L01 AWS Infrastructure and Services PDF

Title	L01 AWS Infrastructure and Services
Author	Zijian Yin
Course	Cloud Computing Architecture
Institution	Swinburne University of Technology
Pages	26
File Size	1.5 MB
File Type	PDF
Total Downloads	39
Total Views	130

Preview

CLICK TO PREVIEW PDF

Summary

lecture material...

Description

AW S  A c a d e m y  C l o u d  F o u n d a t i o n s

AWSGlobalInfrastructureOverview

©2019,AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

WelcometoModule3:AWSGlobalInfrastructureOverview.

M o d u l e  3 :  AW S  G l o b a l  I n f r a s t r u c t u r e  O v e r v i e w

Section1:AWSGlobalInfrastructure

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

IntroducingSection1:AWSGlobalInfrastructure.

AWSGlobalInfrastructure • TheAWSGlobalInfrastructure isdesignedandbuilttodeliveraflexible,reliable,scalable,andsecure cloud computingenvironmentwithhigh‐qualityglobalnetworkperformance. • Thismapfromhttps://infrastructure.awsshowsthecurrentAWSRegions andmorethatarecomingsoon.

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

TolearnmoreabouttheAWSRegionsthatarecurrentlyavailable,see: https://aws.amazon.com/about‐aws/global‐infrastructure/. Thediagramshowsthe22currentAWSRegions,aswellasafewRegionsthatwillbecome availablesoon,includingMilan,CapeTown,andIndonesia(as ofOctober2019).

3

AWSRegions •

AnAWSRegionisageographicalarea. •

DatareplicationacrossRegionsiscontrolledby you.

•

Communication betweenRegionsusesAWS backbonenetworkinfrastructure.

•

EachRegionprovidesfullredundancyand connectivitytothenetwork.

•

ARegiontypicallyconsistsoftwoormore AvailabilityZones. Example:LondonRegion

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

TheAWSCloudinfrastructureisbuiltaroundRegions.AWShas22Regionsworldwide.AnAWS RegionisaphysicalgeographicallocationwithoneormoreAvailabilityZones.AvailabilityZones inturnconsistofoneormoredatacenters. Toachievefaulttoleranceandstability,Regionsareisolatedfromoneanother.Resourcesinone RegionarenotautomaticallyreplicatedtootherRegions.Whenyoustoredatainaspecific Region,itisnotreplicatedoutsidethatRegion. ItisyourresponsibilitytoreplicatedataacrossRegions,ifyourbusinessneedsrequireit. AWSRegionsthatwereintroducedbeforeMarch20,2019areenabled bydefault.Regionsthatwere introducedafterMarch20,2019—suchasAsiaPacific(HongKong)andMiddleEast(Bahrain)—are disabled bydefault.YoumustenabletheseRegionsbeforeyoucanusethem.YoucanusetheAWS ManagementConsoletoenableordisableaRegion. SomeRegionshaverestrictedaccess.AnAmazonAWS(China)accountprovidesaccesstotheBeijing andNingxiaRegionsonly.TolearnmoreaboutAWSinChina, see: https://www.amazonaws.cn/en/about‐aws/china/.TheisolatedAWSGovCloud(US)Regionis designedtoallowUSgovernmentagenciesandcustomerstomovesensitiveworkloadsintothe cloudbyaddressingtheirspecificregulatoryandcompliancerequirements.

4

SelectingaRegion Datagovernance,legal requirements

DeterminetherightRegionfor yourservices,applications,and databasedonthesefactors

Proximitytocustomers (latency)

Servicesavailable withintheRegion

Costs(varybyRegion) ©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

ThereareafewfactorsthatyoushouldconsiderwhenyouselecttheoptimalRegionorRegions whereyoustoredataanduseAWSservices. Oneessentialconsiderationisdatagovernanceandlegalrequirements.Locallaws mightrequire thatcertaininformationbekeptwithingeographicalboundaries.Suchlawsmightrestrictthe Regionswhereyoucanoffercontentorservices.Forexample,considertheEuropeanUnion(EU) DataProtectionDirective. Allelsebeingequal,itisgenerallydesirabletorunyourapplicationsandstoreyourdatainaRegion thatisascloseaspossibletotheuserandsystemsthatwillaccessthem.Thiswillhelpyoureduce latency.CloudPingisonewebsitethatyoucanusetotestlatencybetweenyourlocationandallAWS Regions. TolearnmoreaboutCloudPing,see:http://www.cloudping.info/ KeepinmindthatnotallservicesareavailableinallRegions.Tolearnmore,see: https://aws.amazon.com/about‐aws/global‐infrastructure/regional‐product‐services/?p=tgi&loc=4. Finally,thereissomevariation inthecost ofrunningservices, whichcandependonwhichRegion youchoose.Forexample,asofthiswriting,runninganOn‐Demandt3.mediumsizeAmazonElastic ComputeCloud(AmazonEC2)LinuxinstanceintheUSEast(Ohio)Regioncosts$0.0416perhour, butrunningthesameinstanceintheAsiaPacific(Tokyo)Regioncosts$0.0544perhour.

5

AvailabilityZones • EachRegion hasmultipleAvailabilityZones. • EachAvailabilityZone isafullyisolatedpartitionof theAWSinfrastructure. •

Therearecurrently69AvailabilityZonesworldwide

•

AvailabilityZonesconsistofdiscretedatacenters

•

Theyaredesignedforfaultisolation

•

TheyareinterconnectedwithotherAvailabilityZonesbyusing high‐speedprivatenetworking

•

YouchooseyourAvailabilityZones.

•

AWSrecommendsreplicatingdataandresourcesacross AvailabilityZonesforresiliency.

AWSCloud Regioneu‐west‐1 AvailabilityZoneeu‐west‐1a Datacenter Datacenter Datacenter AvailabilityZoneeu‐west‐1b

AvailabilityZoneeu‐west‐1c

EachAWSRegionhasmultiple,isolatedlocationsthatareknownas AvailabilityZones.

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

EachAvailabilityZoneprovidesthe abilitytooperateapplicationsanddatabasesthatare morehighlyavailable,fault‐tolerant, andscalablethanwouldbepossiblewithasingledata center.EachAvailabilityZonecanincludemultipledatacenters(typicallythree),andatfull‐ scale,theycanincludehundredsofthousandsofservers.Theyarefullyisolatedpartitionsof theAWSGlobalInfrastructure.AvailabilityZoneshavetheirownpowerinfrastructure,and theyarephysicallyseparatedbymanykilometers fromotherAvailabilityZones—thoughall Availability Zonesarewithin100kmofeachother. AllAvailabilityZonesareinterconnectedwithhigh‐bandwidth,low‐latencynetworkingover fullyredundant,dedicatedfiberthatprovideshigh‐throughput betweenAvailabilityZones. ThenetworkaccomplishessynchronousreplicationbetweenAvailabilityZones. AvailabilityZoneshelpbuildhighlyavailableapplications.Whenanapplicationispartitioned acrossAvailabilityZones,companiesarebetterisolatedandprotectedfromissuessuchas lightning,tornadoes,earthquakes,andmore. YouareresponsibleforselectingtheAvailabilityZones whereyoursystemswillreside. SystemscanspanmultipleAvailabilityZones.AWSrecommendsreplicatingacrossAvailability Zonesforresiliency.Youshoulddesignyoursystemstosurvive the temporaryorprolonged failureofanAvailabilityZoneifadisasteroccurs.

6

AWSdatacenters • AWSdatacentersaredesignedfor security. • Datacentersarewherethedataresides anddataprocessingoccurs. • Eachdatacenterhasredundantpower, networking,andconnectivity,andis housedinaseparatefacility. • Adatacentertypicallyhas50,000to 80,000physicalservers.

ThefoundationfortheAWSinfrastructureisthedatacenters.Customersdonotspecifya datacenterforthedeploymentofresources.Instead,anAvailabilityZoneisthemost granularlevelofspecificationthatacustomercanmake.However,adatacenteristhe locationwheretheactualdataresides.Amazonoperatesstate‐of‐the‐art,highly available datacenters.Althoughrare,failurescanoccurthataffecttheavailabilityofinstancesinthe samelocation.Ifyouhostallyourinstancesinasinglelocationthatisaffectedbysucha failure,noneofyourinstanceswillbeavailable.

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

Datacentersaresecurelydesignedwithseveralfactorsinmind: • Eachlocationiscarefullyevaluatedtomitigateenvironmentalrisk. • Datacentershavearedundantdesignthatanticipatesandtoleratesfailurewhile maintainingservicelevels. • Toensureavailability,critical systemcomponentsarebackedup acrossmultiple AvailabilityZones. • Toensurecapacity,AWScontinuouslymonitorsserviceusagetodeployinfrastructureto supportavailabilitycommitmentsandrequirements. • Datacenterlocationsarenotdisclosed andallaccesstothemisrestricted. • Incaseoffailure,automatedprocessesmovedatatrafficawayfromtheaffectedarea. AWSusescustom networkequipmentsourcedfrommultiple originaldevicemanufacturers (ODMs).ODMsdesignandmanufactureproductsbasedonspecificationsfromasecond company.Thesecondcompanythenrebrandstheproductsforsale.

7

PointsofPresence • AWSprovidesaglobalnetworkof 187PointsofPresencelocations • Consistsof176edgelocationsan 11Regionaledgecaches • UsedwithAmazonCloudFront • AglobalContentDeliveryNetwork (CDN),thatdeliverscontenttoend userswith reducedlatency

• Regionaledgecachesusedfor contentwithinfrequentaccess.

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

AmazonCloudFrontisacontentdeliverynetwork (CDN)usedtodistributecontenttoendusers toreducelatency.AmazonRoute53isaDomainNameSystem(DNS)service.Requestsgoingto eitheroneoftheseserviceswillberoutedtothenearestedgelocationautomaticallyinorderto lowerlatency. AWSPointsofPresence arelocatedinmostofthemajorcities(69citiesintotal)across30 countriesaroundtheworld.Bycontinuouslymeasuringinternetconnectivity,performance andcomputingtofindthebestwaytorouterequests,the PointsofPresencedeliverabetter nearreal‐timeuserexperience.TheyareusedbymanyAWSservices,includingAmazon CloudFront,AmazonRoute53,AWSShield,andAWSWebApplicationFirewall(AWS WAF) services. Regionaledgecaches areusedbydefaultwithAmazonCloudFront. Regionaledgecaches are usedwhenyouhavecontentthatisnotaccessedfrequentlyenoughtoremaininanedge location.Regionaledgecachesabsorbthiscontentandprovideanalternativetothatcontent havingtobefetchedfromtheoriginserver.

8

AWSinfrastructurefeatures • Elasticityandscalability

Backup generators

Physicallydistinct

• Elasticinfrastructure;dynamicadaptionofcapacity • Scalableinfrastructure;adaptstoaccommodategrowth Datacenter

Datacenter

Datacenter

Datacenter

Datacenter

Datacenter

• Fault‐tolerance • Continuesoperatingproperlyinthepresenceofafailure

Datacenter

Datacenter

Availability Zone

• Built‐inredundancyofcomponents

Availability Zone

• Highavailability • Highlevelofoperationalperformance • Minimizeddowntime

Datacenter

Datacenter

Datacenter

Datacenter

Network connectivity Availability Zone

• Nohumanintervention Uninterruptible powersupply

AWSRegion

Cooling equipment

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

NowthatyouhaveagoodunderstandingofthemajorcomponentsthatcomprisetheAWS GlobalInfrastructure,let'sconsiderthebenefitsprovidedbythisinfrastructure. TheAWSGlobalInfrastructurehasseveralvaluablefeatures: • First,itiselastic andscalable.Thismeansresourcescandynamicallyadjusttoincreasesor decreasesincapacityrequirements.Itcanalsorapidlyadjusttoaccommodategrowth. • Second,thisinfrastructureis faulttolerant,whichmeansithasbuilt‐incomponent redundancywhichenablesittocontinueoperationsdespiteafailedcomponent. • Finally,itrequiresminimaltonohumanintervention,whileprovidinghighavailability with minimaldowntime.

9

Keytakeaways

• TheAWSGlobalInfrastructure consistsof RegionsandAvailabilityZones. • YourchoiceofaRegion istypicallybased oncompliancerequirementsortoreduce latency. • EachAvailabilityZoneisphysically separatefromotherAvailabilityZonesand hasredundantpower,networking,and connectivity. • Edgelocations,andRegional edgecaches improveperformancebycaching content closertousers.

10

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

Somekey takeawaysfromthissectionofthemoduleinclude: • TheAWSGlobalInfrastructureconsistsofRegionsandAvailabilityZones. • YourchoiceofaRegionistypicallybasedoncompliancerequirementsortoreducelatency. • EachAvailabilityZoneisphysicallyseparatefromotherAvailabilityZonesandhasredundant power,networking,andconnectivity. • Edgelocations,andRegionaledgecachesimproveperformancebycachingcontentcloserto users.

M o d u l e  3 :  AW S  G l o b a l  I n f r a s t r u c t u r e  O v e r v i e w

Section2:AWSservicesandservicecategoryoverview

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

IntroducingPart2:AWSServiceandServiceCategoryOverview. AWSoffersabroadsetofglobalcloud‐basedproductsthatcanbeusedasbuildingblocksfor commoncloudarchitectures.Hereisalookathowthesecloudbasedproductsareorganized.

AWSfoundationalservices Virtualdesktops

Applications

Platform Services

Databases

Analytics

Relational

Cluster computing Real‐time

NoSQL Caching

Foundation Services

Infrastructure

Data warehouse Data workflows

Collaborationandsharing

Application services

Deploymentand management

Queuing Orchestration AppStreaming Transcoding Email

Containers

Search

Compute(virtual, automaticscaling,and loadbalancing) Regions

Mobile Services Identity

DevOpstools

Sync

Resourcetemplates Usagetracking

Mobile Analytics

Monitoringandlogs

Notifications

Networking

AvailabilityZones

Storage(object, block,andarchive)

Edgelocations

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

Asdiscussedpreviously,theAWSGlobalInfrastructurecanbebrokendownintothreeelements: Regions,AvailabilityZones,andPointsofPresence,whichincludeedgelocations.This infrastructureprovidestheplatformforabroadsetofservices,suchasnetworking,storage, computeservices,anddatabases—and theseservicesare deliveredasanon‐demandutilitythat isavailableinseconds,withpay‐as‐you‐gopricing.

12

AWScategoriesofservices Analytics

Application Integration

ARandVR

Blockchain

Business Applications

Compute

Cost Management

Customer Engagement

Database

DeveloperTools

EndUser Computing

GameTech

Internet ofThings

Machine Learning

Managementand Governance

MediaServices

Migrationand Transfer

Mobile

Networkingand ContentDelivery

Robotics

Satellite

Security,Identity,and Compliance

Storage

AWSoffersabroadsetofcloud‐basedservices.Thereare23differentproductorservice categories,andeachcategoryconsistsofoneormoreservices.Thiscoursewillnotattempt tointroduceyoutoeachservice.Rather,thefocusofthiscourseisontheservicesthatare mostwidelyusedandofferthebestintroductiontotheAWSCloud.Thiscoursealsofocuses onservicesthataremorelikelytobecovered intheAWSCertifiedCloudPractitionerexam.

©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

Thecategoriesthatthiscoursewilldiscussarehighlightedontheslide:Compute,Cost Management,Database,ManagementandGovernance,NetworkingandContentDelivery, Security,Identity,andCompliance,andStorage. TolearnmoreaboutAWSproducts, see:http://aws.amazon.com/products.AllAWSproducts areorganizedintotheservicecategoriesthatareshownhere.Forexample,ifyouclick Compute,youwillseethatAmazonElasticComputeCloud(AmazonEC2)isfirstonthelist. The computecategoryalsolistsmanyotherproductsandservices. IfyouclickAmazonEC2,ittakesyoutotheAmazonEC2page.Eachproductpageprovidesa detaileddescriptionoftheproductandlistssomeofitsbenefits. Explorethedifferentservicegroupstounderstandthecategoriesandserviceswithinthem. Nowthatyouknowhowtolocateinformationaboutdifferentservices,thismodulewill discussthehighlightedservicecategories.Thenextsevenslideslisttheindividualservices —withineachofthecategorieshighlightedabove—thatthiscoursewilldiscuss.

13

Storageservicecategory AWSstorageservices

AmazonSimpleStorage Service(AmazonS3)

AmazonElasticBlock Store(AmazonEBS)

Photofromhttps://www.pexels.com/photo/black‐and‐grey‐device‐159282/

AmazonElastic FileSystem (AmazonEFS)

AmazonSimpleStorage Service Glacier ©2019AmazonWebServices,Inc.oritsAffiliates.Allrightsreserved.

14

AWSstorageservicesincludetheserviceslistedhere,andmanyothers. AmazonSimpleStorageService(AmazonS3)isanobjectstorageservicethatoffers scalability,dataavailability,security,andperformance.Useittostoreandprotectany amountofdataforwebsites,mobileapps,backupandrestore,archive,enterprise applications,InternetofThings(IoT)devices,andbigdataanalytics. AmazonElasticBlockStore(AmazonEBS) ishigh‐performanceblockstoragethatisdesigned forusewithAmazonEC2 forboththroughputandtransactionintensiveworkloads.Itisused forabroadrangeofworkloads,suchasrelationalandnon‐relationaldatabases,enterprise applications,containerizedapplications,bigdataanalyticsengines,filesystems,andmedia workflows. AmazonElasticFileSystem(AmazonEFS)providesascalable,fullymanagedelasticNetwork FileSystem(NFS)filesystemforusewithAWSCloudservicesandon‐premisesresources.Itis builttoscaleondemandtopetabytes,growingandshrinkingautomaticallyasyouaddand removefiles. Itreducestheneedtoprovisionandmanagecapacitytoaccommodategrowth. AmazonSimpleStorage Service Glacierisasecure,durable,andextremelylow‐costAmazon S3cloudstorageclassfordataarchivingandlong‐termbackup.Itisdesignedtodeliver119s ofdurability,andtoprovidecomprehensivesecurityandcompliancecapabilitiestomeet stringentregulatoryrequirements.

Computeservicecategory AWSComputeservices

AmazonEC2

AmazonEC2 AutoScaling
...