• Save
Introduction to AWS tools
Upcoming SlideShare
Loading in...5
×
 

Introduction to AWS tools

on

  • 2,581 views

An introduction to the tools available for making use of the AWS cloud.

An introduction to the tools available for making use of the AWS cloud.

Statistics

Views

Total Views
2,581
Views on SlideShare
2,282
Embed Views
299

Actions

Likes
7
Downloads
37
Comments
0

3 Embeds 299

http://www.cloudintroduction.net 282
http://0.0.0.0:4331 10
http://0.0.0.0 7

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Introduction to AWS tools Introduction to AWS tools Presentation Transcript

  • E P I S O D E 1 Getting Started with Amazon Web Services Matt Wood T E C H N O L O G Y E VA N G E L I S T
  • Hello.
  • Thank you.
  • 4
  • Cloud Foundations concepts 4Maximising Security value in the Cloud
  • 1Cloud concepts Or: five things I wish I’d known before getting started
  • 1. Signing up
  • On the web
  • Free tierFor new customers
  • 750 hours of compute 10Gb network storage Free tier 5Gb SimpleDB, queues,Simple Storage Service notications
  • 2. Interacting
  • API driven
  • RESTAPI driven SOAP
  • CLI
  • ec2-run-instances
  • ec2-terminate-instances
  • SDK
  • RubyJava .Net SDK iOS Android PHP
  • Management console
  • Linux
  • Certificate based root access
  • mza$ ssh -i web/us-east/aws-web.pemroot@ec2-204-236-247-169.compute-1.amazonaws.comLast login: Wed Jun 22 11:15:20 2011 from 82.26.6.99 __| __|_ ) CentOS _| ( / v5.4 ___|___|___| HVMx64 Welcome to an EC2 Public Image :-)[root@ip-10-17-135-244 ~]#
  • Windows
  • Administrator access
  • 3. Storage options
  • Ephemeral storage
  • Included with compute Ephemeral storage Lost at Not backed uptermination
  • When it’s gone, it’s gone
  • Elastic Block Store
  • Network attached Mount as volumeElastic Block Store Snapshot Persistent
  • PersistentRoot partitions. Mount as volumes.
  • S3
  • Highly durable Highly available S3 Tolerant to two simultaneous failures
  • 99.999999999% durability
  • 4. Payment options
  • Pay as you go
  • Gb/month
  • ECU/hour
  • No minimum
  • No subscriptions
  • Pricing tiers
  • Consolidated billing
  • Options
  • On-demand
  • Reservedcapacity
  • Spot instances
  • On-demand: $0.57 per hour
  • Bandwidth
  • Free inbound
  • Reducedoutbound
  • Pricing calculator
  • calculator.s3.amazonaws.com/calc5.html
  • 5. Availability Zones
  • us-east us-west eu-westap-southeastap-northeast
  • eu-west-1aeu-west-1beu-west-1c
  • 2Foundations
  • Compute
  • Elastic Compute Cloud
  • Windows + Linux instances
  • Instance sizes
  • High memoryMicro High CPU Instance sizes Standard Cluster Compute
  • Dual “Nehalem” 1.7Tb disk HVM
  • Amazon Machine Image
  • State Config Code ServicesAmazon Machine Image ami-219387e
  • Pre-configured
  • Custom
  • Private Custom Public
  • Elastic Block Stora
  • m1.large
  • m1.large100Gb
  • m1.large Persistent 100Gb ScalableElastic block store Snapshot
  • m1.large AMISNAPSHOT 100Gb
  • Template m1.large AMI AMISNAPSHOT 100Gb SNAPSHOT
  • Template m1.large AMI AMISNAPSHOT 100Gb SNAPSHOT Private, stored securely
  • m1.large AMI AMISNAPSHOT 100Gb SNAPSHOT
  • m1.large AMI m1.largeSNAPSHOT 100Gb 100Gb
  • m1.large m1.large m1.large m1.large100Gb 100Gb 100Gb 100Gbm1.large m1.large m1.large m1.large100Gb 100Gb 100Gb 100Gb
  • cc1.4xlarge
  • cc1.4xlarge 100Gb
  • Mount, and away you go...
  • Oracle
  • Oracle E-business suite Oracle FusionOracle Database middleware 11G OracleOracle Enterprise Oracle on manager RDS Oracle Enterprise Linux
  • Licence on EC2 OracleUse existing licences
  • Days to minutes
  • Certified +supported
  • SAP
  • Rapid Deployment SAP Solutions BusinessObjects SAP Use existingLicence for EC2 licences
  • Storage
  • Simple Storage Service
  • Files in directories
  • Objects in buckets
  • http://s3.amazonaws.com/bucketname/objectid http://bucketname.s3.amazonaws.com/objectid
  • https://s3.amazonaws.com/bucketname/objectidhttps://bucketname.s3.amazonaws.com/objectid
  • Large objects 5Tb
  • Import/Export
  • S3 websites
  • Databases
  • Flexibility
  • AMI SNAPSHOTPackaged +ready to roll
  • Oracle 11g 32 and 64 bit
  • IBM DB2 32 and 64 bit
  • SQL Server 32 and 64 bit
  • PostgreSQL and EnterpriseDB
  • oracle-corporation
  • running
  • Configure, optimise
  • Snapshots + backup
  • RelationalDatabase Service
  • MySQL OracleRelational Database Service
  • Managed
  • Rapid
  • Scalable storage
  • Scalable instance
  • Synchronous replication eu-west-1a eu-west-1bHigh availability. Multi-AZ.
  • Asynchronous replication Read replicas
  • Remove the “muck”
  • Extraservices
  • Simple Queue Service
  • SimpleNotification Service
  • ElasticMapReduce
  • S3Input data
  • S3 Input dataCode Elastic MapReduce
  • S3 Input dataCode Elastic Name MapReduce node
  • S3 Input dataCode Elastic Name MapReduce node Elastic cluster
  • S3 Input dataCode Elastic Name MapReduce node HDFS Elastic cluster
  • S3 Input dataCode Elastic Name MapReduce node Queries HDFS + BI Via JDBC, Pig, Hive Elastic cluster
  • S3 Input dataCode Elastic Name Output MapReduce node S3 + SimpleDB Queries HDFS + BI Via JDBC, Pig, Hive Elastic cluster
  • S3 Input data Elastic OutputMapReduce S3 + SimpleDB
  • Undifferentiated heavy lifting
  • Platform grows with you
  • Premium support Bronze, Silver, Gold, Platinum
  • 3Maximising Value
  • Elasticity
  • Design for elasticity
  • Horizontal scale
  • “Everything fails, all the time” Werner Vogels
  • Build for failure
  • Build foravailability
  • Treat your data asyour royal garden
  • Compute as aninterchangeable resource
  • Auto-scaling
  • Elastic Load Balancer
  • Choice of instance sizes
  • Elastic by defaultSimpleDB, SQS, SNS, S3
  • Automatic
  • Applicationsin the cloud
  • 3 tiers
  • Application tierCode Configuration
  • Application tier Code Configuration Service tier Integration Operating system settings Services +Launch configuration configuration
  • Application tier Code Configuration Service tier Integration Operating system settings Services +Launch configuration configuration Infrastructure tier AMIs Architecture Multi-AZScaling rules Security groups Middleware
  • Value baked into each tier
  • Value inapplication
  • Value inservice tier
  • Optimisation Configuration Value in service tier Technology choices
  • Value ininfrastructure
  • Engine room Optimised Value in infrastructure Scalable Fault tolerant
  • Maximising Automationmaximises this value value
  • Automateeverything
  • CloudFormation
  • Template
  • Define a fullinfrastructure stack
  • Auto-scaling RDS EC2 SNS SimpleDB SQS ResourcesElastic Beanstalk CloudWatch Security groups Tags
  • Template CloudFormation Provisioned resources
  • Completedefinition
  • Atomic
  • Idempotent
  • FreeOnly pay for the provisioned resources
  • JSON
  • Perfect forPlain text version control JSON Validate-able
  • Declarative language
  • { "AWSTemplateFormatVersion" : "2010-09-09", "Description" : "Create an EC2 instances", "Parameters" : { "KeyName" : { "Description" : "Name of an existing EC2 KeyPair to enable SSH access to the instance", "Type" : "String" } }, "Mappings" : { "RegionMap" : { "us-east-1" : { "AMI" : "ami-76f0061f" }, "us-west-1" : { "AMI" : "ami-655a0a20" }, "eu-west-1" : { "AMI" : "ami-7fd4e10b" }, "ap-southeast-1" : { "AMI" : "ami-72621c20" }, "ap-northeast-1" : { "AMI" : "ami-8e08a38f" } } }, "Resources" : { "Ec2Instance" : { "Type" : "AWS::EC2::Instance", "Properties" : { "KeyName" : { "Ref" : "KeyName" }, "ImageId" : { "Fn::FindInMap" : [ "RegionMap", { "Ref" : "AWS::Region" }, "AMI" ]}, "UserData" : { "Fn::Base64" : "80" } } } }, "Outputs" : { "InstanceId" : { "Description" : "InstanceId of the newly created EC2 instance", "Value" : { "Ref" : "Ec2Instance" } }, "AZ" : { "Description" : "Availability Zone of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "AvailabilityZone" ] } }, "PublicIP" : { "Description" : "Public IP address of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "PublicIp" ] } } }}
  • { "AWSTemplateFormatVersion" : "2010-09-09", "Description" : "Create an EC2 instances", Headers Parameters "Parameters" : { "KeyName" : { "Description" : "Name of an existing EC2 KeyPair to enable SSH access to the instance", "Type" : "String" } }, "Mappings" : { "RegionMap" : { "us-east-1" : { "AMI" : "ami-76f0061f" }, "us-west-1" : { Mappings "AMI" : "ami-655a0a20" }, "eu-west-1" : { "AMI" : "ami-7fd4e10b" }, "ap-southeast-1" : { "AMI" : "ami-72621c20" }, "ap-northeast-1" : { "AMI" : "ami-8e08a38f" } } }, "Resources" : { "Ec2Instance" : { "Type" : "AWS::EC2::Instance", Resources "Properties" : { "KeyName" : { "Ref" : "KeyName" }, "ImageId" : { "Fn::FindInMap" : [ "RegionMap", { "Ref" : "AWS::Region" }, "AMI" ]}, "UserData" : { "Fn::Base64" : "80" } } } }, "Outputs" : { "InstanceId" : { "Description" : "InstanceId of the newly created EC2 instance", "Value" : { "Ref" : "Ec2Instance" } }, Outputs "AZ" : { "Description" : "Availability Zone of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "AvailabilityZone" ] } }, "PublicIP" : { "Description" : "Public IP address of the newly created EC2 instance", "Value" : { "Fn::GetAtt" : [ "Ec2Instance", "PublicIp" ] } } }}
  • Elastic Beanstalk
  • Java webapplications
  • Upload WAR
  • Your Application Application Service Java Web Platform HTTP Service TomcatLanguage Interpreter Java Operating System Linux Server Amazon EC2
  • Best practice
  • Highly available
  • Customisable
  • Flexible
  • FreeOnly pay for the provisioned resources
  • Monitored
  • Insight
  • CloudWatch
  • Free5 minute resolution
  • Detailedmonitoring 1 minute resolution
  • CPUUtlization DiskReadBytes DiskReadOps DiskWriteBytes DiskWriteOps NetworkIn NetworkOutDatabaseConnections FreeStorageSpace ReadLatency ReadThroughput SwapUsage WriteLatency WriteThroughput
  • Custom metrics
  • Price aware
  • Mix On-demand,Reserved Capacity and Spot
  • Relate tobusiness metrics
  • Cost per user
  • Cost peroperation
  • White papers:aws.amazon.com/ whitepapers
  • Prematureoptimisation
  • Maximise value
  • 4Security inthe Cloud
  • Sharedresponsibility
  • Requirementbased access
  • Certification
  • ISO 27001 +SAS 70 Type II
  • PCI DSS Level 1
  • Control objectivesSecurity organisation Employee lifecycle Logical security Secure data handling Physical security Environmental safeguardsChange management Incident handling Availability and Data integrity redundancy
  • DDOSMan in the Middle IP spoofing
  • Data access control
  • Detailed logging
  • Data stays local
  • Identity andaccess control
  • API level rights management
  • Account
  • BillingAccount credentials Account MFA
  • AccountDBA Developer Sys admin Finance Roles
  • AccountDBA Developer Sys admin Finance Roles Sally Robert Users Chris
  • Security credentials Multifactor authenticationManagement console access Data read/write access API level access
  • AccountDBA Developer Sys admin Finance Roles Sally Robert Users Chris
  • Networkisolation
  • Virtual Private Cloud
  • Virtual network topology
  • Public, privateIP address range subnetsVirtual network topology Route tables Network gateways
  • Network access control
  • Inbound OutboundNetwork access control S3 access VPN
  • Dedicatedinstances
  • Public subnetPublic facing website
  • Public subnet Network ACLs + security groups Private subnetMulti-tier applications
  • Public subnet Private subnet IPsec VPN On-premiseExtend your data centre
  • Private subnet IPsec VPN On-premiseExtend your data centre
  • DR
  • Backup to EC2 and EBS DR VM import
  • aws.amazon.com/security
  • aws.amazon.com
  • Thank you!
  • QUESTIONS + FEEDBACK:matthew@amazon.com @mza O N T W I T T E R