AWS: Difference between revisions

From Chorke Wiki
Jump to navigation Jump to search
Line 105: Line 105:


==Amazon S3==
==Amazon S3==
{|
|valign="top"|
  Resign URL
  Resign URL
  Bucket Versioning
  Bucket Versioning
Line 115: Line 117:
         »
         »
     » Timeline
     » Timeline
|valign="top"|
<syntaxhighlight lang="json">
{ "Version": "2012-10-17",
  "Statement": [{
    "Sid": "Stmt1719306958175",
    "Effect": "Allow",
    "Principal": {
      "AWS": "arn:aws:iam::169020509040:user/shahed"
    },
    "Action": "s3:*",
    "Resource": "arn:aws:s3:::academia"
}]}
</syntaxhighlight>
|valign="top"|
|}


==AWS EC2 API==
==AWS EC2 API==

Revision as of 17:44, 17 July 2024

 _____ _____ _____ _____ _____ _____ 
|     |  |  |     | __  |  |  |   __|
|   --|     |  |  |    -|    -|   __|
|_____|__|__|_____|__|__|__|__|_____|
@2013~2021                Chorke Inc.

Users

Option|Alter + S » IAM » User groups » Create group
Option|Alter + S » IAM » Policies    » Create policy
Option|Alter + S » IAM » Roles       » Create role
Option|Alter + S » IAM » Users       » Add user
AWS Users 
  » Root user
  » IAM user

CloudWatch

  • SNS (Simple Notification Service)
  • AMI (Amazon Machine Image)

EC2 Instance

1. EC2 Dashboard » Launch instance
2. Instances     » Launch instance

Elastic IP

For Assign Public IP
CIDR » Classless Inter-Domain Routing
       AWS Support 16 to 32
       IP Before CIDR Block
       Public » Private » Subnet
       Linux Bastion Hosts on AWS
0.0   » Network address
0.1   » Reserved by AWS (VPC router)
0.2   » Reserved by AWS (DNS server)
0.3   » Reserved by AWS (Future use)
0.255 » Network broadcast

Linux Bastion

Bastion (Jump Host)
VPC » IGW » {Public, Private, FileServer, DB}
    » Keychain 
    » Key Agent (ssh-add -l, ssh-add)
    » Agent Forwarding (ssh -A [email protected]

Network Interface

ENI » Elastic Network Interface
VPC » Virtual Private Cloud
NAT » (Gateway, Instance)
    » Instance (Disable Source Destination Checking)

Domain Name System

FQDN (Fully Qualified Domain Name)
DNS  (Domain Name System | Hosted Zones)
     » C NAME (Canonical Name)
     » A Record
DNS  Zone Management
     » Domain CP
        » DNS Zone Editor
        » Recors
           » NS (Name Server)
           » A, AAAA
           » MX
           » CNAME (Canonical Name)
           » TXT (Key=> Value(SPF, DKIM), Ownership Checking)
whois cdn.chorke.org

Scalability

Scalability|Scaling
     » Resize   » Vertical   » t2.micro => t2.large
     » Quantity » Horizontal » 1 + 2 + 3 + .. + N
HA (High Availability) => 1 + 3 + 5 + .. + (N-1)
     » Active  => Managed      => RDS
     » Passive => Self Managed 
Fault Tolerant
     » 501 Not Implemented
     » 502 Gateway Time Out
LB (Load Balancer)
     » AWS => LBaaS (Load Balancing as a Service) => ELB (Elastic LB)
              » ALB (Application LB)
              » NLB (Network LB)
              » CLB (Classic LB)
DB Clustering
     » MySQL   => Galera
     » PgSQL   => Patroni
     » MongoDB => Shard, Replica
Managed DB
     » AWS => RDS
Stateless|Distributed System » Horizontal Scale(Scale In/Out)
Stateful |Centralized System » Vertical   Scale(Scale Up/Down)

Amazon S3

Resign URL
Bucket Versioning
Object Lock
    » Retention modes
       » Governance mode
       » Compliance mode
Create Lifecycle Rule  » Rule Applied  » Rule Action  » current | previous
    » Transition
       »
    » Timeline
{ "Version": "2012-10-17",
  "Statement": [{
    "Sid": "Stmt1719306958175",
    "Effect": "Allow",
    "Principal": {
      "AWS": "arn:aws:iam::169020509040:user/shahed"
    },
    "Action": "s3:*",
    "Resource": "arn:aws:s3:::academia"
}]}

AWS EC2 API

References



Specialty

Associate

Professional

    ___    _                        _             
   / __|  | |_      ___      _ _   | |__    ___   
  | (__   | ' \    / _ \    | '_|  | / /   / -_)  
   \___|  |_||_|   \___/   _|_|_   |_\_\   \___|  
 _|"""""|_|"""""|_|"""""|_|"""""|_|"""""|_|"""""| 
 "`-0-0-'"`-0-0-'"`-0-0-'"`-0-0-'"`-0-0-'"`-0-0-'