Skip to content

Latest commit

 

History

History
302 lines (253 loc) · 20.3 KB

csp_and_consumers.md

File metadata and controls

302 lines (253 loc) · 20.3 KB

Cloud Service Providers and Consumers

Cloud service providers and consumers are two essential players in the cloud computing ecosystem.

  • A cloud service provider (CSP) is a company that provides cloud-based services and resources, such as computing power, storage, and applications, to businesses and individuals. CSPs can include large technology companies like Amazon Web Services, Microsoft Azure, and Google Cloud, as well as smaller, specialized providers.

  • Cloud consumers, on the other hand, are the customers who use the services and resources provided by the CSPs. They may be businesses or individuals who use the cloud for a wide range of purposes, such as hosting websites, running applications, storing and processing data, or collaborating on projects.

Resources

  1. Cloud Service Providers (CSPs) Explained
  2. AWS Vs Azure Vs GCP | Amazon Web Services Vs Microsoft Azure Vs Google Cloud Platform
  3. AWS vs Azure vs GCP | Amazon Web Services vs Microsoft Azure vs Google Cloud Platform | Intellipaat
  4. Cloud consumer

Azure Fundamentals

GCP Digital Foundations

AWS Fundamentals

AWS categories of services

The following is a list of the AWS categories of services.

  • Analytics
  • Cost Management
  • Internet of Things
  • Storage
  • Application Integration
  • Customer Engagement
  • Machine Learning
  • Robotics
  • AR and VR
  • Database
  • Management and Governance
  • Satellite
  • Blockchain
  • Developer Tools
  • Media Services
  • Networking and Content Delivery
  • Business Applications
  • End User Computing
  • Migration and Transfer
  • Security, Identity, and Compliance
  • Compute
  • Game Tech
  • Mobile

AWS core service

Core service areas:

  • Compute
  • Storage
  • Databases
  • Networking
  • Security

AWS Global Infrastructure

Compute

Compute Services

  • Amazon Elastic Compute Cloud (Amazon EC2)

    • Provides scalable computing capacity in the Amazon Web Services (AWS) Cloud. In the compute area, there are various options for the types of resources you might want to launch, such as the following:

      • Virtual machines
      • Containers
      • Batch processing compute resources
      • Serverless compute

    • EC2 Instance Types

  • Amazon EC2 Auto Scaling
  • Serverless - AWS Lambda: is a fully managed serverless compute service.
  • Containers
    • Containers orchestration
      • Amazon Elastic Container Service (Amazon ECS) and Amazon Elastic Kubernetes Service (Amazon EKS) are the container orchestrating services that help you schedule, maintain, and scale the fleet of nodes running your containers. They also give you a centralized way of monitoring and controlling how you want your containers launched.
      • Amazon ECS is an AWS container orchestration tool giving you seamless control over your containerized application.
      • Amazon EKS is a managed service that you can use to run Kubernetes on AWS without needing to install, operate, and maintain your own Kubernetes control plane or nodes. Kubernetes is an open-source system for automating the deployment, scaling, and management of containerized applications.

Storage

  • Amazon Simple Storage Service - Amazon S3: Amazon Simple Storage Service (Amazon S3) is a fully managed, serverless, low-cost, object-level storage service. With Amazon S3, you store unlimited amounts of data (with different formats) on AWS. Amazon S3 offers multiple storage options.

  • Amazon Elastic Block Store (Amazon EBS)

    Amazon EBS has the following benefits: - Persistent network-attached block storage for instances that can persist even after the EC2 instance to which this storage is attached is terminated - Different drive types - Scalable - Pay only for what you provision - Snapshot functionality - Encryption available to enhance security

  • Amazon Elastic File System (Amazon EFS)

    • Amazon Elastic File Systems Overview
      • When you need a serverless shared file system, you can use Amazon Elastic File System (Amazon EFS).
      • Amazon EFS provides serverless, fully elastic file storage so that you can share file data without provisioning or managing storage capacity and performance.
      • With Amazon EFS, you can build high performing and cost-optimized file systems on AWS benefitting from the built-in-elasticity, durability, and availability.

  • Amazon FSx

    • Amazon FSx makes it easy and cost effective to launch, run, and scale feature-rich, high-performance file systems in the cloud.
    • It supports a wide range of workloads with its reliability, security, scalability, and broad set of capabilities.
    • Amazon FSx is built on the latest AWS compute, networking, and disk technologies to provide high performance and lower total cost of ownership (TCO). And as a fully managed service, it handles hardware provisioning, patching, and backups—freeing you up to focus on your applications, your end users, and your business.
    • You can choose between four widely used file systems: NetApp ONTAP, OpenZFS, Windows File Server, and Lustre.

Databases

Explore AWS services grouped by database type in more detail.

  • Relational database

    • Amazon Aurora
      • It is compatible with MySQL, so you can run those engines with increased performance on AWS.
      • The database supports High availability and durability, and you can run it serverless. This takes care of automatically scaling the resources for you.
      • With Aurora, you also can run the database with multi-Regional replicas.
      • Performance and availability of commercial-grade databases at 1/10th the cost.
    • Amazon RDS
      • You can choose Amazon Relational Database Service (Amazon RDS) to launch the database in the Multi-AZ configuration if you want to deploy it for high availability (HA).
      • The service will launch the primary and standby databases in different Availability Zones and set up synchronous replication of data and failover strategy.
      • If the primary database goes down, the standby picks up the traffic.
    • Managed relational database—Amazon RDS
      • Amazon RDS is a web service that makes it easier to set up, operate, and scale a relational database in the AWS Cloud. It provides cost-efficient, resizable capacity for an industry-standard relational database and manages common database administration tasks.
      • Managed means you still have the power to decide how the database will be launched, but Amazon RDS will launch it for you. You can set up, operate, and scale a relational database in the cloud with just a few clicks. Amazon RDS is compatible with multiple engines, and you can use it to launch the Amazon Aurora database.
      • Choose from seven popular engines: Amazon Aurora with MySQL compatibility, Amazon Aurora with PostgreSQL compatibility, MySQL, MariaDB, PostgreSQL, Oracle, and SQL Server.
    • Amazon Redshift
      • Amazon Redshift is a data warehouse service that provides benefits from columnar storage.
      • With this approach, you can perform complex queries on your data, helping you run online analytical processing (OLAP) workloads.

  • Key-value database

    • Amazon DynamoDB
      • With DynamoDB, you can achieve single-digit millisecond performance at any scale.
      • It is a fully managed, serverless, nonrelational database.
      • DynamoDB is a great choice when you're looking for seamless database scalability. DynamoDB will automatically scale to meet demand.
      • DynamoDB is also an excellent choice for workloads that involve working with databases, flexible schemas, and high throughput (with many read/write requests).
      • For example, using Amazon DynamoDB for running Leaderboard would be a good use case.

  • In-memory database

    • Amazon ElastiCache
      • Unlock microsecond latency
      • Scalable caching service
    • Amazon MemoryDB for Redis
      • Compatible
      • Durable

  • Document database

    • Amazon DocumentDB (with MongoDB compatibility)
      • Scale JSON workloads with ease
      • Use an enterprise-ready document database service compatible with MongoDB

  • Wide column database

    • Amazon Keyspaces
      • Scalable
      • Highly available
      • Run your Apache Cassandra workloads

  • Amazon Neptune AWS service (Graph database)

    • Amazon Neptune
      • Amazon Neptune is used for simplifying the setup and running of your graph databases.
      • This helps you run databases aware of relationships between data.
      • Amazon Neptune can be useful for fraud detection, social media, and similar applications.
      • Build applications that work with highly connected datasets.

  • Time Series database

    • Amazon Timestream
      • Fast
      • Scalable
      • Store and analyze trillions of events per day

  • Ledger database

    • Amazon Quantum Ledger Database (Amazon QLDB)

      Provides logs that are as follows:

      • Transparent
      • Immutable
      • Cryptographically verifiable

Networking

  • Amazon VPC

    • Amazon VPC is your private network space you create to launch your resources in the AWS Cloud.
    • More than one VPC can be launched into your AWS accounts.
    • A private network that provides logical isolation for your workloads
      • This private network is logically isolated from other VPC or remote networks; for example, isolating development from testing.
      • You can control the traffic that can flow in and out of Amazon VPC and the resources launched within.
      • You can also control how to connect your VPC with other networks.
    • Custom access controls and security settings for your resource
      • You can use different VPCs to launch different workloads or stages or workloads if you want to benefit from such logical isolation.
      • You configure how the packets travel through the layers of your network.

  • Amazon Route 53 is a highly available and scalable cloud DNS service.

    • Route 53 Routing Policies
    • Route 53 has various benefits:
      • Amazon Route 53 is a highly available and scalable Domain Name System (DNS) web service.
      • You can use Route 53 to perform three main functions in any combination: domain registration, DNS routing, and health checking.
      • DNS translates domain names into IP addresses.
      • With Route 53, you can purchase and manage domain names and configure DNS settings.
      • Route 53 has multiple routing options.

  • Elastic Load Balancing

    • Route 53 routing traffic to an ELB load balancer
    • Amazon Route 53 is a DNS service. Elastic Load Balancing (ELB) is the load balancing service.
    • Elastic Load Balancing is a web service that improves an application's availability by distributing incoming traffic between two or more EC2 instances.
    • ELB automatically distributes incoming application traffic across multiple targets and virtual appliances in one or more Availability Zones (AZs).
    • It also serves as a single point of contact with your application.
    • As a result, your end users do not need to be aware of how many machines your application is running on or all the details, such as the IP addresses of those machines.

Security

  • The shared responsibility model
    • This model describes specifically what the customers and AWS are responsible for maintaining. It is also important to get used to terminology used in the Shared Responsibility Model. Review the customer responsibilities and AWS responsibilities.
    • AWS responsibility "Security of the Cloud": AWS is responsible for protecting the infrastructure that runs all of the services offered in the AWS Cloud. This infrastructure is composed of the hardware, software, networking, and all of the physical and environmental controls that run AWS Cloud services.
      • AWS software
        • Compute, Storage, Databases, Networking
      • Hardware and AWS Global Infrastructure
        • Regions, Availability Zones, and Edge Locations
    • Customer responsibility "Security in the Cloud": Customer responsibility will be determined by the AWS Cloud services that a customer selects.
      • Platform, applications, and identity and access management
      • Guest Operating system, network, and firewall configuration
      • Client-side data encryption and data integrity authentication
      • Server-side encryption
        • File system and data
      • Network traffic protection
        • Encryption, integrity, and identity
  • AWS Compliance
    • AWS security, identity, and compliance service category: The following are descriptions of several AWS Security Services.
      • IAM: AWS Identity and Access Management (IAM) is one of the first services you learn about because this service helps you control access to your AWS resources.
      • AWS Artifact: Use the AWS Artifact service to generate on-demand compliance reports.
      • AWS KMS: AWS Key Management Service (AWS KMS) helps you generate, manage, and rotate your encryption keys. You can also control who has access to those keys.
      • AWS Shield: Shield protects you from common distributed denial of service (DDoS) attacks.
  • AWS Trusted Advisor
    • AWS Trusted Advisor guides you on how to reduce cost, increase performance, and improve security.
    • AWS Trusted Advisor provides recommendations that help you follow AWS best practices.
    • Trusted Advisor evaluates your account by using checks.
    • These checks identify ways to optimize your AWS infrastructure, improve security and performance, reduce costs, and monitor service quotas. You can then follow the recommendations to optimize your services and resources.
    • Trusted Advisor analyzes your environments across five dimensions: cost optimization, performance, security, fault tolerance, and service limits.

Pricing

  • AWS pricing concepts

    • Pay for what you use
    • Pay less when you reserve.
    • Pay less with volume-based discounts.
    • Pay even less as AWS grows.

  • Cloud financial management with AWS

  • AWS Free Tier: With the AWS Free Tier, you can gain hands-on experience with the AWS platform, products, and services at no cost

Amazon EC2 Purchasing Options: Amazon EC2 provides multiple purchasing options to optimize your costs based on your needs

  • On-Demand Instances

    • Charged per hour/second
    • Short-term
    • Unpredictable workloads

  • Reserved Instances/Savings Plans

    • Discount for 1- to 3-year commitments
    • Larger upfront payment for a greater discount
    • When you purchase a Reserved Instance, you can choose between a Standard Reserved Instance or a Convertible Reserved Instance offering class. Both options are one-year to three-year terms.
      • Standard Reserved Instance: enables you to modify the Availability Zone, scope, networking type, and instance size (within the same instance type) of your Reserved Instance.
      • Convertible Reserved Instance: Enables you to exchange one or more Convertible Reserved Instances for another Convertible Reserved Instance with a different configuration, including instance family, operating system, and tenancy.
    • There are no limits to how often you perform an exchange as long as the target Convertible Reserved Instance is of an equal or higher value than the Convertible Reserved Instances you are exchanging.

  • Spot Instances

    • Up to 90 percent discount
    • Applications with flexible start and end times
    • Urgent computing needs for large amounts of capacity

  • Dedicated Hosts – Pay for a physical host that is fully dedicated to running your instances, and bring your existing per-socket, per-core, or per-VM software licenses to reduce costs.

  • Dedicated Instances – Pay, by the hour, for instances that run on single-tenant hardware.

  • Capacity Reservations – Reserve capacity for your EC2 instances in a specific Availability Zone for any duration.

AWS Training and certification

AWS Certifications

AWS Course resources

Cloud/DevOPs practice exercises

The Cloud Resume Challenge