Dit is een samenvatting van het cursus “Engineering Cloud Solution” aan de Hogeschool Utrecht, maar kan ook gebruikt worden om te certificeren voor AWS Cloud Practitioner.
Na het maken/doornemen van deze samenvatting heb ik mij gecertificeerd voor AWS Cloud Practitioner met een score van 880.
Copyright: Delen zonder voorgaande
toestemming is niet toegestaan
,Inhoudsopgave
Het AWS-certificeringstraject .................................................................................................................. 8
Wat is cloud computing? ......................................................................................................................... 8
De implementatiemodellen van de cloud ............................................................................................... 9
Private Cloud: ...................................................................................................................................... 9
Public Cloud: ........................................................................................................................................ 9
Hybrid cloud: ....................................................................................................................................... 9
De vijf kenmerken van cloud computing................................................................................................. 9
Six Advantages of Cloud Computing ..................................................................................................... 10
Problemen die worden opgelost door de Cloud ................................................................................... 10
Soorten Cloud Computing ..................................................................................................................... 10
Voorbeelden van Cloud Computing Types ............................................................................................ 11
Prijzen van de cloud – een snel overzicht ............................................................................................. 11
AWS Global (wereldwijde) infrastructuur ............................................................................................. 12
AWS Regions...................................................................................................................................... 12
AWS Availability Zones ...................................................................................................................... 13
Rondleiding door de AWS-console .................................................................................................... 14
Shared Responsibility Model Diagram .................................................................................................. 14
IAM ........................................................................................................................................................ 15
IAM: gebruikers en groepen .............................................................................................................. 15
IAM: Permissies ................................................................................................................................. 15
IAM – Password Policy ...................................................................................................................... 16
Multi Factor Authentication - MFA ................................................................................................... 16
MFA device opties in AWS................................................................................................................. 16
Hoe kunnen gebruikers toegang krijgen tot AWS? ........................................................................... 17
Voorbeeld van (Fake) Access Keys .................................................................................................... 17
IAM Roles voor Services .................................................................................................................... 17
IAM Security Tools ............................................................................................................................. 17
IAM Guidelines & Best Practices ....................................................................................................... 18
Shared Responsibility Model for IAM................................................................................................ 18
IAM – Samenvatting .......................................................................................................................... 19
EC2 Section ............................................................................................................................................ 19
EC2 sizing & configuration opties ...................................................................................................... 19
EC2 instance types: voorbeeld .......................................................................................................... 20
1
, Introduction to Security Groups ........................................................................................................ 20
Security Groups Deeper Dive ............................................................................................................ 20
Security Groups Diagram................................................................................................................... 21
Classic Ports (herhaling, maar handig) .............................................................................................. 21
EC2 Instance Connect ........................................................................................................................ 21
EC2 Instances Purchasing Options .................................................................................................... 21
EC2 On Demand................................................................................................................................. 22
EC2 Reserved Instances ..................................................................................................................... 22
EC2 Spot Instances ........................................................................................................................... 22
EC2 Dedicated Hosts ......................................................................................................................... 23
EC2 Dedicated Instances ................................................................................................................... 23
Shared Responsibility Model for EC2 ................................................................................................ 23
EC2-sectie – Samenvatting ................................................................................................................ 24
EC2 Instance Storage Section ............................................................................................................ 24
Wat is een EBS Volume?.................................................................................................................... 24
EBS-volume........................................................................................................................................ 24
AMI Overzicht .................................................................................................................................... 25
EC2 Instance Store............................................................................................................................. 26
EFS - Elastic File System ......................................................................................................................... 26
EBS versus EFS ................................................................................................................................... 26
Shared Responsibility Model voor EC2 Storage ................................................................................ 27
Elastic Load Balancing & Auto Scaling Groups Section ......................................................................... 27
Scalability & High Availability ............................................................................................................ 27
Verticale scalability............................................................................................................................ 28
Horizontale scalability ....................................................................................................................... 28
High Availability ................................................................................................................................. 28
High Availability & Scalability voor EC2 ............................................................................................. 28
Scalability versus Elasticity (versus Agility) ....................................................................................... 29
Wat is Load Balancing? ...................................................................................................................... 29
Waarom een load balancer gebruiken? ............................................................................................ 29
Waarom een Elastic Load Balancer gebruiken? ................................................................................ 29
Wat is een Auto Scaling Group? ........................................................................................................ 30
Auto Scaling Group in AWS ............................................................................................................... 30
Auto Scaling Group in AWS met Load Balancer ................................................................................ 30
Amazon S3 Section ................................................................................................................................ 31
Section introduction .......................................................................................................................... 31
2
, Amazon S3 Overzicht – Buckets ........................................................................................................ 31
Amazon S3 Overzicht – Objecten ...................................................................................................... 31
S3 Security ......................................................................................................................................... 32
Voorbeeld: Public Access - Het gebruik van Bucket Policy ............................................................... 32
Voorbeeld: Gebruikerstoegang tot S3 – IAM permissies .................................................................. 32
Voorbeeld: EC2 instance access – Het gebruik van IAM Roles.......................................................... 33
Geavanceerd: Cross-Account Access – Het gebruik van Bucket Policy ............................................ 33
S3 Bucket Policies .............................................................................................................................. 33
Amazon S3 – Versioning .................................................................................................................... 34
S3 Access Logs ................................................................................................................................... 34
S3 Replication (CRR & SRR)................................................................................................................ 34
S3 Durability en Availability ............................................................................................................... 35
S3 Standard – General Purposes ....................................................................................................... 35
S3 Standard – Infrequent Access (IA) ................................................................................................ 35
S3 Intelligent-Tiering ......................................................................................................................... 35
S3 One Zone - Infrequent Access (IA) ................................................................................................ 36
Amazon Glacier & Glacier Deep Archive ........................................................................................... 36
S3 Storage Classes Comparison (vergelijking) ................................................................................... 36
Shared Responsibility Model for S3 .................................................................................................. 37
Snowball ............................................................................................................................................ 37
Snowball Process ............................................................................................................................... 37
Snowball Edge ................................................................................................................................... 38
AWS Storage Cloud Native Options................................................................................................... 38
Databases & Shared Responsibility in AWS .......................................................................................... 39
AWS RDS Overzicht............................................................................................................................ 39
Voordeel RDS versus deploying DB op EC2 ....................................................................................... 39
RDS Solution Architectuur ................................................................................................................. 40
Amazon Aurora.................................................................................................................................. 40
Amazon ElastiCache Overzicht .......................................................................................................... 40
ElastiCache Solution Architectuur – Cache ....................................................................................... 41
DynamoDB ......................................................................................................................................... 41
DynamoDB – type data...................................................................................................................... 41
Redshift Overview ............................................................................................................................. 42
Amazon EMR ..................................................................................................................................... 42
Athena Overzicht ............................................................................................................................... 42
AWS Glue ........................................................................................................................................... 43
3
, DMS – Database Migration Service ................................................................................................... 43
Databases & Analytics samenvatting in AWS .................................................................................... 43
Containers ............................................................................................................................................. 44
Docker versus Virtual Machines ........................................................................................................ 44
ECS ..................................................................................................................................................... 44
Fargate............................................................................................................................................... 44
ECR..................................................................................................................................................... 44
Wat is serverless? .............................................................................................................................. 45
Voordelen van AWS Lambda ............................................................................................................. 46
AWS Lambda language support ........................................................................................................ 46
Voorbeeld: Serverless Thumbnail creation ....................................................................................... 46
Voorbeeld: Serverless CRON job ....................................................................................................... 46
AWS Lambda Pricing: voorbeeld ....................................................................................................... 47
AWS Batch ......................................................................................................................................... 47
AWS Batch - Vereenvoudigd voorbeeld ............................................................................................ 47
Amazon Lightsail................................................................................................................................ 48
Deploying and Managing Infrastructure at Scale .................................................................................. 48
Wat is CloudFormation...................................................................................................................... 48
Voordelen van AWS CloudFormation................................................................................................ 48
Typical architecture: Web App 3-tier ................................................................................................ 49
AWS Elastic Beanstalk Overzicht ....................................................................................................... 50
Elastic Beanstalk ................................................................................................................................ 50
AWS CodeDeploy............................................................................................................................... 50
AWS Systems Manager (SSM) ........................................................................................................... 51
Hoe Systems Manager werkt ............................................................................................................ 51
AWS OpsWorks.................................................................................................................................. 51
OpsWorks architectuur ..................................................................................................................... 52
Global Infrastructure ............................................................................................................................. 52
Global Applications in AWS ............................................................................................................... 53
Amazon Route 53 Overzicht .............................................................................................................. 53
Route 53 – Diagram for A Record ...................................................................................................... 53
Route 53 Routing Policies .................................................................................................................. 54
AWS CloudFront ................................................................................................................................ 54
CloudFront - Origins .......................................................................................................................... 55
CloudFront at a high level ................................................................................................................. 55
CloudFront – S3 as an Origin ............................................................................................................. 55
4
, S3 Transfer Acceleration (Overdrachtversnelling ............................................................................. 56
AWS Global Accelerator .................................................................................................................... 56
AWS Global Accelerator vs CloudFront ............................................................................................. 57
Cloud Integration............................................................................................................................... 57
Amazon SQS – Simple Queue Service – Wat is een queue?.............................................................. 58
SQS om te decouplen tussen application tiers .................................................................................. 58
Amazon SNS....................................................................................................................................... 59
Cloud Monitoring .................................................................................................................................. 59
Amazon CloudWatch Metrics ............................................................................................................ 59
Voorbeeld: CloudWatch Billing metric (us-east-1) ............................................................................ 60
Belangrijke Metrics ............................................................................................................................ 60
Amazon CloudWatch Alarms ............................................................................................................. 60
Amazon CloudWatch Logs ................................................................................................................. 61
CloudWatch Logs voor EC2................................................................................................................ 61
Amazon CloudWatch Event ............................................................................................................... 61
Amazon EventBridge ......................................................................................................................... 62
AWS CloudTrail .................................................................................................................................. 62
AWS X-Ray ......................................................................................................................................... 63
AWS X-Ray voordelen ........................................................................................................................ 63
AWS Status - Service Health Dashboard ........................................................................................... 63
AWS Personal Health Dashboard ...................................................................................................... 64
Monitoring samenvatting (in het kort).............................................................................................. 64
VPC ........................................................................................................................................................ 65
VPC – Crash Course ........................................................................................................................... 65
VPC & Subnets Primer ....................................................................................................................... 65
VPC Diagram ...................................................................................................................................... 65
Internet Gateway en NAT Gateways ................................................................................................. 66
Network ACLs vs Security Groups ..................................................................................................... 66
VPC Flow Logs .................................................................................................................................... 66
VPC Peering ....................................................................................................................................... 67
Site to site VPN en Direct Connect .................................................................................................... 67
Site-to-Site VPN ................................................................................................................................. 67
Transit Gateway................................................................................................................................. 68
Security & Compliance .......................................................................................................................... 68
AWS Shared Responsibility Model .................................................................................................... 68
Voorbeeld voor RDS (verantwoordelijkheden) ................................................................................ 68
, Networking Costs in AWS per GB – Vereenvoudigd ......................................................................... 81
Billing and Costing Tools.................................................................................................................... 81
AWS Total Cost of Ownership (TCO) Calculators .............................................................................. 82
Cost Allocation Tags .......................................................................................................................... 82
Cost and Usage Reports .................................................................................................................... 82
Cost Explorer ..................................................................................................................................... 83
AWS Budgets ..................................................................................................................................... 83
Trusted Advisor ................................................................................................................................. 83
AWS Basic Support Plan .................................................................................................................... 84
AWS Developer Support Plan ............................................................................................................ 84
AWS Business Support Plan (24/7) .................................................................................................... 84
AWS Enterprise Support Plan (24/7) ................................................................................................. 85
AWS Architecting & Ecosystem Section ................................................................................................ 85
Well Architected Framework General Guiding Principles ................................................................. 85
AWS Cloud Best Practices – Design Principles .................................................................................. 85
Well Architected Framework 5 Pillars ............................................................................................... 86
Operational Excellence ...................................................................................................................... 86
Security .............................................................................................................................................. 87
Reliability ........................................................................................................................................... 88
Performance Efficiency...................................................................................................................... 89
Cost Optimization .............................................................................................................................. 89
AWS Marketplace .............................................................................................................................. 90
AWS Professional Services & Partner Network ................................................................................. 90
Tip & tricks voor het examen ............................................................................................................ 91
7
,Samevatting AWS - AWS-gecertificeerde cloud Practitioner cursus CLF-C01
Het AWS-certificeringstraject
Wat is cloud computing?
• Cloud computing is on-demand delivery (de levering op aanvraag ) van compute power
(rekenkracht), databas storage, applicaties en andere IT resources (bronnen).
• Via een cloudserviceplatform met pay-as-you-go pricing
• U kunt precies het juiste type en de juiste grootte van computer resources leveren die je
nodig hebt
• Je hebt vrijwel onmiddellijk toegang tot resources (wanneer dat nodig is)
• Eenvoudige manier om toegang te krijgen tot servers, opslag, databases en een reeks
applicatie services
* Amazon Web Services bezit en onderhoudt de op het netwerk aangesloten hardware vereist voor
deze applicatie services, terwijl je voorziet en gebruikt wat je nodig hebt via een webapplicatie
8
, De implementatiemodellen van de cloud
Private Cloud:
• Clouddiensten die worden gebruikt door een enkele
organisatie, niet blootgesteld aan het publiek.
• Volledige controle
• Beveiliging voor gevoelige toepassingen
• Ontmoet specifieke business-behoeften
Public Cloud:
• Cloud resources eigendom dat wordt beheerd door
een derde partij cloud service provider geleverd via
het internet.
• Zes voordelen van gebruik Cloud Computing
Hybrid cloud:
• Laat sommige servers in on-premises en breid enkele
mogelijkheden uit naar de Cloud
• Controle over gevoelig activa in jouw private
infrastructuur
• Flexibiliteit en kosteneffectiviteit van de Public Cloud.
De vijf kenmerken van cloud computing
• On-demand self service:
o Gebruikers kunnen middelen ter beschikking stellen en deze gebruiken zonder
menselijke tussenkomst van de serviceprovider
• Broad network access:
o Middelen die beschikbaar zijn via het netwerk en toegankelijk zijn voor verschillende
clientplatforms
• Multi-tenancy and resource pooling:
o Meerdere klanten kunnen dezelfde infrastructuur en applicaties delen met
beveiliging en privacy
o Meerdere klanten worden bediend met dezelfde fysieke resources
• Rapid elasticity and scalability:
o Automatisch en snel middelen verwerven en/of verwijderen wanneer dat nodig is
Snel en eenvoudig schaalbaar op basis van (aan)vraag, on-demand.
• Measured service:
o Het gebruik wordt gemeten, gebruikers betalen correct voor wat ze hebben verbruikt
9
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller qamar. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $9.62. You're not tied to anything after your purchase.