Talking about modern cloud architectures. AWS being the key component. The sides show how cloud solutions can be incorporated for different businesses. Different components of a cloud are explained in detail. With pictorial representations o the architecture.
2. Methods of cloud service.
• SaaS – Example gmail
• PaaS – Example windows OS
• IaaS – AWS, Azure and GCP are the most demanded cloud service that
is using globally, other infra’s are oracle cloud,
bluemix, digital ocean.
3. AWS:
• Amazon web Service:
• It’s a fully designed infra to allow the vendors to quickly and securely
host their applications.
• It provides more than 200 fully featured service from their data
centre.
4. Data Centre of AWS:
• AWS Cloud spans 99 AZ within 31 geographic Regions around the
world.
• Upcoming 4 more regions are Canada, Israel, New Zealand and
Thailand with 12 Availability Zone(AZ).
Some of the most used locations are :
North Virginia, Oregon, Ohio, London, Singapore
In India Mumbai, Hyderabad.
7. • Networking – VPC, Subnet, Route table, internet gateway, vpc peering.
• Cloud Computing – EC2, Lambda.
• Databases – RDS, Dynamo DB, amazon aurora, apache Cassandra,
Redis.
• Security Services – Security Groups, Network address control
list(NACL).
• Other Managed Services – IAM, Groups, Users and Security policies.
8. EC2:
• It’s elastic Cloud compute and it’s a virtual machine.
• EC2 instance can be resized.
• Scale up and scale down.
• Launch in one or more geo locations or region or AZ’s
9. Components of EC2:
• Instances
• Images
• EBS
• Network and Security
• Load Balancing
• Auto Scaling
• Monitors
10. Instance Types:
• On-demand : AWS Pricing will completely depends on which type of
instance you run for hour, minutes or seconds.
• Reserved Instance : Buy it for 6 months or 12 months, maximum 3
years.
• On-spot instances : Only Used spare ec2 capacity available for less
amount, and it’s only available to run for predefined duration.
• Dedicated host : Considered as physical EC2 which is dedicated in use,
price varies by instance type, region and payment method.
11. Instance configuration Types
• General purpose Instance : It provides a balance of compute, memory
and networking resources.
Web applications servers
Small and medium databases
Gaming servers
12. • Memory optimized instances:
Is it designed to deliver fast performance for workloads.
MySQL
Mongo DB, Cassendra, Redis.
• Storage Optimized Instances :
Instances Designed for workloads requires high, sequential read
and write I/O operations.
Log or data processing applications
Relational and NoSQL databases
13. Security Groups:
• Acts as firewall that controls all the traffic.
• Attach one or more security groups with ec2 instances.
• Add rules to create a user defined security.
• Allows all inbound and outbound traffic.
NACL:
• Network Address Control list, is an optional layer for the VPC.
• It acts as a firewall for controlling traffic in and out of one or more
subnets.
• User defined rules to flow the traffic inside the subnets.
14. Amazon Machine Image:
• It provides the information required to launch an instance.
• Launch multiple servers using same AMI
• Need more space and stored in S3.
• AMI is local and locked for your account/region
Types of AMI
OS based AMI
Architecture based AMI
Region Based AMI
Launch Permission based AMI
15. Elastic Load Balancer
• It distributes incoming traffic across multiple targets.
• Routes the incoming traffic to its registered targets in multiple AZ.
• Monitors the health of servers which is registered.
Types of Load balancer:
Application load balancer
Network load balancer
Classic load balancer
16. Why we need LB
• To spread load across multiple instances.
• Exposing single point access to application via DNS.
• Makes regular health checks of instances.
• High availability across zones.
• Provides SSL termination for website.
17. Auto Scaling
• Ensures the correct number of Amazon EC2 instances available to
handle the load for your application.
• Creating a collections of EC2 instances ,are called auto scaling groups.
Launch Config:
Auto Scaling group launches the EC2 instances by using launch config
templates. Key items are
MIN
DESIRED
MAX
18. Elastic Block Store
• EBS volume is durable, that can attach one or more instances at same
time.
• It can be used as primary storage of EC2 instances.
• These volumes persist independently from running life of ec2.
• EBS are more flexible.
• AMI creation is very using single command.
19. Simple Storage Service
• Amazon S3 is storage for the internet.
• It is used to store and retrieve the data at any time.
• S3 is highly scalable, fast and durable solution for storage of any type
of data.
• Files which is stored in S3 can be from 0 bytes to 5TB.
20. Storage Gateway
• It’s a service helps to securely connect AWS and on-premises
software appliance with cloud-based storage.
• Storage gateway services allows to securely store the data in AWS
cloud.
• It provides set of storage protocols such as iSCSI, SMB and NFS.
Types of Storage Gateway
File gateway
Volume gateway
Tape gateway
21. VPC
• Logical data centre in Aws.
• When we create a AWS account, AWS itself create a default VPC for
you in each region.
• Much better security control over your AWS resources.
• Each subnet must exists in 1 AZ.
Components of VPC are
Subnets, Route tables, internet gateways, VPC endpoint, VPC
peering, VPC flow logs.
22. VPC Endpoint
• VPC endpoints are used to create a private network between your
VPC and another AWS services outside of your VPC.
• It cannot be transferred from one VPC to another one or to any other
service.
• It is horizontally scaled, redundant and highly available for VPC
components only.
• Specifically used to access the services without using public IP
address.
23. Subnets
• It’s a range of IP address in VPC.
• VPC subnet allows to segment VPC.
• Easy to create smaller networks across multiple AZ.
• Helps to isolate, organize and manage the resources.
• We can connect a subnet to internet and other VPC’s and any data
centres and route traffic to and from your subnets using route table.
24. Route Tables
• We can create multiple route tables in VPC.
• It routes the network traffic based on its destination via different
target groups.
• Internet gateway
• Network address translation
• Customer gateways
26. VPC Peering:
• Allows to connect two VPC’s together.
• Two VPC’s are not allowed to have overlapping CIDR blocks.
• Route traffic between using private IPV4 address.
• Service owners do not need to have their services exposed to the public
Internet.
VPC Flow Logs:
• To maintain logs and traffic flow into the network.
• Helps to monitor and troubleshoot system.
27.
28. Relational Database System(RDS):
• RDS is a managed service that helps to manage, scale.
• RDS supports – Amazon aurora, Mysql, PostgreSQL, Oracle, SQL.
• Automated backups.
• We can create a high availability of master and slave architecture.
• IAM service helps to control to whom have to give the read and write
access.
• RDS replicas feature also avalible.
• AWS RDS provides high disaster recovery solution.
29.
30. Cloud Watch:
• Cloud watch is used to collect and track metrics.
• It displays the metrics automatically.
• We can create a dashboard to monitor to ensure no downtime in
production environments.
• We can create a alarms to watch metrics.
Some of the feature are:
Dashboards
Alarms
Logs
Events
31.
32. Cloud Trail
• CloudTrail provides visibility into user activity by recording actions
taken on your account.
• CloudTrail is used to view, search, download, archive, analyze, and
respond to account activity.
• AWS CloudTrail monitors and records account activity across your
AWS infrastructure
33. Simple Notification Service(SNS)
• It is web services makes it easy to set up, operate and send
notification from cloud.
• It provides highly scalable, cost-effective and flexible capacity to
publish messages.
• SNS also send messages to devices, google, apple, windows and
android.
• To prevent loss of data, all messages published to SNS are Stored in
multiple availability zones.