"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
AWS webinar - optimize your aws data transfer out for cost and performance.
1.
2. How to optimize your AWS Data Transfer Out (DTO)
for cost and performance?
3. Presenters
StormIT Professionals
Lukáš Flaišhans
Managing Director
Business builder,
experienced sales
professional and
technology enthusiast
Nazar Špak
Global BDD & Partner
Business executive with
more than 11 years of
experience in the IT
industry and more than 7
years in Cloud domain
Tomáš Turek
Principal Solution Architect
Certified architect with
analytical skills and strong
focus on Microservices and
Serverless Architecture
4. StormIT Services
What We Do
Cost Optimization &
Enterprise Cloud
Management Platform
• 24/7 monitoring for
under-utilized assets
• Senior SA consultancy
• Cloudcheckr platform
access
Cloud Migration,
Modernization and
Transformation
• Readiness Assessment
• Business Outcomes
Identification
• Migration Plan
• Design, Migrate,
Validate
Cloud Foundation
• AWS Cloud Adoption
Framework principles
• Tailor-made workshops
• Best practices guidance
Managed Services
• Proactive monitoring,
automation and
management
• Reporting, performance
testing, backup
recovery
• Set up, manage and
protect
Cloud Reselling
• Get Resources
• Pay Flexibly
• Connect
• Smarten Up
Architecture
Deployment
• Design and deployment
of HA Architectures
• Thorough assessment
and security planning
• Non disruptive to your
business
6. Housekeeping
To make sure everything is smooth!
o Presentation about 45 minutes,
o Slides will be available after the webinar via email/SlideShare
o Recording will be available on YouTube
o Submit questions online – response via chat and email
7. Agenda
What are we going to discuss.
o What is Data Transfer Out in AWS?
o What is AWS Direct Connect?
o When to use AWS Direct Connect?
o What is Amazon CloudFront?
o Why should you consider Amazon CloudFront in every AWS
project?
o Demo
o Summary
9. What is Data Transfer Out in AWS?
Internet
Between instances within AZ
Data transfer in/out: Free (if
using a Private IP)
Using a public or Elastic IP: $0.01/GB
in each direction.
Region A Region B
Availibility Zone B
Availibility Zone A
Availibility Zone A
Availibility Zone B
Inter-region
Data transfer out:
$0.02/GB
Data transfer in:
Free
To and From the public Internet
Data transfer in: Free
Data transfer out:
$0.01/GB
Data transfer in:
$0.01/GB
And how much does it cost?
Data transfer out: starting at
$0.09/GB (first 10TB)
Between AZs
10. What is Data Transfer Out in AWS?
And what are possible issues?
Local ISPNetwork A E F
!
!B C D
12. What is AWS Direct Connect?
Corporate data centerAWS Cloud
Virtual Private Cloud
1 Gb/s
10 Gb/s
SESAmazon
Glacier
Elastic
Beanstalk
SQS
Amazon
EMR
Amazon
Redshift
EC2
Direct
Connect
Customer routersAWS Direct
Connect routers
Direct Connect location
For the full list of Direct Connect locations click here.
Last mile
13. End to End Direct Connect Solution
Corporate data centerAWS Cloud
Virtual Private Cloud
1 Gb/s
10 Gb/s
SESAmazon
Glacier
Elastic
Beanstalk
SQS
Amazon
EMR
Amazon
Redshift
EC2
Direct
Connect
14. 1. Consistent network performance
o You choose the data that utilizes the dedicated connection
o You decide how the data is routed, which provide a more
consistent network experience over Internet-based
connections
2. Elastic
o You can specify the configuration that meets your needs
o You can easily provision multiple connections if you need
more capacity
Why use AWS Direct Connect?
Technical and performance benefits
15. 3. Lower bandwidth cost
o Flat rate at $0.02 / GB for data leaving
EU regions (Frankfurt), EU (Stockholm),
EU (Ireland), EU (London), EU (Paris)
o Port charge is $241.56/month for 1Gbps
or $1815.36/month for 10Gbps
$0,000
$0,050
$0,100
First
10TB
Next
40TB
Next
100TB
Next
350TBDirect Connect cost
DTO to Internet cost
Why use AWS Direct Connect?
Lower cost with AWS Direct Connect.
4. Customer will have other related costs
o Transport to Direct Connect location
o Cross-connect
o Others
16. AWS Direct Connect Use Cases
When it is the best to use Direct Connect.
Big Data
AWS Direct Connect
allows organizations
to transfer their data
faster, in secure
fashion and at lower
cost than any other
method of data
transfer.
Disaster Recovery
Organizations can
also use Direct
Connect for
bidirectional disaster
recovery solution for
applications running
on AWS and benefit
from privacy,
security and large
throughput
Latency
Organizations
running latency
sensitive
applications, such as
VoIP applications,
could benefit from
more consistent
network
performance.
Hybrid Cloud
Perfect fit for
organizations that
are new to AWS or
invested in their on-
prem infrastructure
but would like to run
parallel workloads
on AWS with the
optimal performance
and cost.
18. What is Amazon CloudFront?
Introduction to Amazon CloudFront CDN service.
Fast, highly secure and programmable content delivery network
(CDN) that helps customers to:
o Securely deliver data, videos, applications, and APIs to
customers globally
o Deliver content with low latency and high transfer speeds
o Secure environment from DDoS attacks
o Lower the cost for data transfer out
19. Amazon CloudFront
The Amazon CloudFront Global Edge Network.
17
To deliver content to end users
with lower latency, Amazon
CloudFront uses a global network
of:
o 217 Points of Presence (205
Edge Locations 12 Regional Edge
Caches),
o in 84 cities across 42 countries,
o Full list of Amazon CloudFront
Edge locations see here.
20. Amazon CloudFront
Performance and Scale.
o Network Acceleration (TCP Optimization)
o Regional Edge Caching Layer
o Content Ingest (PUT/POST and S3-TA)
o Latency Based Routing
o Granular Cache Control (origin timeouts)
o Fast Propagation and Content Invalidation
o Low Latency, High Throughput Connections
21. Custom Origin
Protection
Header and ACL
Content Protection
Signed URL / Cookies
Content Restriction
Geo Blocking
S3 Origin Access
Identity
Amazon CloudFront
Build In Security Controls.
Access
Control
SSLv3
TLSv1.0
TLSv1.1
TLSv1.2
Advanced Cipers
Certificate Manager
OCSP Stapling
Session Tickets
Perfect Forward
Secrecy
Protocol
Enforcement
Half / Full
Bridge_Connections
Encrypted
Connections
Compliance: PCI DSS Level 1, HIPAA, ISO 9001, 27001, 27017, 27018
24. Edge Services Ecosystem
What Are Edge Services?
CDN + Lambda
Amazon CloudFront
is a fast content
delivery network
(CDN) service that
securely delivers
data, videos,
applications, and
APIs to customers
globally with low
latency, high transfer
speeds.
AWS WAF
is a web application
firewall that helps
protect your web
applications or APIs
against common
web exploits that
may affect
availability,
compromise
security, or consume
excessive resources.
AWS Shield
is a managed
Distributed Denial of
Service (DDoS)
protection service
that safeguards
applications running
on AWS.
There are two tiers
of AWS Shield -
Standard and
Advanced.
Amazon Route 53
is a highly available
and scalable cloud
Domain Name
System (DNS) web
service. Provides
businesses with
extremely reliable
and cost effective
DNS solution.
25. Amazon CloudFront Use Cases.
Most common use cases includes but not limited to.
23
Static Asset Caching
Amazon CloudFront can speed up the delivery of your static
content (e.g., images, style sheets, JavaScript, etc.) to viewers
across the globe. The Content Delivery Network (CDN) offers a
multi-tier cache by default, with regional Edge caches that improve
latency and lower the load on your origin servers.
Live and On-Demand Video
The Amazon CloudFront CDN offers multiple options for streaming
your media – both pre-recorded files and live events – at
sustained, high throughput required for 4K delivery to global
viewers.
Security and DDoS Protection
CloudFront integrates seamlessly with AWS Shield for Layer 3/4
DDoS mitigation and AWS WAF for Layer 7 protection. In addition,
CloudFront negotiates TLS connections with the highest security
ciphers, and authenticates viewers with signed URLs.
Dynamic Content & API acceleration
Amazon CloudFront can be used to secure and accelerate your
WebSocket traffic as well as API calls. CloudFront supports proxy
methods (POST, PUT, OPTIONS, DELETE, and PATCH) and is already
integrated with Amazon API Gateway by default.
Software Distribution
Amazon CloudFront scales automatically as globally-distributed
clients download software updates. The CDN's high data transfer
rates speed up the delivery of your binaries, improving customer
experience while lowering your costs.
Lower Data Transfer cost
You don’t pay for any data transferred between S3, EC2 or ELB
services and CloudFront. For data sent out from the Edge location
you pay lower rate than direct Data Transfer Out.
26. Data Transfer Cost Optimization
Data send directly to the internet (DTO)
$$$
$$$
EC2 ELB
Public Internet
S3
27. Leveraging 3rd party CDN
Data out to other CDN vendor
$$$
$$$
EC2 ELB
S3
Other CDN $$
1 2
29. Amazon CloudFront
Cost Optimization.
On Demand Pricing
Published Online
Regional Tiered Rates
Pay As You Go
Free Tier
Reserved Capacity
Reduced Pricing Contracts
Tailored to Use Case
Variable Term
Price Classes
Optimize for Cost Regional
Data Transfer User
Controlled Turn On/Off Any
Time
• No Data Transfer Fees from AWS Origins to Amazon CloudFront
• No Charge for Regional Edge Cache
• No Charge for SSL/TLS Certs from Amazon Certificate Manager
• No Charge for Shared CloudFront certificates
• Low Monthly Charge for Custom Hosted Certificates, Free SNI Certs via ACM
• Same Rate, Same Network for HTTP and HTTPS traffic
• Simple Request Fees
• Covered by Existing Customer Service Plan
32. Demo of Amazon CloudFront
Example of a static website on Amazon S3 with Amazon CloudFront
33. Consider CloudFront in every project.
Leverage all benefits that CloudFront offers, it is not CDN only!
Including Amazon CloudFront is not only about static content delivery, but you increase overall posture
of your application by leveraging:
• Global Content Delivery Network
• Increased performance and lower latency
• Integrated with AWS WAF and AWS Shield
• Intelligence of Lambda@Edge Compute Capability
• Built In Security Features
• Cost Effective Pricing Options
• Support for custom and multi origins In and Outside of AWS in case you have some workloads outside of
AWS.
• Increased availability and scalability
• Supports nearly all possible use cases
Adding Amazon CloudFront and Edge Services to your architecture improves application performance!
34. Summary
Choose the best fit for your use case.
DTO directly from EC2, S3 etc.
Pros:
• Easy to setup
Cons:
• Most expensive option
• Unpredictable Internet performance
• Less secure in some scenarios
AWS Direct Connect
Pros:
• Consistent network performance,
• Reduces your bandwidth costs,
• Increase security with private connec.,
• Multiple bandwidth options,
• Easy to use once established,
• Perfect for internal use.
Cons:
• Signup and activation process
• Other related costs
Amazon CloudFront
Pros:
• Easy to setup
• Improved performance
• Reduce Latency
• Lower Cost
• Increased security
• Scalability
• Tight integration with other Edge Services
Cons:
Might not support rare/specific protocols and
use cases
35. Reach Out To Us
We are ready to help you with your cloud project!
nazar@stormit.cloud
+ 420 608 162 930
+ 352 661 556 555
Na Folimance 2155/15
120 00 Praha 2 – Vinohrady
Czech Republic
Thanks for watching