- Buckets
- Allows people to store objects (file) in “buckets” (directories)
- Buckets must have a globally unique name ( across all regions all accounts)
- Defined at the region level
Naming conventions
- No uppercase, no underscore, 3-63 characters long, not an IP, and must start with lowercase letters or
numbers.
Amazon S3 Objects
- Objects (file) have key
- Object values are the content of the body.
- Max object size is 5tb (5000GB)
S3 Durability and Availability
- Durability is 11-9’s

- Availability is 4-9’s

Amazon S3 Glacier Storage Classes

- Low cost object storage meant for archiving / backup
- Pricing price for storage + object retrieval cost
Amazon S3 Glacier Instant Retrieval
- Millisecond retrieval, great for data accessed once a quarter
- Minimum storage duration of 90 days
Amazon S3 Glacier Flexible Retrieval (formerly Amazon S3 Glacier)
- Expedited (1-5 minutes), standard (3 to 5 hours), Bulk ( 5-12 hours)- free
- Minimum and storage duration of 90 days
Amazon S3 Glacier Deep Archive- for long term storage
- Storage (12 hrs), Bulk (48hrs)
- Minimum storage duration of 180 days

S3 Intelligent- Tiering
- Small monthly monitoring and auto-tiering fee
 - Moves object automatically between access tiers based on usage
- There are no retrieval charges in S3 intelligent tiering

S3 Object Lock
• Adopt a WORM (Write Once Read
Many) model
• Block an object version deletion for a
specified amount of time

Glacier Vault Lock

• Adopt a WORM (Write Once Read
Many) model
• Lock the policy for future edits (can no
longer be changed)
• Helpful for compliance and data retention

AWS Snow Family

- Highly secured, portable devices to collect and process data at the edge, and migrate data into and
out of aws

Snowball Edge
-for data transfer (data in or out)
-alternative to moving data over the network (and paying network fees)

1.Snowball edge Storage optimized

- 80 tb of hdd capacity
- Block volume
2.Snowball edge compute optimized
- 42 tb of hdd capacity
- Block volume
- All: Can run EC2 Instances & AWS Lambda functions (using AWS IoT Greengrass)
- Long-term deployment options: 1 and 3 years discounted pricing

AWS Snowcone
- Small, portable computing, anywhere, rugged & secure, withstands harsh environments
-Use Snowcone where Snowball does not fit (space constrained environment)
- Must provide your own battery / cables
- Can be sent back to AWS offline, or connect it to internet and use AWS DataSync to send data

AWS Snowmobile
-High security: temperature controlled, GPS, 24/7 video surveillance
-Better than Snowball if you transfer more than 10 PB

AWS OpsHub
-a software you install on your computer / laptop) to manage your Snow Family Device
Hybrid Cloud for storage
-Part of your infrastructure is on-premises
-Part of your infrastructure is on the cloud

Types of Storage Gateway:

• File Gateway
• Volume Gateway
• Tape Gateway

direct uploads to S3 are suitable for

smaller datasets or when you have a
reliable internet connection, while the
Snow family is designed for
transferring large amounts of data
securely and efficiently, particularly
when network conditions or dataset
sizes make direct uploads impractical.

with no encryption, your data is unprotected. Server-side

encryption means Amazon S3 handles the encryption for
you, while with client-side encryption, you encrypt your
data on your own device before uploading it to S3, giving
you more control over the security of your data.
EC2

EC2 is like renting a virtual computer in the cloud. Instead of buying and maintaining physical servers, you can
use EC2 to launch virtual servers (called instances) on-demand. These instances can be configured with different
amounts of CPU, memory, and storage to suit your needs. It's a flexible and scalable way to run your
applications and services without worrying about hardware management.

-Just like you can rent a computer at a cafe, with EC2, you can rent virtual servers from Amazon Web Services
(AWS) to run your applications or host your website without needing to buy and maintain physical hardware.

EBS

EBS, or Elastic Block Store, is like having a digital hard drive that you can attach to your virtual server in the
cloud. It's used for storing data, just like you store files on a physical hard drive in your computer.
- For example, if you're running a website on AWS, you might use EBS to store the website's data and files, such
as images and databases, making it easy to access and manage them.

ASG

- Think of ASG as a smart group of computers (called instances) in the cloud that automatically adjusts its size based on
the workload.
Imagine you're running a website. Sometimes lots of people visit, so you need more servers to handle the traffic.
Other times, fewer people are around, so you don't need as many servers. ASG takes care of this automatically.
It adds more servers when needed and removes them when traffic decreases, ensuring your website stays
responsive and costs are optimized.
In simple terms, ASG helps your website or application scale up and down smoothly, like adding or removing
seats at a table depending on how many guests show up.

S3

Think of Amazon S3 (Simple Storage Service) like a giant digital warehouse where you can store all your files
and data. It's like a big, secure storage space in the cloud where you can keep anything from photos and videos
to documents and website files. You can easily access and manage your stuff stored in S3 from anywhere with
an internet connection. It's really handy for businesses, developers, and anyone who needs a reliable place to
store their digital stuff.