AWS

Regions &
Availability
Zones

2
 Regions and
Availability
• Zones
AWS has multiple data centers located around the
world, known as regions, which allow customers to
choose the location that best suits their needs.
• Each AWS region is a separate geographic area that
consists of multiple availability zones (AZs) that are
isolated from one another in terms of infrastructure,
power, and networking. This means that if one AZ
fails, the others will remain unaffected, providing high
availability and reliability to customers.

3
IAM
 IAM
●
Features
Collaborative AWS Account Usage

● Fine-grained Permissions

● Enhanced Security with Multi-Factor

Authentication (MFA)

● Identity and Access Management (IAM) Roles

● No Cost for Utilization

9
S3
Simple storage service
What is S3?

● AWS S3 is a cloud-based object storage service that provides a simple and

scalable way to store, manage, and retrieve data.
● S3 is designed to provide high durability, availability, and performance, and it
can be used for a wide range of use cases
● Backup and storage, Disaster Recovery, Archive, Hybrid Cloud storage,
Application hosting, Media hosting, Data lakes & big data analytics, Software
delivery, Static website.
EC2
 EC2
Features

• EC2 offers a web services API that allows you to create, control, and
remove virtual servers within the Amazon Cloud.

• Ease In Scaling Up/Down.

• You only pay for the resources you use.

• It works seamlessly with many other Amazon services.

2
2
Ec2
Pricing

1
2 Reserved
On Demand
Pay per hour or Reserve Capacity(1 or 3
seconds. yrs) for discounts.

3 Spot 4 Dedicated Hosts

Bid your price for unused Physical Server dedicated
ec2 capacity. for you.
• An Amazon Machine Image (AMI) contains the necessary details to start an
instance, which is essentially a virtual server in the cloud.
• When initiating an instance, the type you choose dictates the underlying
hardware of the host computer assigned to your virtual server.
• Amazon EC2 offers versatile, budget-friendly, and user-friendly data storage
choices for your virtual server instances.
• A security group functions as a virtual firewall, managing the traffic for one or
more instances.
• Amazon EC2 key pair is used to encrypt and decrypt login
information.
Creation of EC 2
Instance

13
 Outbound:- Traffic
Inbound :- Traffic
going from
coming from
Instance to outside
outside on the
Instance

14
EBS (Elastic Block
Storage)
ELASTIC BLOCK
STORAGE
★ Block based storage

★ Runs ec2 OS, store data from db, file data, etc

★ Placed in specific AZ. Automatically replicated within

the AZ to protect from failure.

★ Snapshot is backup of a volume

16
CLOUD
W ATCH
● CloudWatch helps keep an eye on how well your AWS stuff is doing. It looks
at the basic measures for things like storage, servers, and databases.

● Metrics: CloudWatch can keep track of how different services are doing, such
as storage, servers, and more.

● Events: It tells you quickly when something changes in your AWS resources.

● Logs: You can use CloudWatch to keep and check your log files from
different sources, like servers and AWS services.

18
Alarm monitors CloudWatch metrics for
Instances.

Amazon Simple Notification Service (SNS) is like a

messaging manager. It organizes and handles the
sending of messages to different places or applications
that have signed up to receive them.

19
20
LOAD BALANCER

• Load Balances are

servers that forward
traffic to multiple
servers (e.g., EC2
instances) downstream
Why use a load balancer?

• Spread load across multiple downstream instances

• Expose a single point of access (DNS) to your application
• Seamlessly handle failures of downstream instances
• Do regular health checks to your instances
• Provide SSL termination (HTTPS) for your websites
• Enforce stickiness with cookies
• High availability across zones
• Separate public traffic from private traffic
Types of load balancer on AWS

• Classic Load Balancer (v1 - old generation) – 2009 – CLB

HTTP, HTTPS, TCP, SSL (secure TCP)
• Application Load Balancer (v2 - new generation) – 2016 – ALB
HTTP, HTTPS, WebSocket
• Network Load Balancer (v2 - new generation) – 2017 – NLB
TCP, TLS (secure TCP), UDP
• Gateway Load Balancer – 2020 – GWLB
Operates at layer 3 (Network layer) – IP Protocol
AUTO
SCALING
 AUTO
SCALING
Auto Scaling is a service that automatically
monitors and adjusts compute resources to
maintain performance for applications hosted in
the AWS.

Alarm monitors CloudWatch metrics for

Instances.

25
A launch configuration/Template is an instance configuration template that an
Auto Scaling group uses to launch EC2 instances.

Scaling policy is used to increase and decrease the

number of running instances in the group
dynamically to meet changing conditions.

26
27
28
Relational
DataBase
(RDS)
 DB
● Installs
Administration
● Patching
● Monitoring
● Performance
Tuning
● Backups
● Scaling
● Security
● Hardware
upgrades
● Storage
Management
 RD
❖
S
Amazon Relational Database Service is a distributed relational
database service.

❖ High Availability Multi-AZ Deployments.

❖ Effortless Scaling.

❖ Read Replicas for performance

AW S
CLI
❖ AWS Command Line Interface (AWS CLI) is an Amazon Web
Services tool that enables to control Amazon public cloud
services by typing commands on a specified line.
Here, we can create any AWs service through AWS CLI.

6
2
Virtual Private
Cloud (VPC)
Corporate
Datacenter
VPC
Network
Virtual Private Cloud
(VPC)
• VPC is a logical data center within an AWS Region.

• virtual private cloud is an on-demand configurable pool

of shared computing resources allocated within a public
cloud environment.

• Control over network environment, select IP address

range, subnets and configure route tables and
gateways.
Network Address Translation (NAT) gateway to
enable instances in a private subnet to connect
to the internet or other AWS services.

An internet gateway is a horizontally scaled, redundant, and highly

available VPC component that allows communication between
instances in your VPC and the internet.
High Availability |
VPC