Sr.No.

Topics Durati Sessio Sessio

on n n No.(4
(Mins) No(2 Hours)
Hours)
1 Understanding of 30 1 1
Physical and Virtual
Servers
2 Overview of 30 1 1
Public/Private
cloud computing
3 Overview of 45 1 1
AWS/Azure/GCP
4 Benefits of Cloud 30 2 1
Computing
5 Pricing and Usage 30 2 1
Policy
6 Overview of IAM 45 2 1
Service
7 Overview of EC2 45 3 1
Service
8 Overview of RDS 30 3 2
Service
9 Overview of Cloud 45 3 2
Storage
10 Overview of Public 30 4 2
and Private IPS
11 Overview of Elastic 45 4 2
IP, CloudFront and
ELB
12 Overview of 4 2
EKS,ACR 40

www.staragile.com
 13 Practical 60 5 2

www.staragile.com
AWS Fundamentals
1. Understanding of Physical and Virtual Servers

Information

Overview of Servers
● Servers are computer systems or software applications
that provide services or resources to other devices or
applications on a network.
● They are designed to handle specific tasks and provide
functionalities such as data storage, processing,
communication, and hosting services.

1. File Servers:
● These servers store and manage files and allow
clients to access and share files over a network.
● They typically use file transfer protocols like FTP or
SMB.

2. Web Servers:
● Web servers host websites and deliver web pages to
clients over the internet.
● They process HTTP requests and serve HTML, CSS,
and other web-related files.
● Popular web server software includes Apache HTTP
Server, Nginx, and Microsoft IIS.

www.staragile.com
 3. Database Servers:
● Database servers manage and store data in structured
formats, allowing clients to perform operations such
as data retrieval, storage, and manipulation.
● Examples include MySQL, Oracle Database, and
Microsoft SQL Server.

4. Application Servers:
● Application servers provide an environment for
hosting and running applications.
● They handle application-related tasks such as session
management, transaction processing, and business
logic execution.
● Examples include Apache Tomcat, JBoss, and IBM
WebSphere.

5. Mail Servers:
● Mail servers handle email communication, managing
email storage, sending, and receiving messages.
● They use protocols like SMTP, POP, and IMAP for
email transmission and retrieval.
● Examples include Microsoft Exchange Server and
Postfix.

6. DNS Servers:

www.staragile.com
 ● DNS (Domain Name System) servers translate domain
names into IP addresses and vice versa.
● They resolve domain names and help route internet
traffic.
● Examples include BIND, Microsoft DNS Server, and
Google Cloud DNS.

7. Proxy Servers:
● Proxy servers act as intermediaries between clients
and other servers.
● They cache content, enhance security, and provide
network efficiency by handling client requests on
behalf of the original server.

8. Print Servers:
● Print servers manage printing tasks on a network,
allowing users to send print jobs to network printers
and manage print queues.

● These are just a few examples of server types, and

there are various other specialized servers catering to
specific needs, such as media servers, gaming servers,
and VPN servers.
● Servers play a crucial role in enabling the
functionality and connectivity of networks,
applications, and services.

www.staragile.com
Use of servers :
● Servers have a wide range of uses and play a crucial
role in various domains.

1. Website Hosting:
● Servers are used to host websites and web
applications.
● Web servers like Apache HTTP Server or Nginx
handle incoming HTTP requests, serve web pages,
and deliver content to clients over the internet.

2. Database Management:
● Servers dedicated to database management store and
manage data for applications.
● Database servers like MySQL, Oracle, or Microsoft SQL
Server handle data storage, retrieval, and
manipulation, ensuring data integrity and availability.

3. Application Hosting:
● Application servers provide an environment for
hosting and running applications.
● They handle tasks such as session management,
transaction processing, and business logic execution.
● Application servers like Apache Tomcat or JBoss are
used for hosting Java-based applications.

www.staragile.com
 4. Email Communication:
● Mail servers handle email communication, managing
email storage, sending, and receiving messages.
● They use protocols like SMTP, POP, and IMAP to
transmit and retrieve emails.
● Servers like Microsoft Exchange Server or Postfix are
used for managing email systems.

5. File Sharing and Storage:

● File servers store and manage files, allowing users to
access and share files over a network.
● They provide centralized storage and file
management capabilities, making it easier to store
and retrieve files securely.

6. Data Backup and Recovery:

● Backup servers are used to store data backups,
ensuring data protection and disaster recovery
capabilities.
● They schedule regular backups and facilitate the
restoration of data in case of system failures or data
loss.

7. Virtualization and Cloud Computing:

● Servers play a critical role in virtualization and cloud
computing environments.

www.staragile.com
 ● Virtualization servers host multiple virtual machines,
allowing efficient resource allocation and flexibility.
● Cloud servers provide on-demand computing
resources and services through cloud platforms like
AWS, Azure, or Google Cloud.

8. Network Services:
● Servers provide various network services such as DNS
(Domain Name System), DHCP (Dynamic Host
Configuration Protocol), VPN (Virtual Private
Network), and proxy services.
● These servers enhance network connectivity, security,
and performance.

9. Collaboration and Communication:

● Servers are used for collaboration and
communication platforms such as chat servers, video
conferencing servers, and collaborative document
editing servers.
● These servers facilitate real-time communication and
collaboration among users.

10. Streaming and Media Services:

● Media servers and streaming servers host and deliver
multimedia content, enabling video streaming, audio
streaming, and on-demand media services.

www.staragile.com
 ● These are just a few examples of the diverse uses of
servers.
● Servers form the backbone of modern technology
infrastructure, supporting various applications,
services, and communication across networks.

Understanding of Physical and Virtual Servers :

1. Physical Servers:
● Physical servers refer to the actual physical hardware
devices that are dedicated to running applications and
hosting services.
● These servers consist of physical components such as
processors, memory, hard drives, and network
interfaces.
● They are installed and configured in a physical data
center or server room.

Key characteristics of physical servers include:

1. Dedicated hardware resources:
● Each physical server has its own dedicated hardware
resources, which are not shared with other servers.
2. Physical maintenance and management:
● Physical servers require physical maintenance tasks
such as hardware upgrades, repairs, and monitoring.
3. Limited scalability:

www.staragile.com
 ● Scaling up physical servers typically involves adding
more physical hardware, which can be a
time-consuming and costly process.
4. Higher upfront costs:
● Physical servers require purchasing the hardware
upfront, along with associated infrastructure costs.

2. Virtual Servers:
● Virtual servers, on the other hand, are software-based
instances that run on a physical server but behave as
separate and independent servers.
● Multiple virtual servers can coexist on a single
physical server, each running its own operating
system, applications, and services.
● This concept is known as server virtualization.

Key characteristics of virtual servers include:

Resource sharing:
● Multiple virtual servers share the underlying physical
server's resources, such as CPU, memory, and storage.
These resources are allocated dynamically based on the
demand.
1. Scalability and flexibility:
● Virtual servers can be easily scaled up or down by
adjusting the allocated resources.
● New virtual servers can be provisioned quickly
without the need for additional physical hardware.

www.staragile.com
 2. Cost-effective:
● Virtualization allows better utilization of physical
resources, reducing hardware costs and energy
consumption.
● It also enables more efficient management and
consolidation of servers.

3. Virtual infrastructure management:

● Virtual servers are managed through virtualization
software, which provides tools for provisioning,
monitoring, and managing virtual machines.
● Virtual servers offer greater flexibility, scalability, and
cost-effectiveness compared to physical servers.
● They enable efficient utilization of hardware
resources and simplify management tasks.
● However, virtual servers may have slightly higher
overhead due to virtualization layers and potential
performance variations caused by resource sharing.

www.staragile.com
 2. Overview of Public/Private cloud Computing

Information

What is cloud computing?

● Cloud computing refers to the delivery of computing
resources, such as servers, storage, databases,
networking, software, and analytics, over the internet.
● It provides on-demand access to a shared pool of
configurable computing resources that can be rapidly
provisioned and released with minimal management
effort.
● In cloud computing, organizations and individuals can
leverage cloud service providers' infrastructure and
platforms to run their applications, store data, and
access a wide range of services.
● The key characteristics of cloud computing include:

1. On-Demand Self-Service:
● Users can provision computing resources, such as
virtual machines, storage, or applications, as needed
without requiring human interaction with the service
provider.

2. Broad Network Access:

www.staragile.com
 ● Cloud services are accessible over the internet using
various devices, such as desktop computers, laptops,
smartphones, or tablets.
● Users can access their applications and data from
anywhere with an internet connection.

3. Resource Pooling:
● Computing resources in the cloud are pooled together
and shared among multiple users or organizations.
● The cloud provider dynamically allocates and
reallocates resources based on demand, optimizing
resource utilization.

4. Rapid Elasticity:
● Cloud resources can be rapidly scaled up or down
based on demand.
● Users can easily increase or decrease their resource
allocation, enabling flexibility and cost efficiency.

5. Measured Service:
● Cloud usage is monitored, controlled, and billed based
on the resources consumed.
● Users only pay for the resources they use, typically
following a pay-per-use model.

Overview of Public/private cloud computing :

www.staragile.com
Public and private cloud computing are two deployment
models for delivering cloud services.
1. Public Cloud Computing:

● Public cloud computing refers to the delivery of cloud

services over the internet by a third-party service
provider.
● In this model, the infrastructure and resources are
shared among multiple organizations or users.
Some key characteristics of public cloud computing
include:
1. Accessibility:
● Public clouds are accessible over the internet,
allowing users to access resources and services from
anywhere with an internet connection.

www.staragile.com
 2. Scalability:
● Public clouds offer elastic scalability, enabling users to
quickly scale up or down their resource usage based
on demand.
● Users can access additional resources as needed,
paying for what they use.

3. Shared Infrastructure:
● Public clouds share computing resources, storage, and
networking infrastructure among multiple users.
● This enables cost savings through resource pooling
and economies of scale.

4. Pay-per-Use Model:
● Public cloud services typically follow a pay-per-use
pricing model.
● Users pay for the resources and services they
consume, usually based on factors like storage,
compute power, network traffic, or the number of
users.

5. Managed Services:
● Public cloud providers offer a wide range of managed
services, including virtual machines, storage,
databases, networking, analytics, and more.

www.staragile.com
 ● Users can leverage these services without having to
worry about managing the underlying infrastructure.

● Popular public cloud providers include Amazon Web

Services (AWS), Microsoft Azure, Google Cloud
Platform (GCP), and IBM Cloud.

2. Private Cloud Computing:

● Private cloud computing, on the other hand, refers to

cloud infrastructure dedicated to a single
organization.

www.staragile.com
 ● It can be hosted on-premises or by a third-party
service provider.
● Key characteristics of private cloud computing
include:

1. Dedicated Infrastructure:
● Private clouds are built on dedicated infrastructure,
providing exclusive access and control to a single
organization.
● This allows organizations to have more control over
their data, security, and performance.

2. Customization:
● Private clouds can be customized and tailored to meet
specific organizational needs.
● They can be designed to align with specific
compliance requirements, security policies, and
performance standards.

3. Scalability and Resource Allocation:

● Private clouds provide scalability and resource
allocation flexibility similar to public clouds.
● Organizations can scale their private cloud
infrastructure based on demand and allocate
resources according to their specific requirements.

4. Increased Security and Privacy:

www.staragile.com
 ● Private clouds offer enhanced security and privacy
compared to public clouds.
● Organizations have greater control over access
controls, data protection, and compliance measures.

5. Cost and Complexity:

● Private clouds generally involve higher upfront costs
and ongoing maintenance compared to public clouds.
● Organizations are responsible for managing and
maintaining the infrastructure, which requires
expertise and resources.

● Private cloud solutions can be deployed using various

technologies, including virtualization platforms,
software-defined data centers (SDDC), and cloud
management platforms.

3. Hybrid Cloud Computing:

www.staragile.com
 ● In addition to public and private cloud models, there
is also a hybrid cloud model that combines elements
of both.
● Hybrid cloud computing involves integrating public
and private cloud environments to create a unified
infrastructure.
● This allows organizations to leverage the benefits of
both models, such as utilizing public clouds for
scalability and cost-efficiency while maintaining
sensitive data and critical workloads in private clouds.

● The choice between public and private cloud

computing depends on factors such as the
organization's requirements, budget, security
concerns, regulatory compliance, and the nature of
the workloads and applications being deployed.

● Various Cloud Platform

● There are several major cloud platforms available in

the market, each offering a range of services and
features.
1. Amazon Web Services (AWS):

www.staragile.com
 ● AWS is one of the largest and most comprehensive
cloud platforms, offering a wide array of cloud
services.
● It provides infrastructure services (compute, storage,
networking), database services, AI and machine
learning tools, analytics, serverless computing, and
more.

2. Microsoft Azure:
● Azure is Microsoft's cloud platform, providing a
robust set of cloud services for computing, storage,
networking, and analytics.
● It offers services for building, deploying, and
managing applications, as well as AI and machine
learning capabilities, IoT solutions, and integration
with Microsoft's other products and services.

3. Google Cloud Platform (GCP):

● GCP offers a suite of cloud services, including
computing, storage, databases, networking, and big
data analytics.
● It provides tools for machine learning, data
processing, and AI, as well as offerings for IoT,
security, and DevOps.

4. IBM Cloud:

www.staragile.com
 ● IBM Cloud is a comprehensive cloud platform offering
a wide range of services, including compute, storage,
AI, blockchain, IoT, analytics, and more.
● It provides tools and resources for developing,
deploying, and managing applications on the cloud.

5. Oracle Cloud Infrastructure (OCI):

● OCI is Oracle's cloud platform, providing a suite of
cloud services for computing, storage, networking,
and databases.
● It offers services for AI and machine learning, data
analytics, application development, and integration
with Oracle's enterprise software solutions.

6. Alibaba Cloud:
● Alibaba Cloud is a leading cloud provider in China and
offers a diverse range of cloud services, including
computing, storage, databases, networking, security,
and AI.
● It provides a comprehensive set of tools for
businesses operating in China or seeking a global
presence.

7. DigitalOcean:
● DigitalOcean is a cloud platform focused on simplicity
and developer-friendly features.

www.staragile.com
 ● It offers scalable compute resources, managed
databases, object storage, networking, and developer
tools.

● These are just a few examples of the major cloud

platforms available.
● Each platform has its own strengths, pricing models,
and service offerings.
● Organizations and individuals can choose the cloud
platform that best suits their requirements,
considering factors such as geographic availability,
service features, pricing, support, and integration
with existing systems.

● Public Vs Private Computing :

● Public and private cloud computing are two different
deployment models for delivering cloud services.
● Here's a comparison between public and private cloud
computing:
1. Public Cloud Computing:
1. Ownership:
● Public cloud infrastructure is owned and operated by
a third-party cloud service provider, who makes
services available to multiple organizations or
individuals over the internet.

2. Accessibility:

www.staragile.com
 ● Public clouds are accessible to anyone with an
internet connection, and resources can be
provisioned on-demand.

3. Infrastructure Sharing:
● Public cloud resources are shared among multiple
users, enabling cost savings and resource
optimization through economies of scale.

4. Scalability:
● Public clouds offer elastic scalability, allowing users to
scale resources up or down based on demand. Users
can easily access additional resources when needed.

5. Cost Model:
● Public clouds typically follow a pay-per-use model,
where users pay only for the resources they consume,
allowing for cost optimization.

6. Managed Services:
● Public cloud providers offer a wide range of managed
services, taking care of infrastructure management,
security, and updates.
● Users can leverage these services without worrying
about underlying infrastructure management.

www.staragile.com
 ● Examples: Amazon Web Services (AWS), Microsoft
Azure, Google Cloud Platform (GCP), and IBM Cloud.

2. Private Cloud Computing:

1. Ownership:
● Private cloud infrastructure is owned and operated by
a single organization, either on-premises or by a
third-party service provider exclusively dedicated to
that organization.

2. Accessibility:
● Private clouds are accessible only to authorized users
within the organization's network or through a secure
connection.

3. Infrastructure Control:
● Private clouds offer greater control and customization
options, allowing organizations to tailor the
infrastructure to their specific needs and compliance
requirements.

4. Security and Privacy:

● Private clouds provide enhanced security and privacy
since they are dedicated to a single organization.

www.staragile.com
 ● Organizations have more control over data protection
and compliance measures.

5. Scalability:
● Private clouds offer scalability and resource allocation
flexibility similar to public clouds, allowing
organizations to scale resources based on demand.

6. Cost Model:
● Private clouds involve higher upfront costs compared
to public clouds, as organizations need to invest in
infrastructure and maintenance.
● However, they can provide long-term cost savings for
organizations with predictable workloads.

● Examples: VMware vSphere, OpenStack, Microsoft

Azure Stack, and Oracle Cloud at Customer.

● Choosing between public and private cloud

computing depends on various factors such as
security requirements, compliance regulations,
budget, control, and specific use case needs.
● Public clouds are more suitable for organizations
looking for scalability, cost efficiency, and access to a
broad range of managed services.
● Private clouds are preferred when organizations
require strict control, customization, and compliance
adherence.

www.staragile.com
 ● In some cases, organizations may adopt a hybrid
cloud approach, combining elements of both public
and private clouds to meet their specific
requirements.

3. Overview of AWS/Azure/GCP

Information

1. AWS (Amazon Web Services):

● AWS is the most widely used and comprehensive
cloud platform, offering a vast array of cloud services
and solutions.
● It provides a wide range of services for computing,
storage, databases, networking, AI and machine
learning, analytics, IoT, security, and more.

www.staragile.com
 ● Key services include Amazon EC2 (Elastic Compute
Cloud) for scalable virtual servers, Amazon S3
(Simple Storage Service) for object storage, Amazon
RDS (Relational Database Service) for managed
databases, and AWS Lambda for serverless
computing.
● AWS also offers additional tools and services for
management, monitoring, security, and deployment,
such as AWS CloudFormation, AWS Identity and
Access Management (IAM), and AWS CloudWatch.
● It has a global infrastructure with multiple availability
zones, enabling high availability, fault tolerance, and
low-latency services worldwide.
● AWS provides extensive documentation, training
resources, and a vibrant community to support users.
2. Azure (Microsoft Azure):
● Azure is a comprehensive cloud platform by
Microsoft, offering a wide range of cloud services and
capabilities.
● It provides services for computing, storage, databases,
networking, AI and machine learning, analytics, IoT,
and more.
● Key services include Azure Virtual Machines for
scalable compute resources, Azure Storage for various
storage options, Azure SQL Database for managed
databases, and Azure Functions for serverless
computing.
● Azure integrates well with Microsoft's other products
and services, such as Windows Server, Active

www.staragile.com
 Directory, and Office 365, offering a seamless hybrid
cloud environment.
● It provides tools for management, monitoring,
security, and deployment, including Azure Resource
Manager, Azure Active Directory, and Azure Monitor.
● Azure has a global presence with multiple data
centers and offers services for developers, IT
professionals, and businesses across different
industries.
● Microsoft provides extensive documentation, learning
resources, certifications, and support options for
Azure users.
3. GCP (Google Cloud Platform):
● GCP is a cloud platform offered by Google, providing a
suite of cloud services and tools for computing,
storage, databases, networking, AI and machine
learning, analytics, and more.
● It offers services like Google Compute Engine for
virtual machines, Google Cloud Storage for object
storage, Google Cloud SQL for managed databases,
and Google Cloud Functions for serverless computing.
● GCP provides advanced AI and machine learning
capabilities, including Google Cloud AI Platform,
TensorFlow, and BigQuery for data analytics.
● It emphasizes simplicity, scalability, and flexibility,
with a focus on modern cloud-native technologies and
open-source compatibility.
● GCP has a global network of data centers, ensuring
low-latency services and high availability worldwide.

www.staragile.com
 ● Google provides comprehensive documentation,
training resources, and support options for GCP users.

● All three cloud platforms offer a wide range of

services and features to cater to various business
needs, and their popularity and adoption depend on
specific requirements, expertise, and integration
preferences.
● Organizations can choose the most suitable cloud
platform based on factors such as service offerings,
pricing, support, compliance, and strategic
partnerships.

AWS Account Creation:

To create an AWS (Amazon Web Services) account, you can
follow these steps:
1. Go to the AWS website:
● Visit the AWS homepage at
“https://aws.amazon.com/”.
2. Click on "Create an AWS Account":
● On the top right corner of the page, click on the
"Create an AWS Account" button.
3. Provide your email address:
● Enter your email address and click on the "Continue"
button.
4. Provide your account information:

www.staragile.com
 ● Fill in the required details such as your name,
company (optional), and a strong password for your
AWS account.
● Then click on the "Create Account" button.
5. Contact Information:
● Provide your contact information including your
address and phone number.
● Click on the "Continue" button.
6. Payment Information:
● Enter your credit card information.
● AWS requires valid payment details for verification
purposes and to charge for any services you use
beyond the free tier limits.
● Note that some services may have free tiers or trial
periods available.
7. Phone Verification:
● AWS may require phone verification for account
creation.
● Choose whether you want to verify via a phone call or
SMS, and follow the instructions for verification.
8. Accept AWS Agreement:
● Review the AWS Customer Agreement and click on
the "Create Account and Continue" button.
9. Choose Support Plan:
● Select the support plan that best fits your needs,
whether it's the free Basic plan or a paid support plan.
● Click on the "Continue" button.

10. Confirmation:

www.staragile.com
 ● AWS will send a verification code to your email
address.
● Enter the code and click on the "Verify code and
continue" button.

11. Identity Verification:

● In some cases, AWS may require identity verification
to confirm your identity.
● Follow the instructions provided to complete the
verification process.

12. Select a Support Plan (optional):

● If you opted for the Basic support plan earlier, you can
choose to upgrade to a paid support plan.
● Otherwise, you can proceed without selecting a
support plan.

13. Welcome to AWS:

● Once your account is successfully created, you will see
a welcome message with your AWS account details.
● You can now start using AWS services.

● It's important to note that AWS may ask for additional

information or perform further verification steps
depending on the type of account and services you
intend to use.

www.staragile.com
 ● Be prepared to provide any necessary details or
complete any required verifications to complete the
account creation process.

● Remember to review AWS's pricing, terms of service,

and documentation to understand the costs and
services associated with your account.

4. Benefits of Cloud Computing

Information

www.staragile.com
 Cloud computing offers numerous benefits to
organizations of all sizes and industries.

1. Scalability and Flexibility:

● Cloud computing allows organizations to quickly
scale up or down their computing resources based
on demand.
● Whether it's adding more storage, increasing
computing power, or expanding network capacity,
cloud services provide the flexibility to adjust
resources as needed.

2. Cost Efficiency:
● Cloud computing eliminates the need for upfront
investments in hardware, infrastructure, and
maintenance costs.
● Instead, organizations pay for the resources they
use on a pay-as-you-go basis. This cost model
reduces capital expenditure and allows for better
budget management.

3. High Availability and Reliability:

● Cloud service providers typically have multiple data
centers in different geographic locations, ensuring
redundancy and high availability.
● Service-level agreements (SLAs) guarantee a
certain level of uptime, minimizing downtime and
ensuring business continuity.

www.staragile.com
 4. Global Accessibility:
● Cloud services can be accessed from anywhere with
an internet connection.
● This enables remote work, collaboration among
distributed teams, and access to applications and
data from various devices, providing flexibility and
enhancing productivity.

5. Improved Security:
● Cloud providers invest heavily in robust security
measures to protect customer data.
● They implement encryption, access controls,
firewalls, and other security features to safeguard
data and infrastructure.
● Cloud platforms also offer backup and disaster
recovery capabilities, reducing the risk of data loss.

6. Automatic Software Updates:

● Cloud service providers manage software updates
and security patches, ensuring that users have
access to the latest features and protection against
vulnerabilities.
● This frees organizations from the burden of
managing updates themselves.

7. Elasticity and Performance:

● Cloud services can dynamically adjust resource
allocation based on workload demands.
● This enables organizations to handle sudden traffic
spikes, seasonal variations, or unpredictable usage

www.staragile.com
 patterns without impacting performance or user
experience.

8. Innovation and Time to Market:

● Cloud computing provides a platform for rapid
development and deployment of applications and
services.
● Organizations can leverage cloud-based
development tools, pre-built services, and APIs to
accelerate innovation and bring products to market
faster.

9. Environmentally Friendly:
● Cloud computing promotes energy efficiency and
sustainability.
● By sharing computing resources among multiple
users and optimizing resource utilization, cloud
providers can achieve higher energy efficiency
compared to traditional on-premises infrastructure.

10. Integration and Collaboration:

● Cloud services offer seamless integration with
other cloud-based or on-premises systems,
enabling organizations to leverage existing
applications and data.
● Cloud platforms also support collaboration and
real-time communication among teams, fostering
productivity and efficiency.

www.staragile.com
 ● These benefits of cloud computing make it an
attractive choice for businesses looking to enhance
agility, reduce costs, improve scalability, and focus
on core competencies rather than IT infrastructure
management.
● However, it's important for organizations to
consider their specific requirements, data
sensitivity, compliance regulations, and
performance needs when evaluating cloud
solutions.

5. Pricing and Usage Policy

Information

● Pricing and usage policies vary depending on the

cloud service provider and the specific services
being utilized.
● Here are some key considerations regarding pricing
and usage policies in cloud computing:

1. Pricing Models:
● Cloud service providers typically offer different
pricing models, such as pay-as-you-go, reserved
instances, spot instances, or subscription-based
plans.
● It's important to understand the pricing model for
each service and how costs are calculated based on

www.staragile.com
 factors like usage, storage, data transfer, compute
resources, and additional features.

2. Cost Estimation:
● Cloud providers often provide cost calculators or
pricing tools to estimate the potential costs of using
their services.
● These tools can help organizations understand the
pricing structure, compare different service
configurations, and estimate their monthly or
annual expenses.

3. Free Tier:
● Many cloud providers offer a free tier or trial
period, allowing users to access a limited set of
services or resources without incurring costs.
● This enables organizations to explore and
experiment with cloud services before committing
to paid usage.

4. Resource Allocation and Scaling:

● Cloud providers typically charge based on the
resources allocated and consumed, such as virtual
machines, storage space, network bandwidth, or
API calls.
● It's important to understand the pricing
implications of resource allocation, scaling up or
down, and the impact on costs when adjusting
resource usage.

www.staragile.com
 5. Data Transfer and Bandwidth:
● Cloud providers may charge for data transfer
between different regions, availability zones, or
over the internet.
● Bandwidth usage, particularly for outgoing network
traffic, may also be subject to additional charges
beyond certain limits.
● It's essential to be aware of data transfer costs,
especially for applications with high data transfer
requirements.

6. Service-level Agreements (SLAs):

● SLAs define the level of service availability,
performance guarantees, and support
commitments provided by the cloud provider.
● It's crucial to review and understand the SLAs for
each service to ensure they align with the
organization's requirements and expectations.

7. Data Storage and Archiving:

● Cloud storage services may have different pricing
tiers based on storage types (e.g., object storage,
block storage, archival storage) and storage
durations.
● Archiving data for long-term retention may have
lower storage costs but may incur additional
charges for data retrieval.

8. Reserved Instances and Savings Plans:

www.staragile.com
 ● Cloud providers offer options like reserved
instances or savings plans that provide discounts
for committing to longer-term usage or predictable
workloads.
● These options can provide cost savings for
organizations with consistent resource
requirements.

9. Billing and Monitoring Tools:

● Cloud providers typically provide detailed billing
statements and usage reports to help organizations
monitor and manage their cloud costs.
● These tools allow users to analyze usage patterns,
identify cost drivers, and optimize resource
utilization to control expenses.

10. Usage Policies and Compliance:

● Cloud providers have usage policies in place to
ensure fair usage and prevent misuse of resources.
● It's important to understand these policies,
including restrictions on resource usage,
compliance requirements, data privacy regulations,
and any legal or contractual obligations.

● It's crucial for organizations to review and

understand the pricing and usage policies of the
specific cloud service provider they are
considering.
● Reading the provider's documentation, consulting
with the sales team, and leveraging cost

www.staragile.com
 management tools can help in optimizing cloud
costs and ensuring compliance with the provider's
policies.

Pricing Models :

● Cloud service providers typically offer multiple

pricing models to accommodate different usage
patterns and customer needs.
● The specific pricing models may vary slightly
among providers, but here are some common
pricing models used in cloud computing:

1. Pay-As-You-Go:
● This is a popular pricing model where customers
pay for the actual resources and services they use.
● Prices are typically based on usage metrics such as
compute hours, storage space, network traffic, or
API calls.
● Customers are billed on a periodic basis (hourly,
monthly, etc.) for their usage, allowing for flexibility
and cost control.

2. Reserved Instances/Reserved Capacity:

● Some cloud providers offer discounted pricing for
customers who commit to using specific resources
or services for a longer duration.
● Customers can reserve instances, compute capacity,
or specific services upfront for a predetermined
period, typically ranging from one to three years.

www.staragile.com
 ● This model provides cost savings in exchange for
the longer commitment.

3. Spot Instances/Preemptible Instances:

● In this model, customers can bid on unused or
spare cloud resources, such as compute instances,
at lower prices.
● These instances are available at discounted rates
but can be interrupted and reclaimed by the cloud
provider based on demand.
● Spot instances are ideal for non-time-sensitive or
flexible workloads that can handle interruptions.

4. Subscription-based:
● Some cloud services, particularly Software as a
Service (SaaS) offerings, follow a
subscription-based pricing model.
● Customers pay a fixed recurring fee, usually on a
monthly or annual basis, to access and use the
service.
● The fee typically covers all necessary resources and
ongoing support.

5. Data Transfer and Bandwidth:

● Cloud providers may charge for data transfer
between different regions, availability zones, or
over the internet.
● Bandwidth usage, particularly for outgoing network
traffic, may also be subject to additional charges
beyond certain limits.

www.staragile.com
 6. Storage Tiers:
● Cloud storage services often provide multiple
storage tiers with different performance
characteristics and costs.
● Customers can choose the appropriate storage tier
based on their data access patterns and
requirements. Higher-performance tiers generally
come at higher costs.

● It's important to note that pricing models and

specific pricing details can vary across cloud
providers, services, and regions.
● Additionally, providers may offer cost calculators or
pricing tools to help customers estimate and
understand their potential costs based on usage
patterns.
● It's advisable to review the pricing information
provided by the specific cloud service provider you
are considering to get accurate and up-to-date
pricing details.

www.staragile.com
6. Overview of IAM services
Information

● IAM (Identity and Access Management) services are

an integral part of cloud computing platforms.
● They provide robust capabilities for managing user
identities, controlling access to resources, and
enforcing security policies.
● Here's an overview of IAM services offered by
major cloud providers like AWS, Azure, and GCP:

1. AWS Identity and Access Management (IAM):

● IAM is AWS's IAM service, allowing you to manage

access to AWS services and resources securely.

www.staragile.com
 ● It enables you to create and manage users, groups,
and roles, defining their permissions and access
policies.
● IAM provides fine-grained control over access to
AWS resources, allowing you to grant or deny
permissions at a granular level.
● It supports multi-factor authentication (MFA) and
integration with AWS services for additional
security measures.
● IAM also offers features like identity federation,
allowing you to enable single sign-on (SSO) with
external identity providers.
● It integrates with other AWS services, such as AWS
S3, EC2, and RDS, to enforce access control and
permissions for those services.

2. Azure Active Directory (Azure AD):

● Azure AD is Microsoft's cloud-based identity and

access management service for Azure and other
Microsoft services.
● It provides a centralized hub for managing user
identities, access policies, and authentication.
● Azure AD offers features like user provisioning,
single sign-on (SSO), and multi-factor
authentication (MFA) for secure access to
applications and resources.
● It supports role-based access control (RBAC),
allowing you to assign roles and permissions to
users or groups.

www.staragile.com
 ● Azure AD integrates with Azure services, such as
Azure Virtual Machines, Azure SQL Database, and
Azure Storage, to control access and permissions.
● It also provides integration options for extending
identity management to on-premises environments
and external applications.

3. Google Cloud Identity and Access Management

(IAM):

● IAM is Google Cloud's IAM service, providing

centralized user and access management for Google
Cloud resources.
● It enables you to create and manage users, groups,
and service accounts, controlling their permissions
and access scopes.
● IAM uses the principle of least privilege, allowing
you to grant users only the necessary permissions
required to perform their tasks.
● It supports fine-grained access control through IAM
roles, which define permissions at the project,
folder, or resource level.
● IAM integrates with other Google Cloud services,
such as Google Cloud Storage, Compute Engine, and
BigQuery, to enforce access control and
permissions.
● It offers features like service account key
management, audit logging, and monitoring of IAM
activities.

www.staragile.com
 ● IAM services in cloud platforms provide a
centralized and secure way to manage user access,
enforce access controls, and protect resources.
● They help organizations maintain data security,
meet compliance requirements, and minimize the
risk of unauthorized access.
● It's important to understand the specific features
and capabilities of the IAM services offered by the
cloud provider you are using and configure them
according to your organization's security policies
and requirements.
7. Overview of EC2 Services

Information

● EC2 (Elastic Compute Cloud) is a core service provided

by Amazon Web Services (AWS) that enables users to
create and manage virtual machine instances in the
cloud.
1. Virtual Machine Instances:
● EC2 allows users to create and launch virtual machine
instances, commonly referred to as EC2 instances, in a
variety of configurations based on their computing
needs.
● Instances can be provisioned with various CPU, memory,
storage, and networking capabilities, enabling users to
choose the most suitable configuration for their
applications.

www.staragile.com
● EC2 offers a wide selection of pre-configured Amazon
Machine Images (AMIs) that serve as the base operating
system for instances. Users can also create custom AMIs
or import their own.
2. Instance Types:
● EC2 provides a range of instance types optimized for
different workloads, such as general-purpose,
memory-optimized, compute-optimized,
storage-optimized, and GPU instances.
● Each instance type is designed to deliver specific
performance characteristics and is available in various
sizes with different combinations of CPU, memory,
storage, and networking capacity.
3. Elasticity and Scalability:
● EC2 offers elastic scalability, allowing users to scale
their instances up or down based on demand. Instances
can be easily launched, terminated, or modified to
accommodate changing workloads.
● Users can configure auto-scaling groups that
automatically adjust the number of instances based on
predefined scaling policies, ensuring applications can
handle varying traffic loads efficiently.

4. Networking and Security:

● EC2 instances can be deployed within Virtual Private
Cloud (VPC) environments, enabling users to define
their private networks with custom IP ranges, subnets,
and routing configurations.

www.staragile.com
● Users can control inbound and outbound traffic to their
instances using security groups, which act as virtual
firewalls and allow for fine-grained access control.
● Additional networking features, such as Elastic IP
addresses, Load Balancers, and Virtual Private Network
(VPN) connectivity, provide enhanced network
capabilities and connectivity options.

5. Storage Options:
● EC2 offers various storage options, including Amazon
EBS (Elastic Block Store) for persistent block storage,
Amazon S3 (Simple Storage Service) for object storage,
and instance store volumes for temporary data storage.
● Users can attach EBS volumes to their instances as
additional storage, and these volumes can be
dynamically resized and backed up.
● EC2 instances can also leverage Amazon S3 for storing
and retrieving data, providing durability, scalability, and
cost-effective storage.

6. Integration with Other AWS Services:

● EC2 integrates seamlessly with other AWS services,
allowing users to leverage a wide range of
complementary services.
● This includes services like AWS Elastic Load Balancer
(ELB) for distributing traffic, AWS Auto Scaling for
automated scaling, AWS CloudWatch for monitoring and

www.staragile.com
 logging, and AWS Identity and Access Management
(IAM) for access control.
● EC2 provides a highly flexible and scalable
infrastructure for running applications in the cloud. It
offers a wide range of instance types, storage options,
and networking capabilities to meet diverse workload
requirements. With its elasticity, security features, and
integration with other AWS services, EC2 enables users
to build scalable and resilient applications in the cloud.

Connecting EC2 Instances :

● To connect to an EC2 instance in AWS, you can use
various methods depending on the operating system
and the connection type required.
● Here are some common ways to connect to an EC2
instance:
1. SSH (Secure Shell):
● For Linux-based instances, SSH is commonly used to
establish a secure remote connection.
● Ensure that your security group rules allow incoming
SSH traffic (TCP port 22) from your IP address or a
specified IP range.
● Obtain the public IP address or DNS name of the EC2
instance.

www.staragile.com
 ● Open a terminal or command prompt on your local
machine and use the SSH command along with the
appropriate key pair file (e.g., .pem) to connect to the
instance:

● Replace <key_pair_file> with the name of your key

pair file, <username> with the appropriate username
for the Linux distribution (e.g., "ec2-user" for Amazon
Linux, "ubuntu" for Ubuntu), and <public_ip_or_dns>
with the public IP address or DNS name of the EC2
instance.
2. RDP (Remote Desktop Protocol):
● For Windows-based instances, RDP can be used to
establish a remote desktop connection.
● Ensure that your security group rules allow incoming
RDP traffic (TCP port 3389) from your IP address or a
specified IP range.
● Obtain the public IP address or DNS name of the EC2
instance.
● Open the Remote Desktop client on your local
machine and enter the public IP address or DNS name
of the instance.

www.staragile.com
 ● Provide the appropriate username and password
configured for the instance.
3. Session Manager (AWS Systems Manager):

● AWS Systems Manager provides a managed service

called Session Manager, which allows secure and
controlled remote shell access to EC2 instances
without the need for SSH/RDP access.
● Ensure that your IAM user or role has the necessary
permissions to access the Session Manager service
and EC2 instances.
● Open the AWS Management Console, go to the
Systems Manager service, and navigate to Session
Manager.
● Select the EC2 instance you want to connect to and
initiate a session.
● This opens a browser-based shell session without the
need for SSH keys or opening inbound ports.

● It's important to ensure that the security groups

associated with your EC2 instance allow the
necessary inbound traffic for SSH or RDP access.
● Also, ensure that you have the correct key pair file for
SSH access or the appropriate username and
password for RDP access.

● It's important to follow the security best practices and

restrict access to your EC2 instances by configuring

www.staragile.com
 appropriate security groups, using strong passwords
or SSH keys, and implementing multi-factor
authentication where applicable.

8. Overview of RDS Services

Information

● RDS (Relational Database Service) is a managed

database service provided by Amazon Web Services
(AWS) that makes it easy to set up, operate, and
scale relational databases in the cloud.
1. Managed Relational Databases:
● RDS supports various popular relational database
engines, including MySQL, PostgreSQL, Oracle
Database, Microsoft SQL Server, and Amazon

www.staragile.com
 Aurora (which is a MySQL and
PostgreSQL-compatible database engine).
● RDS takes care of the administrative tasks involved
in managing databases, such as infrastructure
provisioning, database setup, patching, backups,
and automated software updates.
● This allows users to focus on their applications and
data rather than database maintenance.
2. Scalability and High Availability:
● RDS allows users to easily scale their databases up
or down to accommodate changing workloads.
● It provides options for vertical scaling (changing
the instance size) and horizontal scaling
(replicating databases or using read replicas for
read-heavy workloads).
● RDS supports Multi-AZ deployments, which
automatically replicate data to a standby instance
in a different Availability Zone (AZ) for high
availability and fault tolerance.
● In the event of a primary instance failure, RDS
automatically fails over to the standby instance to
minimize downtime.
3. Performance and Monitoring:
● RDS provides performance monitoring metrics and
automated alarms through Amazon CloudWatch.
● Users can monitor database metrics such as CPU
utilization, memory usage, disk I/O, and database

www.staragile.com
 connections to identify performance bottlenecks
and optimize database performance.
● RDS supports automated backups, allowing users to
schedule regular backups of their databases.
● It also provides the option to enable point-in-time
recovery (PITR) to restore databases to a specific
point in time within the retention period.
4. Security and Compliance:
● RDS integrates with AWS Identity and Access
Management (IAM) for fine-grained access control,
allowing users to manage database access at the
user and group level.
● RDS supports encryption at rest using AWS Key
Management Service (KMS) for enhanced data
security. It also provides options for SSL/TLS
encryption for secure data transmission.
● RDS is compliant with various industry standards
and regulations, including PCI DSS, HIPAA, ISO, and
SOC, making it suitable for applications with strict
security and compliance requirements.
5. Automated Database Patching and Upgrades:
● RDS handles automated patching and software
upgrades for supported database engines.
● This ensures that databases are up to date with the
latest security patches and feature enhancements
without user intervention.
6. Database Engine Flexibility:

www.staragile.com
 ● RDS offers flexibility in terms of database engine
selection.
● Users can choose the most suitable database engine
for their applications, such as MySQL, PostgreSQL,
Oracle, SQL Server, or Amazon Aurora, and take
advantage of the specific features and capabilities
of each engine.
● RDS simplifies the management of relational
databases by handling routine administrative tasks,
providing scalability, high availability, and security
features.
● It enables users to focus on their applications while
relying on AWS to manage the underlying
infrastructure and database operations efficiently.

Creation of instances :
● To create instances (also known as virtual
machines) on cloud platforms like AWS, Azure, and
GCP, you can follow these general steps:
1. AWS EC2 (Elastic Compute Cloud):
● Log in to the AWS Management Console.
● Go to the EC2 service dashboard.
● Click on "Launch Instance" to start the instance
creation process.

www.staragile.com
 ● Choose an Amazon Machine Image (AMI) as the
base image for your instance.
● Select the instance type based on your
requirements for CPU, memory, storage, and
networking.
● Configure instance details, such as the number of
instances, networking options, and storage
volumes.
● Set up security groups and define
inbound/outbound traffic rules.
● Optionally, configure additional advanced options
like user data, tags, and monitoring.
● Review the instance configuration and click on
"Launch" to create the instance.
● Select an existing key pair or create a new one to
securely connect to the instance.
● Once launched, the instance will start running, and
you can access it using SSH or remote desktop,
depending on the operating system.

2. Azure Virtual Machines:

● Log in to the Azure portal.
● Go to the Virtual Machines section.
● Click on "Add" to start creating a new virtual
machine.
● Choose the base image for your instance from the
Azure Marketplace or your own custom image.
● Select the instance size based on the desired
compute, memory, and storage capabilities.

www.staragile.com
 ● Configure networking options, such as virtual
networks, subnets, and public IP addresses.
● Set up storage options, including disk types, disk
size, and storage accounts.
● Configure management settings like monitoring,
boot diagnostics, and availability options.
● Define security settings like access control, network
security groups, and inbound/outbound rules.
● Review the configuration summary and click on
"Create" to provision the virtual machine.
● Once created, you can connect to the virtual
machine using SSH or remote desktop, depending
on the operating system.
● Google Cloud Compute Engine:
● Log in to the Google Cloud Console.
● Go to the Compute Engine section.
● Click on "Create Instance" to initiate the instance
creation process.
● Choose a base image from the available operating
system options.
● Configure the machine type based on the desired
CPU, memory, and storage resources.
● Set up networking options, including virtual
networks, subnets, and firewall rules.
● Define disk options, such as boot disks and
additional storage volumes.
● Configure additional instance details like metadata,
startup scripts, and SSH keys.
● Define the desired region and zone where the
instance will be located.

www.staragile.com
 ● Review the configuration and click on "Create" to
provision the instance.
● Once the instance is created, you can connect to it
using SSH or other remote access methods.

● These are general steps, and the specific user

interface and terminology may vary slightly
between cloud platforms.
● It's important to consult the official documentation
and resources provided by the specific cloud
service provider for detailed instructions and best
practices when creating instances.

Users :
● In the context of cloud computing, "users" typically
refer to individuals or entities that interact with
cloud services and resources.
● Here are the different types of users commonly
found in cloud environments:

1. End Users:
● End users are the individuals or entities who utilize
applications or services running on the cloud.
● They interact with the applications through user
interfaces or APIs without directly managing the
underlying cloud infrastructure.

www.staragile.com
 2. Administrative Users:
● Administrative users are responsible for managing
and configuring cloud services and resources.
● They have privileged access and permissions to
perform administrative tasks such as provisioning
and configuring virtual machines, managing
storage, setting up networking, and controlling
access to resources.

3. Developers:
● Developers are responsible for designing, building,
and deploying applications on the cloud.
● They use cloud services and APIs to develop and
integrate cloud-native or cloud-enabled
applications.
● Developers may leverage tools, SDKs (Software
Development Kits), and APIs provided by the cloud
platform to build and deploy their applications.

4. Cloud Administrators:
● Cloud administrators are responsible for
overseeing the overall management and
administration of the cloud environment.
● They handle tasks such as account management,
resource allocation, monitoring, security
configuration, and cost management.

www.staragile.com
 ● Cloud administrators ensure that cloud services are
properly provisioned, configured, and maintained
to meet organizational needs.

5. Security Administrators:
● Security administrators focus on ensuring the
security of cloud resources and data.
● They implement and manage security measures,
such as access controls, encryption, security
groups, firewalls, and identity and access
management (IAM) policies.
● They also monitor for security threats,
vulnerabilities, and compliance requirements.

6. Data Administrators:
● Data administrators are responsible for managing
and organizing data stored in the cloud.
● They handle tasks such as data storage
configuration, backup and recovery, data retention
policies, and data governance.
● Data administrators work to ensure data integrity,
availability, and compliance with data protection
regulations.

7. Service Providers:
● Service providers are entities that offer cloud
services to customers.

www.staragile.com
 ● They are responsible for managing the underlying
infrastructure, ensuring its availability, scalability,
and security.
● Service providers may offer various services, such
as infrastructure as a service (IaaS), platform as a
service (PaaS), software as a service (SaaS), or
specialized services tailored to specific industries
or applications.

● These are some of the common user roles found in

cloud computing environments.
● The specific user roles and responsibilities may
vary depending on the organization, cloud provider,
and the complexity of the cloud infrastructure
being utilized.

Database and s3 storage :

● Databases and Amazon S3 storage are two distinct
storage services provided by Amazon Web Services
(AWS), serving different purposes and use cases.
1. Databases:
● Databases are used to store structured data in a
organized and efficient manner, allowing for data
retrieval, manipulation, and management.
● They provide mechanisms to store, retrieve, update,
and query data using a structured schema.
AWS offers several database services, including:

www.staragile.com
 1. Amazon RDS (Relational Database Service):
● A managed service for relational databases such as
MySQL, PostgreSQL, Oracle, and SQL Server.
2. Amazon Aurora:
● A high-performance, scalable relational database
compatible with MySQL or PostgreSQL.
3. Amazon DynamoDB:
● A fully managed NoSQL database service for
handling large amounts of structured data with
high scalability and low latency.
4. Amazon Redshift:
● A fully managed data warehousing service for
analyzing large datasets and performing complex
queries.
5. Amazon DocumentDB:
● A fully managed NoSQL document database service
compatible with MongoDB.

● These database services handle tasks like

infrastructure provisioning, scaling, backup, and
replication, relieving users from the burden of
managing database infrastructure.

2. Amazon S3 (Simple Storage Service):

● Amazon S3 is a highly scalable and durable object
storage service offered by AWS.
● It provides secure, cost-effective storage for various
types of data, including files, images, videos,
backups, and log files.

www.staragile.com
 ● S3 stores objects in a flat structure, organized in
buckets, where each object has a unique key.
● It is designed to offer high availability, durability,
and low latency for accessing stored data.
● S3 is ideal for storing and retrieving unstructured
or semi-structured data, and it can handle large
data volumes.
● It offers features like versioning, access control,
encryption, lifecycle management, event
notifications, and integration with other AWS
services.
● S3 is often used for backup and archiving, content
distribution, data lakes, static website hosting, and
as a storage backend for various applications and
services.
● While databases are designed for structured data
storage and efficient querying, Amazon S3 provides
scalable and durable object storage for a wide
variety of data types.
● The choice between using a database or S3 storage
depends on the nature of the data, the access
patterns, the need for structured querying, and the
specific requirements of the application or use case.
● In some cases, a combination of both databases and
S3 storage may be used to optimize data storage
and retrieval strategies.

www.staragile.com
 9. Overview of Cloud Storage

Information

● Cloud storage refers to a type of data storage

service provided by cloud computing providers.

www.staragile.com
 ● It allows individuals and organizations to store and
manage their data in a remote, centralized location
hosted by a cloud service provider.

1. Scalability and Elasticity:

● Cloud storage offers virtually unlimited storage
capacity, allowing users to scale their storage needs
based on demand.
● Users can easily increase or decrease their storage
capacity as required, without the need for physical
hardware upgrades.

2. Redundancy and Data Availability:

● Cloud storage providers typically implement data
redundancy mechanisms to ensure high availability
of data.
● They replicate data across multiple servers and
data centers, ensuring that even if one server or
data center fails, the data remains accessible.

3. Data Durability and Reliability:

● Cloud storage services employ various data
protection techniques, such as data replication,
data backups, and error correction codes, to ensure
the durability and reliability of stored data.
● This helps protect against data loss and ensures
data integrity.

www.staragile.com
 4. Accessibility and Anywhere Data Access:
● Cloud storage enables users to access their data
from anywhere with an internet connection.
● Users can securely access their files, documents,
and media from multiple devices, including
desktops, laptops, smartphones, and tablets.

5. Collaboration and Sharing:

● Cloud storage services often provide collaboration
features, allowing multiple users to access and
collaborate on shared files and folders.
● Users can easily share files with others, control
access permissions, and collaborate in real-time,
enhancing productivity and teamwork.

6. Security and Data Protection:

● Cloud storage providers implement robust security
measures to protect user data.
● This includes encryption of data in transit and at
rest, access controls, user authentication
mechanisms, and compliance with
industry-standard security certifications.

7. Cost Efficiency:

www.staragile.com
 ● Cloud storage follows a pay-as-you-go model,
where users pay for the storage capacity and
services they consume.
● This eliminates the need for large upfront
investments in hardware and infrastructure,
making it a cost-effective storage solution.

8. Integration with Cloud Services:

● Cloud storage seamlessly integrates with other
cloud services, such as compute instances,
databases, and analytics services.
● This enables users to leverage their stored data for
various applications and services within the cloud
ecosystem.

● Some popular cloud storage providers include

Amazon S3, Google Cloud Storage, Microsoft Azure
Blob Storage, and Dropbox.
● These providers offer different storage options,
such as object storage, block storage, and file
storage, catering to different use cases and
requirements.

● Overall, cloud storage provides a scalable, reliable,

and accessible solution for storing and managing
data, offering flexibility, cost-efficiency, and
seamless integration with other cloud services.

www.staragile.com
 10. Overview of Public and Private IPS

Information

www.staragile.com
 ● Public and private IP addresses are two types of IP
addresses used in computer networks to identify
devices and facilitate communication.

1. Public IP Address:
● A public IP address is a globally unique address
assigned to a device connected to a public network,
such as the internet.
● It allows the device to communicate directly with
other devices on the internet.
● Public IP addresses are assigned by Internet
Service Providers (ISPs) or network administrators
and are routable across the internet.
● They are used to access resources, services, and
applications over the internet.
2. Private IP Address:
● A private IP address is an address assigned to a
device within a private network, such as a local area
network (LAN).
● It is not globally unique and is used only within the
private network.
● Private IP addresses are defined by the Internet
Assigned Numbers Authority (IANA) and reserved
for use in private networks.
● Devices with private IP addresses cannot be
directly accessed from the internet without
network address translation (NAT) or port
forwarding.

www.staragile.com
 ● Private IP addresses are commonly used in homes,
offices, and other internal networks to allow
devices to communicate with each other.

Key Differences:
1. Uniqueness:
● Public IP addresses are globally unique and must be
unique across the entire internet, while private IP
addresses are not globally unique and can be
reused within different private networks.

2. Scope:
● Public IP addresses are routable across the internet
and used for communication with devices outside
the private network, while private IP addresses are
used for internal communication within a private
network and cannot be directly accessed from the
internet.

3. Address Range:
● Public IP addresses are assigned from public IP
address ranges specified by the IANA, while private
IP addresses are assigned from specific private IP
address ranges, such as the ones defined in RFC
1918 (e.g., 10.0.0.0/8, 192.168.0.0/16).

4. Network Access:

www.staragile.com
 ● Public IP addresses allow devices to access the
internet and be accessed from the internet, while
private IP addresses provide internal network
connectivity but require NAT or port forwarding to
enable external access.

● It's worth noting that Network Address Translation

(NAT) is commonly used to translate private IP
addresses to public IP addresses and vice versa,
allowing devices in a private network to access the
internet using a single public IP address.
● This helps conserve the limited supply of public IP
addresses.

● Understanding the difference between public and

private IP addresses is important in networking to
ensure proper communication and security
between devices within private networks and the
internet.

11. Overview of Elastic IP, CloudFront and ELB

www.staragile.com
 Information

1. Elastic IP (EIP):
● Elastic IP is a static, public IPv4 address associated
with your AWS account.
● It can be allocated to and associated with EC2
instances, network interfaces, or NAT gateways.
● Elastic IP provides a fixed IP address that you can use
for your resources, even if they are stopped or
terminated.
● It is useful for scenarios where you need a consistent
public IP address for applications or services exposed
to the internet.

1. Static Public IP:

● An Elastic IP provides a static, public IPv4 address
that you can allocate and associate with your AWS
resources.
● Unlike standard public IP addresses assigned to EC2
instances, an Elastic IP remains associated with your
account until you choose to release it.
2. Flexibility and Portability:
● With an Elastic IP, you can associate and disassociate
the IP address from instances or network interfaces in
your account.
● This allows you to move the IP address across
different resources within your account, making it
highly flexible and portable
3. Easier Resource Replacement:

www.staragile.com
 ● By using an Elastic IP, you can quickly and easily
remap the IP address to a new instance or network
interface in case of instance failures or when
replacing instances.
4. Public Internet Access:
● An Elastic IP enables resources associated with it to
be accessible from the internet using a consistent IP
address.
● This is especially useful for scenarios where you need
a fixed IP address for applications or services exposed
to the public.
5. DNS Resolution:
● Elastic IP addresses can be associated with domain
names using DNS (Domain Name System) records.
● This allows you to map a custom domain name to the
Elastic IP, providing a user-friendly way to access your
resources.
6. Billing and Pricing:
● While an Elastic IP is free to use as long as it is
associated with a running instance, there may be
charges if the Elastic IP is allocated but not associated
with any instance or if you exceed certain usage
limits.

● It's important to note that Elastic IP addresses are

specific to the AWS account and region in which they
are created.
● When an Elastic IP is associated with an instance, it
becomes the public IP address of that instance.

www.staragile.com
 ● If the Elastic IP is disassociated, it will remain
associated with your account and can be associated
with another instance or resource.

● Elastic IP addresses are commonly used in scenarios

where a fixed public IP address is required, such as
hosting web servers, running VPN gateways, or
setting up highly available services that need to
maintain a consistent IP address.

2. Amazon CloudFront:
● CloudFront is a content delivery network (CDN)
service provided by AWS.
● It caches and delivers content, such as web pages,
images, videos, and other static or dynamic files, to
users globally.
● CloudFront helps improve the performance and
availability of your applications by caching content
closer to end-users, reducing latency and network
congestion.

1. Content Delivery Network (CDN) Functionality:

● CloudFront operates as a globally distributed network

of edge locations strategically located around the
world.

www.staragile.com
 ● When a user requests content, CloudFront delivers it
from the edge location closest to the user, reducing
latency and improving performance.
● The content is cached at edge locations, reducing the
load on the origin server and enabling faster content
delivery for subsequent requests.

2. Global Scale and Availability:

● CloudFront has a vast network of edge locations
globally, ensuring that content can be delivered to
users from the nearest available location.
● It provides high availability and redundancy, as
content is automatically routed to alternative edge
locations if a specific location experiences issues.

3. Security and DDoS Protection:

● CloudFront offers various security features to protect
your content and applications.
● It supports SSL/TLS encryption, allowing secure
communication between CloudFront and end-users.
● CloudFront integrates with AWS Web Application
Firewall (WAF) to provide protection against common
web exploits and DDoS attacks.

4. Flexible Caching Options:

● CloudFront allows you to define caching behaviors
based on your specific needs.
● You can control caching at the edge locations by
setting cache control headers, specifying TTLs

www.staragile.com
 (Time-to-Live), and implementing cache invalidation
strategies.

5. Integration with AWS Services:

● CloudFront seamlessly integrates with other AWS
services, such as Amazon S3, EC2, and Elastic Load
Balancing (ELB), making it easy to deliver content
stored in these services.
● It also integrates with AWS Lambda to enable
dynamic content generation and customization.
● Real-time Monitoring and Reporting:

● CloudFront provides detailed metrics and logs,

allowing you to monitor the performance and usage
of your content delivery.
● You can access real-time statistics and generate
reports to gain insights into your content delivery
performance.
● CloudFront is commonly used to improve the
performance and scalability of websites, web
applications, media streaming, and other
content-heavy services.
● By caching content at edge locations and delivering it
from the nearest location to end-users, CloudFront
reduces latency and optimizes the delivery of static
and dynamic content.

www.staragile.com
 ● It's important to configure CloudFront with
appropriate caching settings, content origin
configurations, and security measures to ensure
optimal performance and protection for your content
and applications.

3. Elastic Load Balancer (ELB):

● ELB is a load balancing service provided by AWS.
● It distributes incoming application or network traffic
across multiple EC2 instances or containers to
improve performance, scalability, and availability.
● ELB automatically scales the load balancer based on
traffic patterns and can handle bursts of traffic.
● It performs health checks on the backend instances
and directs traffic only to healthy instances.
● ELB supports various load balancing types, including
Application Load Balancer (ALB) for HTTP/HTTPS
traffic and Network Load Balancer (NLB) for
TCP/UDP traffic.
● ELB helps achieve fault tolerance and high availability
for your applications by distributing traffic across
multiple instances.

● The combination of these services can help optimize

the performance, availability, and scalability of your
applications.
● Elastic IP provides a fixed public IP address,
CloudFront helps deliver content efficiently, and ELB

www.staragile.com
 distributes traffic among multiple instances for load
balancing and fault tolerance.
● It's worth noting that Elastic IP, CloudFront, and ELB
are independent services and can be used together or
individually based on your specific requirements and
architecture.

1. Load Balancing Types:

● ELB offers different types of load balancers to cater to
specific use cases:
● Application Load Balancer (ALB): Best suited for
HTTP and HTTPS traffic.
● It operates at the application layer (Layer 7) of the
OSI model and can route traffic based on URL path,
host headers, or query parameters.

2. Network Load Balancer (NLB):

● Ideal for handling TCP, UDP, and TLS traffic. It
operates at the transport layer (Layer 4) and can
handle millions of requests per second with ultra-low
latencies.

3. Classic Load Balancer (CLB):

● The legacy load balancer that provides basic load
balancing across multiple instances.

4. Load Balancing and Scaling:

www.staragile.com
 ● ELB evenly distributes incoming traffic across
multiple targets, ensuring that no single target is
overwhelmed.
● It automatically scales its capacity to handle increases
in traffic by adding or removing targets based on
demand.
● ELB performs health checks on the targets, directing
traffic only to healthy instances.

5. High Availability and Fault Tolerance:

● ELB operates across multiple Availability Zones (AZs)
within a region, ensuring high availability and fault
tolerance.
● If one AZ experiences an issue, ELB can route traffic to
healthy instances in other AZs, reducing the impact of
failures.

6. SSL/TLS Termination:
● ELB can handle SSL/TLS termination, offloading the
processing burden from backend instances.
● It supports various SSL/TLS certificate management
options, including AWS Certificate Manager (ACM) for
easy certificate provisioning and renewal.

7. Integrated Services and Features:

● ELB seamlessly integrates with other AWS services,
such as Auto Scaling, to dynamically scale resources
based on traffic patterns.

www.staragile.com
 ● It can be used in conjunction with AWS WAF (Web
Application Firewall) to provide additional security
against common web exploits and DDoS attacks.

8. Logging and Monitoring:

● ELB provides detailed metrics and access logs that
help monitor and analyze the performance of load
balancers.
● These logs can be exported to other AWS services,
such as Amazon S3 or Amazon CloudWatch, for
further analysis and monitoring.

● ELB simplifies the process of distributing traffic

across multiple resources, ensuring high availability
and scalability for applications and services.

● It helps improve the overall performance and

reliability of applications, allowing them to handle
varying levels of traffic efficiently.
● When using ELB, it is essential to configure
appropriate health checks, set up listeners and target
groups, and monitor the performance and health of
the load balancer to ensure optimal operation.

www.staragile.com
 12. Overview of EKS and ACR

Information

Azure Container Registry (ACR):

● Azure Container Registry is a managed private Docker
container registry provided by Microsoft Azure.
● It allows you to store, manage, and deploy container
images.

1. Private Container Registry:

● ACR provides a secure and private registry to store
your container images.
● It allows you to control access to your images and
ensures they are only accessible to authorized users.

2. Integration with Azure Services:

● ACR seamlessly integrates with other Azure services
such as Azure Kubernetes Service (AKS), Azure
DevOps, and Azure Functions.

www.staragile.com
 ● This enables you to build end-to-end container-based
solutions within the Azure ecosystem.

3. Scalability and Availability:

● ACR can scale to meet your image storage needs.
● It provides high availability and redundancy across
multiple Azure regions, ensuring reliable access to
your container images.

4. Security and Compliance:

● ACR offers features such as role-based access control
(RBAC), Azure Active Directory integration, and
content signing to enhance the security and
compliance of your container images.

Key Differences:
1. Cloud Providers:
● EKS is an offering from AWS, while ACR is part of the
Azure cloud platform.
2. Managed Kubernetes Service vs. Container Registry:
● EKS focuses on providing a managed Kubernetes
service, handling the management of the Kubernetes
control plane.
● ACR, on the other hand, is specifically designed for
container image management and provides a secure
private registry.
3. Integration with Cloud Ecosystem:

www.staragile.com
 ● Both EKS and ACR integrate well with their respective
cloud ecosystems.
● EKS integrates with various AWS services, while ACR
integrates with Azure services, allowing you to
leverage additional capabilities within your cloud
environment.

● It's important to note that while EKS and ACR are

cloud-specific offerings, they both enable you to
deploy and manage containerized applications
effectively.
● EKS focuses on managing the Kubernetes control
plane and providing a managed Kubernetes
environment, while ACR focuses on securely storing
and managing container images within the cloud.

● High level overview of EKS and ECR(needs to be

explained in detail with docker and kubernetes
modules)
● Here's a high-level overview of Amazon Elastic
Kubernetes Service (EKS) and Amazon Elastic
Container Registry (ECR), along with their
relationship to Docker and Kubernetes:

1. Amazon Elastic Kubernetes Service (EKS):

● Amazon EKS is a fully managed service provided by
Amazon Web Services (AWS) for running Kubernetes
applications in the cloud.

www.staragile.com
 ● It simplifies the deployment, management, and
scaling of containerized applications using
Kubernetes. Here are key points about EKS:

a. Kubernetes Management:
● EKS handles the underlying infrastructure and
management aspects of Kubernetes, such as control
plane deployment, upgrades, and scaling.
● It allows you to focus on deploying and managing
your applications.

b. Managed Control Plane:

● EKS provides a managed control plane for
Kubernetes.
● It sets up and manages the control plane components,
including the API server, etcd storage, and scheduler,
ensuring their availability and scalability.

c. Cluster Scalability:
● EKS allows you to easily scale your Kubernetes cluster
by adding or removing worker nodes to meet
application demands.
● It supports automatic scaling using AWS Auto Scaling
groups.

d. Security and Compliance:

www.staragile.com
 ● EKS integrates with AWS Identity and Access
Management (IAM) for fine-grained access control to
Kubernetes resources.
● It also provides features like encryption, VPC
networking, and AWS Security Groups to enhance the
security of your EKS clusters.

2. Amazon Elastic Container Registry (ECR):

● Amazon ECR is a fully managed container registry
provided by AWS.
● It allows you to store, manage, and deploy container
images.

a. Private Container Registry:

● ECR provides a private, secure repository for storing
your container images.
● It allows you to control access to your images and
ensures that they are only accessible to authorized
users.

b. Integration with Docker:

● ECR seamlessly integrates with Docker, making it easy
to push and pull container images from ECR using
standard Docker CLI commands.
● It is compatible with the Docker Registry API,
allowing you to use ECR as the registry for your
Dockerized applications.

www.staragile.com
 c. Scalability and Availability:
● ECR automatically scales to meet your image storage
needs.
● It supports high availability across multiple
Availability Zones, ensuring reliable access to your
container images.

d. Integration with EKS:

● ECR is the recommended container registry for EKS. It
integrates well with EKS, allowing you to store and
deploy container images directly to your EKS clusters.

Relationship between Docker, Kubernetes, EKS, and ECR:

1. Docker:
● Docker is an open-source platform for building,
packaging, and distributing containerized
applications.
● It provides tools and technologies to create, run, and
manage containers.
● With Docker, you can package your application and its
dependencies into a container image.

2. Kubernetes:
● Kubernetes is an open-source container orchestration
platform.

www.staragile.com
 ● It helps manage and automate the deployment,
scaling, and management of containerized
applications across clusters of machines.
● Kubernetes provides features for load balancing,
scaling, service discovery, and container lifecycle
management.

3. EKS and ECR:

● EKS and ECR are AWS services that complement
Docker and Kubernetes:
● EKS provides a managed Kubernetes environment,
handling the management of the control plane and
simplifying cluster management tasks.
● ECR provides a managed container registry, allowing
you to store and manage your container images
securely.

● When using EKS, you can leverage ECR as the storage

and deployment mechanism for your container
images.
● This allows for a seamless integration between the
different components of your containerized
application stack.

● Overall, EKS and ECR enable you to build, deploy, and

manage scalable and highly available containerized
applications using Kubernetes on the AWS platform,
while Docker provides the containerization

www.staragile.com
 technology and tools to package and distribute your
applications.

Practical :
1. AWS Free Tier Account Creation

● To create an AWS Free Tier account, follow these

steps:

1. Go to the AWS Free Tier website:

● Visit the AWS Free Tier webpage at
https://aws.amazon.com/free/ to get started.
2. Click on "Create a Free Account":
● On the AWS Free Tier webpage, click on the "Create a
Free Account" button to begin the account creation
process.
3. Provide your email address:
● Enter your email address in the provided field.
● Make sure to use a valid email address as AWS will
send a verification email to this address.
4. Choose "I am a new user" option:
● Select the "I am a new user" option and click on the
"Sign in using our secure server" button.

www.staragile.com
 5. Create an AWS account:
● Fill in the required information to create your AWS
account.
● This includes your name, email address, and a
password for your AWS account.
● Click on the "Continue" button when you're done.
6. Provide your contact information:
● Enter your contact information, including your
address and phone number.
● Click on the "Create Account and Continue" button.
7. Payment information:
● You will be prompted to enter your payment
information.
● Although signing up for the Free Tier doesn't require
immediate payment, AWS requires a valid payment
method for verification purposes.
● AWS will only charge you if you exceed the Free Tier
limits or choose to use services that are not covered
by the Free Tier.
8. Identity verification:
● Follow the instructions to verify your identity.
● This may involve providing a phone number for
verification through a call or text message.
9. Select Support Plan:
● Choose the support plan that suits your needs.
● The "Basic" plan is available for free and provides
access to basic support resources.
10. Confirmation:
● Review the information you provided and confirm
your account creation.

www.staragile.com
 ● AWS will send a confirmation email to the email
address you provided.
11. Complete registration:
● Follow the instructions in the confirmation email to
complete your account registration.
● This may involve clicking on a verification link.

● Once your AWS Free Tier account is created and

verified, you can log in to the AWS Management
Console and start exploring the various services and
resources available under the Free Tier.

● Remember to monitor your usage and stay within the

Free Tier limits to avoid any unexpected charges.
● AWS provides detailed documentation and guidance
on the Free Tier usage limits, which you can refer to
while using the services.

2. IAM user creation

● To create an IAM (Identity and Access Management)

user in AWS, follow these steps:
1. Sign in to the AWS Management Console:
● Open your web browser and go to the AWS
Management Console at

www.staragile.com
 https://console.aws.amazon.com/. Sign in using your
AWS account credentials.
2. Open the IAM service:
● In the AWS Management Console, search for "IAM" or
find the IAM service under the "Security, Identity &
Compliance" category. Click on it to open the IAM
dashboard.
3. Navigate to "Users" section:
● In the IAM dashboard, click on "Users" in the
left-hand navigation pane.
● This will show you the list of existing IAM users.
4. Click on "Add user":
● On the IAM Users page, click on the "Add user" button
to start creating a new IAM user.
5. Provide user details:
● In the "Add user" wizard, enter a unique name for the
IAM user in the "User name" field.
● You can also enable programmatic access and AWS
Management Console access for the user by selecting
the respective checkboxes.
6. Set permissions:
● Under "Set permissions", you can assign the
necessary permissions to the IAM user.
● You can choose to add the user to one or more
existing groups with predefined permissions or
directly attach policies to the user.
● Policies define the permissions and access rights for
the user.
● You can select from the list of existing policies or
create custom policies based on your requirements.

www.staragile.com
 7. Add tags (optional):
● You can add tags to the IAM user for better
organization and management of users within your
AWS account.
● Tags are key-value pairs that you can use to categorize
and track resources.
8. Review and create:
● Review the user details, permissions, and tags you
have provided.
● If everything looks correct, click on the "Create user"
button to create the IAM user.
9. Note the user details:
● After the user is created, make note of the generated
access key ID and secret access key if you have
enabled programmatic access for the user.
● These credentials are required for programmatic
access to AWS services via APIs or CLI.
10. Provide login details (if enabled):
● If you have enabled AWS Management Console access
for the user, you can provide the user with the login
URL (usually in the format
https://your-account-id.signin.aws.amazon.com/cons
ole/) and their username.
● The user will need to set a password when they first
sign in.

● That's it! You have successfully created an IAM user in

AWS.

www.staragile.com
 ● The user can now access AWS services and resources
based on the permissions and policies assigned to
them.
● Ensure that you communicate the necessary login
details and access instructions to the user as required.

3.EC2 instance creation

To create an EC2 (Elastic Compute Cloud) instance in AWS,

follow these steps:
1. Sign in to the AWS Management Console:
● Open your web browser and go to the AWS
Management Console at
https://console.aws.amazon.com/. Sign in using your
AWS account credentials.
2. Open the EC2 service:
● In the AWS Management Console, search for "EC2" or
find the EC2 service under the "Compute" category.
● Click on it to open the EC2 dashboard.
3. Launch instance:
● In the EC2 dashboard, click on the "Launch instance"
button to start the instance creation process.

www.staragile.com
 4. Choose an Amazon Machine Image (AMI):
● An AMI is a pre-configured template that contains the
necessary operating system and software for your
instance.
● Select the desired AMI based on your requirements.
● You can choose from various Amazon-provided AMIs
or use your own custom AMIs.
5. Choose an Instance Type:
● Select the instance type that best suits your needs in
terms of CPU, memory, storage, and networking
capabilities.
● The available instance types range from
general-purpose instances to specialized instances
optimized for specific workloads.
6. Configure Instance Details:
● Configure the instance details, including the number
of instances to launch, network settings, subnet,
security groups, and other advanced options.
● You can customize these settings based on your
specific requirements.
7. Add Storage:
● Specify the storage requirements for your instance.
● You can choose the storage type (EBS volumes), size,
and configuration options.
● You can also add additional volumes if needed.
8. Configure Security Group:
● Set up the security group for your instance.
● A security group acts as a virtual firewall, controlling
inbound and outbound traffic to the instance.

www.staragile.com
 ● You can specify the rules to allow or deny access
based on protocols, ports, and IP addresses.
9. Review Instance Configuration:
● Review the instance configuration settings to ensure
they are correct.
● If needed, you can go back and make any necessary
changes.
10. Add Tags (optional):
● You can add tags to your instance for better
organization and management.
● Tags are key-value pairs that allow you to categorize
and track your resources.
11. Configure Key Pair:
● If you plan to connect to your instance using SSH, you
need to create or select an existing key pair.
● This key pair will be used to securely log in to the
instance.
12. Review and Launch:
● Review all the configuration details of your instance.
● If everything looks correct, click on the "Launch"
button to start the instance creation process.
13. Select Key Pair and Launch Instances:
● In the final step, select the key pair you configured in
step 11.
● You will need the private key file associated with this
key pair to access the instance.
● Once selected, click on the "Launch Instances" button.
14. View Instances:

www.staragile.com
 ● After launching the instance, you will be redirected to
the EC2 dashboard where you can view the status and
details of your instances.
● It may take a few minutes for the instance to be fully
initialized and running.

● That's it! You have successfully created an EC2

instance in AWS.
● You can now connect to the instance, install
applications, and configure it as needed to run your
workloads.
● Remember to manage your instances and their
associated resources effectively to optimize costs and
security.

4. Security Group Configuration

● Security groups in AWS are used to control inbound

and outbound traffic to your EC2 instances.
● They act as virtual firewalls, allowing you to define
rules that specify which traffic is allowed or denied.

1. Access the AWS Management Console:

● Sign in to the AWS Management Console at
https://console.aws.amazon.com/ using your AWS
account credentials.
2. Open the EC2 service:

www.staragile.com
 ● In the AWS Management Console, search for "EC2" or
find the EC2 service under the "Compute" category.
● Click on it to open the EC2 dashboard.
3. Navigate to "Security Groups":
● In the EC2 dashboard, click on "Security Groups" in
the left-hand navigation pane.
● This will show you a list of existing security groups.
4. Create a new security group:
● To create a new security group, click on the "Create
Security Group" button.
5. Configure the security group:
a. Security Group Name and Description:
● Provide a name and description for your security
group.
b. VPC (Virtual Private Cloud):
● Select the VPC in which you want to create the
security group.
● If you don't have a VPC, you can create one first.
c. Inbound Rules:
● Specify the inbound traffic rules for your security
group.
● These rules control incoming traffic to your EC2
instances.
● You can add rules for specific protocols (e.g., HTTP,
HTTPS, SSH) and port ranges, and define the source IP
addresses or CIDR blocks allowed.
d. Outbound Rules:
● Specify the outbound traffic rules for your security
group.

www.staragile.com
 ● These rules control outgoing traffic from your EC2
instances.
● You can define rules similar to the inbound rules,
specifying the destination IP addresses or CIDR
blocks allowed.
e. Review and Create:
● Review the configuration of your security group.
● If everything looks correct, click on the "Create"
button to create the security group.
6. Apply the security group to your EC2 instance:
● After creating the security group, you can associate it
with your EC2 instance.
● In the EC2 dashboard, select the instance for which
you want to configure the security group.
● Go to the "Actions" menu, select "Networking," and
then click on "Change Security Groups."
● Choose the newly created security group and save the
changes.

● Remember to configure your security group rules

carefully to allow only necessary and authorized
traffic.
● Regularly review and update your security group
rules as per your application requirements.
● You can modify the rules at any time by selecting the
security group in the EC2 dashboard and choosing the
"Inbound Rules" or "Outbound Rules" tabs.

www.staragile.com
 ● Note that security groups are stateful, meaning that if
you allow inbound traffic for a specific protocol and
port, the corresponding outbound traffic is
automatically allowed.
● This simplifies the management of network traffic
rules.

5. Creation of database using RDS

To create a database using Amazon RDS (Relational

Database Service), follow these steps:

1. Sign in to the AWS Management Console:

● Open your web browser and go to the AWS
Management Console at
https://console.aws.amazon.com/. Sign in using your
AWS account credentials.
2. Open the RDS service:
● In the AWS Management Console, search for "RDS" or
find the RDS service under the "Database" category.
● Click on it to open the RDS dashboard.
3. Click on "Create database":
● On the RDS dashboard, click on the "Create database"
button to start the database creation process.
4. Choose a database engine:
● Select the database engine you want to use for your
database.
● RDS supports various engines like Amazon Aurora,
MySQL, PostgreSQL, Oracle Database, and more.

www.staragile.com
 ● Choose the appropriate engine based on your
requirements.
5. Select a use case:
● Choose the use case that best matches your database
requirements.
● For example, if you need a production database, select
the "Production" option.
● If you need a database for testing or development
purposes, select the "Dev/Test" option.
6. Specify the DB details:
● Provide the necessary details for your database, such
as the DB instance identifier, username, and
password.
● You can also customize the other settings like DB
instance size, storage, backup options, and
maintenance preferences.
7. Configure advanced settings:
● If required, you can configure advanced settings such
as VPC, subnet group, security groups, encryption,
and more.
● These settings allow you to customize the network
and security configurations for your database.
8. Review and create the database:
● Review all the configuration details for your
database.
● If everything looks correct, click on the "Create
database" button to initiate the database creation
process.
9. Wait for the database to be created:

www.staragile.com
 ● It may take a few minutes for the database to be
created.
● You can monitor the progress on the RDS
dashboard. Once the database is created, it will be
in the "Available" state.
10. Connect to the database:
● Once the database is available, you can connect to it
using the endpoint provided in the RDS console.
● Use the database endpoint, username, and
password to establish a connection and start using
the database.

● Remember to manage your RDS database instances,

including monitoring, backups, and security, as per
your requirements.
● You can perform various operations on your
database through the RDS console, such as
modifying configurations, taking backups, and
performing scaling operations.

● It's important to note that the specific steps and

options may vary based on the selected database
engine and the AWS region you are using.
● Ensure that you refer to the official AWS
documentation for detailed instructions specific to
your use case.

6. Connecting EC2 instance

www.staragile.com
 ● To connect to an EC2 instance in AWS, you can use
SSH (Secure Shell) for Linux-based instances or RDP
(Remote Desktop Protocol) for Windows-based
instances.
● Here are the general steps to connect to an EC2
instance:
1. Retrieve the instance details:
● Sign in to the AWS Management Console and navigate
to the EC2 service.
● Locate the EC2 instance you want to connect to and
note down its public IP address or public DNS name.

2. Configure security group:

● Ensure that the security group associated with the
EC2 instance allows inbound SSH (port 22 for Linux)
or RDP (port 3389 for Windows) connections.
● If needed, modify the security group rules to allow
access from your IP address.

3. Connecting to Linux-based instances (SSH):

● Open a terminal or command prompt on your local
machine.
● Use the ssh command followed by the username and
the public IP address or public DNS name of the
instance.
● For example:

www.staragile.com
 ● If prompted, confirm the authenticity of the host by
typing "yes" and pressing Enter.
● Enter the private key passphrase if required.
● You should now be connected to the Linux-based EC2
instance.

4. Connecting to Windows-based instances (RDP):

● On your local machine, open the Remote Desktop
client (e.g., "Remote Desktop Connection" on
Windows).
● Enter the public IP address or public DNS name of the
instance in the "Computer" field.
● Click on the "Connect" button to initiate the RDP
connection.
● If prompted, enter the username and password for
the Windows instance.
● You should now be connected to the Windows-based
EC2 instance.

● Remember to replace "username" with the

appropriate username for your instance, and
"/path/to/private_key.pem" with the actual path to
your private key file for Linux-based instances.
● Also, ensure that you have the necessary permissions
and access credentials to connect to the instance.

www.staragile.com
 ● If you encounter any issues during the connection
process, make sure that the instance is running, the
security group rules are properly configured, and you
have the correct credentials.
● Refer to the AWS documentation for more detailed
instructions and troubleshooting steps specific to
your use case and instance configuration.

7. Connecting Database

To connect to a database, you typically need the

following information:

1. Database Hostname or IP Address:

● This is the address of the server where the
database is running.
● It can be a hostname or an IP address.
2. Database Port:
● The port number on which the database is listening
for incoming connections.
● Common database ports include 3306 for MySQL,
5432 for PostgreSQL, and 1433 for Microsoft SQL
Server.
3. Database Name:
● The name of the specific database you want to
connect to.
● In some cases, the database name may be optional
if you're connecting to the default database.
4. Username and Password:

www.staragile.com
 ● The credentials (username and password) required
to authenticate and authorize access to the
database.

● The exact steps to connect to a database vary

depending on the database management system
(DBMS) you are using and the client or
programming language you are working with.
● Here's a general outline of the steps:

a. Choose a Database Client:

● Select a database client or tool that supports the
DBMS you are using.
● Examples include MySQL Workbench, pgAdmin, or
Microsoft SQL Server Management Studio.
b. Open the Database Client:
● Launch the database client on your local machine.
c. Enter Connection Details:
● In the database client, look for an option to create a
new connection or connect to a database.
● Enter the following information:

● Hostname or IP address
● Port number
● Database name
● Username
● Password
d. Test the Connection:
● Once you have entered the connection details, test
the connection to ensure it is successful.

www.staragile.com
 ● The database client will attempt to connect to the
database using the provided information.

e. Perform Database Operations:

● Once connected, you can use the database client to
perform various operations such as executing
queries, managing tables and indexes, and
manipulating data within the database.

● Remember to ensure that your network

connectivity allows access to the database server
and that the necessary security group rules or
firewall settings are configured to permit the
connection.
● Additionally, make sure you have the appropriate
permissions and credentials to access the database.

● The specific steps and options for connecting to a

database can vary depending on the DBMS and
client you are using.
● Consult the documentation or resources provided
by the DBMS vendor or the specific client tool for
detailed instructions on connecting to your
particular database.

8. Creation of S3 storage

To create an S3 (Simple Storage Service) storage

bucket in AWS, follow these steps:

www.staragile.com
 1. Sign in to the AWS Management Console:
Open your web browser and go to the AWS
Management Console at
https://console.aws.amazon.com/. Sign in using your
AWS account credentials.

2. Open the S3 service:

In the AWS Management Console, search for "S3" or
find the S3 service under the "Storage" category. Click
on it to open the S3 dashboard.

3. Click on "Create bucket":

On the S3 dashboard, click on the "Create bucket"
button to start the bucket creation process.

4. Provide bucket details:

a. Bucket name:
● Enter a unique and meaningful name for your S3
bucket.
● The name must be globally unique across all AWS
accounts.
b. Region:
● Select the AWS region where you want to create the
S3 bucket.
● Choose a region that is geographically close to your
users or where you want to store your data.
c. Copy settings from existing bucket (optional):
● If you have an existing bucket and want to copy its
settings, you can choose to do so.

www.staragile.com
 ● Otherwise, leave this option unchecked.

5. Configure options:

a. Block Public Access:

● Choose whether to allow public access to the
bucket and its objects.
● It's recommended to restrict public access for
security purposes.
b. Bucket Versioning (optional):
If you want to enable versioning for your bucket,
select the appropriate option.
● Versioning allows you to preserve, retrieve, and
restore previous versions of objects stored in the
bucket.
c. Server Access Logging (optional):
● If you want to enable server access logging for your
bucket, select the appropriate option.
● Server access logging records detailed information
about every request made to the bucket.

6. Set permissions:

a. Access Control List (ACL):

● Specify the access permissions for the bucket using
an ACL.
● You can set permissions for individual AWS
accounts or make the bucket publicly accessible.
b. Bucket Policy (optional):

www.staragile.com
 ● If you need more fine-grained access control, you
can create a bucket policy that defines specific
access rules and permissions.
7. Review and create the bucket:
● Review all the configuration details for your S3
bucket.
● If everything looks correct, click on the "Create
bucket" button to initiate the bucket creation
process.

8. Access the bucket:

● After the bucket is created, you can access it
through the S3 dashboard.
● You can upload, download, and manage objects
within the bucket using the S3 console or
programmatically via AWS SDKs or APIs.

● Remember to manage your S3 buckets effectively,

including setting appropriate access controls,
managing versioning and lifecycle policies, and
regularly monitoring and auditing your data
storage and usage.

● Please note that the specific steps and options may

vary based on the AWS region and the version of
the AWS Management Console.
● Ensure that you refer to the official AWS
documentation for detailed instructions specific to
your use case and AWS environment.

www.staragile.com