AWS Summit Seoul 2023 | 클라우드의 경계를 허무는 AWS Hybrid Cloud Services

© 2023, Amazon Web Services, Inc. or its affiliates. All rights reserved.
S E O U L | M A Y 4 , 2 0 2 3

AWS Hybrid Cloud Services
Pricipal Solutions Architect
AWS

1. AWS Global Infrastructure for Hybrid
2. Why hybrid?
3. AWS Local Zones Wavelength, AWS Snowball Family
4. AWS Outposts Rack
5. AWS Outposts Server (1U/2U)
6.
Agenda

1. AWS Global Infrastructure

AWS Global Infrastructure
31 , 99 , 410 POINTS OF PRESENCE(POP), 115 DIRECT CONNECT LOCATIONS
GovCloud (U.S.):
U.S.-East (3), US-West (3)
U.S. West
Oregon (4), Northern
California (3)
U.S. East
N. Virginia (6), Ohio (3)
United States
Canada
Central (3)
Canada West
( )
South America
São Paulo (3)
Middle East
Bahrain (3)
UAE (3)
Israel ( )
Frankfurt (3)
Ireland (3)
London (3)
Milan (3)
Paris (3)
Spain (3)
Stockholm (3)
Zurich (3)
Europe
*Beijing, operated by Sinnet (3)
*Ningxia, operated by NWCD (3)
Hong Kong (3)
Hyderabad (3)
Jakarta (3)
Mumbai (3)
Osaka (3)
Seoul (4)
Singapore (3)
Tokyo (4)
Malaysia ( )
Thailand ( )
Asia Pacific
Sydney (3)
Melbourne (3)
Auckland ( )
Australia
Africa
Cape Town (3)
* AWS Sinnet, NWCD .
GLOBAL
INFRASTRUCTURE

Atlanta
Boston
Chicago
Dallas
Denver
Houston
Kansas City
Las Vegas
Los Angeles
Miami
North America
South America
Buenos Aires
Santiago
Lima
Bogotá
Rio de Janeiro
Europe and Africa
Asia Pacific
Perth
Auckland
Brisbane
Australia and
New Zealand
AWS Local Zones
32 LOCAL ZONES, 21 LOCAL ZONES
Hamburg
Copenhagen
Helsinki
Warsaw
Lagos
Amsterdam
Athens
Berlin
Brussels
Delhi
Kolkata
Taipei
Bangkok
Bengaluru
Chennai
Hanoi
Manila
Minneapolis
New York City
Philadelphia
Phoenix
Portland
Seattle
Querétaro
Toronto
Vancouver
Johannesburg
Lisbon
Munich
Nairobi
Oslo
Prague
Vienna
Available
Announced
METRO
CENTERS

Boston
Atlanta
Washington DC
New York City
Miami
Dallas
Houston
Chicago
Charlotte
Detroit
Minneapolis
Tampa
Nashville
San Francisco Bay Area
Las Vega
Denver
Seattle
Phoenix
Los Angeles
North America (19)
Europe (5)
AWS Wavelength
5 , 29 EDGE LOCATIONS
South Korea (2)
London
Manchester
Dortmund
Berlin
Munich
Daejeon
Seoul
Japan (2)
Canada (1)
Toronto
Tokyo
Osaka
TELCO
EDGE

AWS Global Backbone
AWS REGION, LOCAL ZONES, WAVELENGTH AWS GLOBAL BACKBONE .

AWS wherever you need it
, , API
AWS
AWS
Global Infrastructure
Edge
Amazon CloudFront
AWS Local Zones
AWS Wavelength
( , IDC)
AWS Outposts
Amazon ECS/EKS Anywhere
AWS Private 5G
AWS Snow Family AWS IoT AWS
Ground Station

Why hybrid?

IDC
지연에 민감한 서비스
처리 지연에 민감한 장비 또는 업무
AR/VR, 디자인 및
시각화(Visualization)와 같은
상호작용을 요구하는 워크로드
다양한 서버/호스트 및 스토리지에
걸친 복잡한 워크로드
Latency Sensitive
로컬 데이터 처리
하이브리드 워크플로우에서 엣지에
적용된 트랜스코딩, 필터링, 캐싱 및
경보
쉽게 이동할 수 없는 대규모 데이터셋
Local Data Processing
데이터 상주 규정
규정에 따라 데이터 및 인프라가 특정
국가에 상주하도록 규정하는 경우 및
쉽게 이동할 수 없는 대규모 데이터셋
(산업 보안, 금융 규제, 개인정보 규제)
계약에서 애플리케이션 배포 위치를
지정하는 경우
기업이 Infosec 또는 기타 이유로 AWS
리전으로 이동할 준비가 되지 않은
경우
Data Residency Requirement

AWS Hybrid Services
,
APIs

AWS Local Zones
Wavelength AWS Snowball

AWS Local Zones (Asia)
ASIA LOCAL ZONE (11 LOCAL ZONES 5 LOCAL ZONE )
Kolkata
Delhi
Bangkok
Perth
Taipei
Auckland
Bengaluru
Brisbane
Chennai
Hanoi
Manila
Singapore
Mumbai
Tokyo
Sydney
Hyderabad
Available
Announced

AWS Local Zones Architecture
AWS
• • •
Public Subnet
Private Subnet
Availability Zone 1
ap-southeast-1a
Public Subnet
Private Subnet
Availability Zone 2
ap-southeast-1b
Public Subnet
Private Subnet
Local Zone
ap-southeast-1-bkk-1a
EC2
Singapore
ap-southeast-1
Thailand (Bangkok)
ap-southeast-1-bkk-1a
EC2
EC2
EC2
EC2
EC2
NACL
Route
Table
Direct Connect
End Users
Internet Gateway
Network Border Group
(ap-southeast-1)
SG
VPC
/
Internet Gateway
Network Border Group
(ap-southeast-1-bkk-1a)

Network Border Group for Local Zones

(Region vs Local Zones)
Instance type vCPU Memory Storage
Network
Performance
On-Demand Hourly rate
Delta Ratio
Region
(Tokyo)
Local Zones
(Taipei)
t3.medium 2 4 GiB EBS Only Up to 5 Gigabit $0.0544 $0.068 0.0136 25%⇡
t3.xlarge 4 16 GiB EBS Only Up to 5 Gigabit $0.2176 $0.272 0.0544 25%⇡
m5.2xlarge 4 32 GiB EBS Only Up to 10 Gigabit $0.496 $0.62 0.124 25%⇡
c5.2xlarge 8 16 GiB EBS Only Up to 10 Gigabit $0.428 $0.535 0.107 25%⇡
r5.2xlarge 8 64 GiB EBS Only Up to 10 Gigabit $0.608 $0.76 0.152 25%⇡
g4dn.2xlarge 8 32 GiB EBS, 225 GB NVMe SSD Up to 25 Gigabit $1.015 $1.371 0.356 35%⇡
Network
Performance
On-Demand Hourly rate
Delta Ratio
Region
(Singapore)
Local Zones
(Bangkok)
m5.2xlarge 4 32 GiB EBS Only Up to 10 Gigabit $0.48 $0.672 0.192 40%⇡
c5.2xlarge 8 16 GiB EBS Only Up to 10 Gigabit $0.392 $0.549 0.157 40%⇡
g4dn.2xlarge 8 32 GiB EBS, 225 GB NVMe SSD Up to 25 Gigabit $1.052 $1.578 0.526 50%⇡

AWS Local Zones
Parent Region
AWS
Local Zones
Amazon
EC2
Amazon
EBS
AWS
Shield
Amazon
ELB
Amazon
ECS
Amazon
EKS
Amazon
VPC
Amazon
DX
Amazon
FSx
Amazon
EMR
Amazon
ElastiCache
Amazon
RDS
US West (Oregon)
Los Angeles
T3, C5, C5d, M5
R5, R5d, I3en, G4dn
gp3, gp2, io1
st1 ,sc1
Standard ALB O O O O O O O O
Denver T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Las Vegas T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Phoenix T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Portland T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Seattle T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
US East (N. Virginia)
Atlanta T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Boston T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Chicago T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Houston T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Kansas City T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Dallas T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Miami T3, C5d, R5d, G4dn, and M5 gp2 Standard ALB O O O O
Minneapolis T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
New York City T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
Philadelphia T3, C5d, R5d, and G4dn gp2 Standard ALB O O O O
US East (N. Virginia)
Querétaro T3, C5, R5, G4dn, and M5 gp2 Standard O O O
Santiago T3, C5, R5, G4dn, and M5 gp2 Standard O O O
Buenos Aires T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Lima T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Europe (Stockholm)
Copenhagen T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Helsinki T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Europe (Frankfurt)
Hamburg T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Warsaw T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Middle East (Bahrain) Muscat T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Africa (Cape Town) Lagos T3, C5, R5, G4dn, and M5 gp2 Standard O O O
Asia Pacific (Mumbai)
Delhi T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Kolkata T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Asia Pacific (Sydney) Perth T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Asia Pacific (Tokyo) Taipei T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Asia Pacific (Singapore) Bangkok T3, C5, R5, G4dn, and M5 gp2 Standard O O O O
Source : https://aws.amazon.com/about-aws/global-infrastructure/localzones/features/

AWS Local Zones EC2
$ aws ec2 describe-instance-type-offerings --location-type availability-zone --filters Name=location,Values=ap-southeast-1-bkk-1a --region ap-southeast-1
{
"InstanceTypeOfferings": [
{
"InstanceType": "r5.2xlarge",
"LocationType": "availability-zone",
"Location": "ap-southeast-1-bkk-1a"
},
{
"InstanceType": "t3.xlarge",
},
{
"InstanceType": "c5.2xlarge",
},
{
"InstanceType": "g4dn.2xlarge",
},
{
"InstanceType": "m5.2xlarge",
}
]
}

AWS Wavelength – Mobile Edge
Transit
Peering Point
AWS (CSP)
AWS Wavelength Zone
(SK Telecom)
4G/LTE/5G
Mobile Network
AWS ( )
• • •
IGW
Public Subnet
Availability Zone 1
Public Subnet
Availability Zone 2
EC2 EC2
VPC
Carrier Data Center
(SK Telecom)
WL Subnet
EC2
SG
( KT/LG U+)
Allowed :
ICMP and response only
Destination Target
10.1.0.0/16 Local
0.0.0.0/0 CGW
Other Routes TGW
AWS
• / / ( )
AWS Wavelength Zone
•
•
Packet Core
NACL
Carrier
Gateway
(CGW)

Price comparison (Region vs Wavelength)
Network
Performance
On-Demand
Hourly rate
Delta Ratio
Region
(Seoul)
Wavelength
(Daejeon/Seoul)
g4dn.2xlarge 8 32 GiB 225 GB NVMe SSD Up to 25 Gigabit $0.925 $1.249 0.324 35%⇡

AWS Snowball Family
/ / EDGE COMPUTING
Model Name Compute Memory Storage (HDD) Storage (SSD)
Snowcone 2 vCPU 4 GB 8 TB - WiFi 지원
Snowcone SSD 2 vCPU 4 GB - 14 TB WiFi 지원
Snowball Edge Storage Optimized 24 vCPU 32 GB 80 TB -
Snowball Edge Compute Optimized 52 vCPU 208 GB 39.5 TB 7.68 TB
Snowball Edge Compute Optimized with GPU
52 vCPU
GPU
208 GB 39.5 TB 7.68 TB NVIDIA V100 GPU
Snowball Edge Compute Optimized 104 vCPU 416 GB - 28 TB

AWS Outposts Rack

AWS Outposts Rack
AWS OUTPOSTS RACK
AWS Outposts 3D Virtual Tour: https://m.kaon.com/c/az
( )
100G
Outposts Networking Devices
(OND)
DC
AWS

AWS Outposts
!
(SAV)
8 ~10 1 ~2

AWS Outposts
RDS
(MySQL,
Postgre,MS-SQL)
ElastiCache
ECS
S3
EC2
(m5/c5/r5/g4dn
/i3en
EBS
(gp2)
Cloud
Endure
VPC
(Subnet/ACL/SG
)
EMR
ALB
(L7)
EBS Local
Snapshot
EKS
AWS
Datasync
Cloudtrail
Cloud9
VPC Flow logs
Beanstalk
CloudFormation
AutoScaling Group
CloudWatch

EC2 EBS
AWS NITRO EC2 GP2 EBS
( , , ) ( , ,
)
I/O
(NoSQL ,
,
)
Local
EBS (gp2)
M5 C5 R5
I3
G4

AWS Outposts
REGION VPC ON-PREMISE AWS OUTPOSTS
AWS
-1 -n
Subnet Subnet
• • • •
AWS Outposts
Subnet
• • • •
On-Premise
EC2 EC2
EC2
EC2 EC2
Direct Connect
( )
Service Link
Local
Gateway
Firewall
IDS/IPS
AWS Regional Services + Control Plane
VPC
IGW
SG
NACL

AWS Outposts Networking –
REGION CONNECTIVITY (SERVICE LINK) : (DIRECT CONNECT)
AWS
VPC Data Plane Traffic
Control
Plane
Traffic
On-Premise
OND #1 OND #2
CND #1 CND #2
LAG LAG
Service
Link
CIDR
:
/26
(/27,
/27)
Subnet (10.1.x.0/24)
EC2 EC2
AWS Outposts Rack
DX Edge
Router
AWS Public IP
Private VIF
(Private Connectivity)
Anchor VPC
VPC
VPC
VPC (10.1.0.0/16)
Subnet (10.1.1.0/24)
EC2 EC2
eBGP
DX Location
( / )
DX Location
( / ) eBGP
Subnet
ENIs
AWS
Outposts
Service
SG
NACL
AWS Outposts Region /
Service Link
500Mbps (1Gbps )
Public VIF, Internet NAT
Private VIF(Private Connectivity) ,
Anchor VPC ( )
AWS Region AWS Outposts
VPN
• OND : Outposts Networking Device
• CND : Customer Networking Device
• LAG : Link Aggregation Group(Port Channel/LACP)

OND #1
CND #1 AS 655xx CND #2
Outposts Rack #1
Logical Outposts Unit
Customer Networking Devices
On-Premise/
OND #2
Outposts Rack #2
CoIP(Customer own IP) Pools
10.1.x.0/23, 10.1.y.0/24, 10.2.z.0/24
Service Link
10.0.0.0/26
Service Link
10.0.0.64/26
OND #1 OND #2
AS 655yy
On-Premises
10.2.0.0/16
10.1.0.0/16
172.16.0.0/16
AWS
(Service Link)
10.1.x.0/23 10.1.y.0/24
10.2.z.0/23

AWS Outposts Networking Mode - CoIP/DVR
COIP : CUSTOMER OWNED IP / DVR : DIRECT VPC ROUTING
Logical Outposts
Subnet
On-Premise
AWS Region
VPC
Subnet
• • •
• • •
Subnet
1 n
VPC
Subnet Subnet
CIDR : 10.1.0.0/16
CIDR : 10.2.0.0/16
10.1.1.0/24 10.1.4.0/24
10.2.1.0/24 10.2.4.0/24
Logical Outposts
Subnet
10.1.5.0/24
10.2.5.0/24
172.16.0.0/16
LOCAL
GATEWAY
Outposts Subnet
BGP Propagation
DVR Mode
CoIP Mode
CoIP
Pool
172.16.x.0/24
CoIP
Pool
172.16.y.0/24
CoIP Pools
BGP Propagation
EC2
EC2
EIP Mapping
(1:1 NAT)
Service Link
172.16.x.0/24
172.16.y.0/24

(Juniper) Integrating AWS Outposts with QFX Series Devices in an IP Fabric Data Center
https://www.juniper.net/documentation/en_US/release-independent/nce/topics/topic-map/nce-179-qfx-aws-
outposts.html
(Cisco) Cisco Extends Enterprise-grade Data Center Networking to AWS Outposts
https://d1.awsstatic.com/Solutions/Cisco-Solution-Overview.pdf

AWS
AZ-1
Subnet
AWS Outposts
• • • •
EC2 EC2
EC2 Control Plane
VPC
IGW
On-Premise
AZ-n
Subnet
EC2 EC2
Nitro Hypervisor
Nitro
Controller
Nitro Card
(Network)
Nitro Card
(Storage)
Nitro
Security
Chip
EC2 Host (Nitro Host)
EC2 Instance
ENA EBS
PCIe Bus
EC2 Instance
ENA EBS
EC2 Instance
ENA EBS
• • •
AWS re:Invent 2022 - Powering Amazon EC2: Deep dive on the AWS Nitro System (CMP301)
INTERNET
OUTPOSTS SERVICE LINK
(Encrypted VPN)
DIRECT
CONNECT
Logged
Authenticated
Authorized
API Request
API Response
Firewall
IDS/IPS
LGW
SG

Amazon RDS on Outposts (Multi-AZ, Read Replica)
Subnet
#1
AWS
Network RDS
( Latency : 5ms )
Master Node
VPC
Subnet
Subnet Subnet
#2
Standby Node
• • •
Logical Outposts #1
Logical Outposts #2
•
•
•
1
2
CoIP
Replication
Read Replica
RDS
(Standalone)
RDS Multi-AZ( ) 2 Logical Outposts (April, 2022)
Outposts Outposts RDS Read Replica (December, 2022)
CoIP
Service Link
Service Link
CoIP
Read Replica
CoIP
binlog replication (MySQL)
pglogical(PostgreSQL)
3rd Party Solution(Bucardo)
DMS (Data Migration Service)
RDS
(Standalone)

RDS on Outposts Replication - MySQL
Primary(Source) MySQL Node - Outposts Secondary(Target) MySQL Node - Region
MySQL > CALL mysql.rds_set_configuration('binlog retention hours', 144);
# 복제용 사용자 생성 및 권한 할당
MySQL > CREATE USER 'repl_user'@'%' IDENTIFIED BY ‘PASSWORD’;
MySQL > GRANT REPLICATION CLIENT, REPLICATION SLAVE ON *.* TO 'repl_user'@'%’;
# Master Node 의 binlog 정보 확인
MySQL > SHOW MASTER STATUS;
+----------------------------+----------+--------------+------------------+
| File | Position | Binlog_Do_DB | Binlog_Ignore_DB |
+----------------------------+----------+--------------+------------------+
| mysql-bin-changelog.000008 | 157 | | |
+----------------------------+----------+--------------+------------------+
1 row in set (0.00 sec)
# Slave Node 에서 Master Node에 대한 복제 설정
# Master MySQL Node 에 대한 DNS/IP 정보, 복제용 사용자 정보, binlog 정보 필요
MySQL > CALL mysql.rds_set_external_master ('outposts-rds-mysql.ckitum4jhvoj.us-
west-2.rds.amazonaws.com', 3306, 'repl_user', ‘PASSWORD', 'mysql-bin-
changelog.000008', 157, 0);
# 복제 시작
MySQL > CALL mysql.rds_start_replication;
# 복제 상태 또는 오류 확인
MySQL > SHOW SLAVE STATUS;
# 복제 종료
MySQL > CALL mysql.rds_stop_replication;
: https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/MySQL.Procedural.Importing.External.Repl.html

Container Services on AWS Outposts
AWS
AZ-1
Subnet
AWS Managed VPC
AZ-2
Subnet
• • •
AZ-3
Subnet
EKS Master Nodes
Customer VPC
Subnet Subnet Subnet
ENI ENI ENI
AWS Outposts
On-Premise
On-Premises
LGW
Subnet
EC2 EC2
Subnet
Cross
Account
ENI
EKS Local Cluster
EKS Master Nodes (3)
Cross
Account
ENI
EC2 EC2
EKS Worker Nodes
Cross
Account
ENI
Service Link
AWS Managed VPC Master Node Control Plane
EKS Master Nodes AWS Outposts EKS Local Cluster (September, 2022)

S3 on AWS Outposts
AWS
• • •
Customer VPC
Subnet
AWS Outposts
On-Premise
On-Premises
LGW
Subnet
EC2 EC2
Service Link
S3 Access Point
Subnet
26 TB
48 TB
96 TB
240 TB
380 TB
S3 on Outposts
AWS DataSync
Agent (EC2)
VPC Endpoint
(DataSync)
AWS DataSync
• • •
Outposts
Endpoint ENIs
EC2
AWS DataSync
Agent (VM)
Amazon S3
Object EC2/RDS Snapshot Backup
AWS DataSync S3 on Outposts Region S3 Bucket S3 on Outposts Native (March, 2023)

AWS Outposts Multi-Account Structure
AWS Cloud
Region
AWS Ogranizations
Management
Account
Infrastructure
Organization Unit
(OU)
Security
Organization Unit
(OU)
Workloads
Organization Unit
(OU)
Sandbox
Organization Unit
(OU)
AWS Outposts
Account (Owner)
Workload
Account #1
(Cunsumer)
Workload
Account #n
(Cunsumer)
• • • •
AWS Resource
Access Manager
(RAM)
• Outposts
• CoIP
• Local Gateway Route
Tables
• Subnets
• S3 on Outposts
• Capacity Reservations
https://docs.aws.amazon.com/outposts/latest/userguide/sharing-outposts.html

AWS Outposts Rack
https://aws.amazon.com/outposts/pricing/ (3 year term.)
Tier Price (한국)
11 TB EBS tier $ 0.342/GB/월
Max. 1PB (15, 20TB incremental
expansion)
Tier Price (한국)
26 TB S3 tier $ 0.11/GB/월
240 TB S3 tier $ 0.11/GB/월
380 TB S3 tier $ 0.11/GB/월
EBS Local Snapshot on Outposts $ 0.027/GB/월
Outposts =
((EC2 + EBS + S3) * %EDP) + Enterprise Support
AWS Outposts , , , 1 , 3 , 5 , .
(EBS/S3) .
AWS Outposts , Enterprise Support ( On-Ramp) .

AWS
AZ-1
Subnet
AWS Outposts
• • • •
EC2 EC2
VPC
IGW
AZ-n
Subnet
EC2 EC2
INTERNET
(Encrypted VPN)
DIRECT
CONNECT
/
Firewall
IDS/IPS
• • •
Subnet
EC2 EC2
↓ $
0.000/GB
↑ $
0.126/GB
⇤⇥ $ 0.01/GB
→ $ 0.126/GB ← $ 0.00/GB
→ $ 0.041/GB ← $ 0.00/GB
↑↓ $ 0.00/GB
⇤⇥ $ 0.00/GB
LOGS/METRICS
AMI
💵 DTO
SG
NACL
LGW
AWS Outposts 에서 실행되는 AWS 서비스는 사용량에 대해서만 과금
운영체제 비용은 라이센스에 따라 사용량 기준으로 과금( )
AWS 리전과 동일한 데이터 송/ (LGW Local Network )

Amazon RDS/ElastiCache on Outpots
Instance Type vCPU Memory
EC2 Instance Only
(Region)
RDS MySQL
(Region)
RDS MySQL
(Outposts)
$ / Hour $ / Hour $ / Hour
db.m5.large 2 8GiB 0.118 USD 0.236 USD 0.118 USD
db.m5.xlarge 4 16GiB 0.236 USD 0.472 USD 0.236 USD
db.m5.2xlarge 8 32GiB 0.472 USD 0.944 USD 0.472 USD
db.r5.large 2 16GiB 0.152 USD 0.285 USD 0.133 USD
db.r5.xlarge 4 32GiB 0.304 USD 0.57 USD 0.266 USD
db.r5.2xlarge 8 64GiB 0.608 USD 1.14 USD 0.532 USD
EBS(gp2)
0.114 USD
GB/Month
0.131 USD
GB/Month
0.342 USD (11TB Tier)
• https://aws.amazon.com/ko/rds/outposts/pricing/
• https://aws.amazon.com/ko/elasticache/pricing/
Instance Type vCPU Memory
EC2 Instance Only
(Region)
ElastiCache
(Region)
ElastiCache
(Outposts)
$ / Hour $ / Hour $ / Hour
cache.m5.large 2 8GiB 0.118 USD 0.191 USD 0.073 USD
cache.m5.xlarge 4 16GiB 0.236 USD 0.382 USD 0.146 USD
cache.m5.2xlarge 8 32GiB 0.472 USD 0.765 USD 0.292 USD
cache.r5.large 2 16GiB 0.152 USD 0.259 USD 0.107 USD
cache.r5.xlarge 4 32GiB 0.304 USD 0.517 USD 0.214 USD
cache.r5.2xlarge 8 64GiB 0.608 USD 1.035 USD 0.428 USD
💵

AWS Outposts –
고객이 관리
AWS가 관리
고객 데이터
, ,
기본 서비스들
AWS
CUSTOMER
IAM
,
AWS
IAM
AWS
ENDPOINTS
( ) ( / )
(Regions) (AZs)
고객 데이터센터
(On-Premise, IDC)
물리적 보안 및
접근 통제
리전과의
네트워크 연결
운영 환경 통제
AWS
Outposts
고객
AWS

AWS Outposts
(Updated Shared Responsibility)
잠금기능이 있는 도어와 밀폐형 랙
Outposts 내의 데이터 암호화
서버별 제거 및 파괴 가능한 하드웨어 보안 키(NSK)
AWS 리전 연결에 대한 네트워크 암호화
Outposts 가 설치된 장소의 물리적 보안은 고객이 담당
AWS Outposts Rack AWS Outposts Server
(NIST) “Guidelines for Media
Sanitization- ” SP 800-88 Rev. 1
Section 2.6, “Use of Cryptography and Cryptographic
Erase( )”
Nitro Security Key (NSK)
https://www.nist.gov/publications/nist-special-publication-800-
88-revision-1-guidelines-media-sanitization?pub_id=917935

AWS Outposts Server (1U/2U)

AWS Outposts Server 1U AWS Outposts Server 2U
Form Factor 1 RU(Rack Unit), 1.75” 2 RU(Rack Unit), 3.5”
Processor C6gd instances with AWS Graviton2 processors
C6id instances with Intel Xeon Scalable Processors
(Ice Lake) with core turbo frequency of 3.5 Ghz
vCPU Up to 64 vCPU 64 vCPU / 128 vCPU
Memory 128 GiB 128 GiB / 256 GiB
Instance Store 2 x 1900 GiB NVMe SSD 2 x 1900 GiB / 4 x 1900 GiB NVMe SSD Instance Store Only
네트워크 10Gbps (1Gbps 향후 지원) 10Gbps (1Gbps 향후 지원) Service Link 및 LNI
전력 0.8 kVA AC 1.5 kVA AC
보안 Nitro Security Key
지원 서비스 Amazon VPC, Amazon EC2, Amazon ECS, AWS IoT Greengrass (Amazon EKS 지원 예정)
Service Link 대역폭 최소 20 Mbps (리전 서비스와의 트래픽에 따라 유동적)
SKU OR-STBKRBE (c6gd.16xlarge)
OR-LMXAD41 (c6id.16xlarge)
OR-KOSKFSF (c6id.32xlarge)
AWS Outposts Server
FORM FACTOR CPU PLATFORM

AWS Outposts Server
QSFP+ to SFP+ Breakout Cable
1
4
2
3
Label Port Speed 용도
1 10Gb SFP+ Service Link – AWS 리전과 Outposts 간 관리용 트래픽 및 VPC내부 트래픽 용 인터페이스 TCP/UPD 443, UDP 53
2 10Gb SFP+ Local Network Interface (LNI) – 온프레미스 Local Network 과의 통신을 위한 인터페이스 L2
3,4 10Gb SFP+ 미사용
AWS On-Premise
INTERNET

AWS Outposts Server Architecture
AWS REGION , INSTANCE STORE , ON-PREMISE LAYER-2 LNI
AWS Outposts Server
On-Premise/ /
• • •
(Encrypted VPN)
Subnet
ENI
EC2
SG
LNI
(eth1)
(eth0)
LNI : Local Network Interface (Layer-2)
AWS Outposts Server
• • •
Subnet
ENI
EC2
SG
LNI
(eth1)
(eth0)
ARP
DHCP
Unicast
Service Link
Service Link
AWS Region
AZ-1
Subnet
• • • •
EC2 EC2
VPC
IGW
AZ-n
Subnet
EC2 EC2
AZ-1
Subnet
• • • •
EC2 EC2
VPC
IGW
AZ-n
Subnet
EC2 EC2
• • •

Instance Size vCPU Memory (GiB) Instance Storage (GB)
c6id.large 2 4 1x118 NVMe SSD
c6id.xlarge 4 8 1x237 NVMe SSD
c6id.2xlarge 8 16 1x474 NVMe SSD
Instance Size vCPU Memory (GiB) Instance Storage (GB)
c6gd.large 2 4 1 x 118 NVMe SSD
c6gd.xlarge 4 8 1 x 237 NVMe SSD
c6gd.2xlarge 8 16 1 x 474 NVMe SSD
AWS Outposts Server – Instance Types
AWS OUTPOSTS SERVER (SLOT) ( )

AWS Outposts

AWS Outposts
AWS re:Invent 2022 - Nasdaq: Moving mission-critical, low-latency workloads to AWS (FSI312)
https://www.youtube.com/watch?v=GCjx8GVIIIA
AWS re:Invent 2022 - AWS Outposts: Bringing the AWS experience on premises (HYB312)
https://www.youtube.com/watch?v=OUNJ0F73HSs

AWS Summit Seoul 2023 | 클라우드의 경계를 허무는 AWS Hybrid Cloud Services

Recommended

Recommended

More Related Content

Similar to AWS Summit Seoul 2023 | 클라우드의 경계를 허무는 AWS Hybrid Cloud Services

Similar to AWS Summit Seoul 2023 | 클라우드의 경계를 허무는 AWS Hybrid Cloud Services (20)

More from Amazon Web Services Korea

More from Amazon Web Services Korea (20)

AWS Summit Seoul 2023 | 클라우드의 경계를 허무는 AWS Hybrid Cloud Services