Don't wanna be here? Send us removal request.
Statistics
We looked inside some of the posts by my-learning-diary and here's what we found interesting.
Average Info
Notes Per Post
4
Likes Per Post
3
Reblog Per Post
1
Reply Per Post
0
Time Between Posts
10 days
Number of Posts By Type
Text
17
Last Seen Tumblr Blogs
Fun Fact
Tumblr was acquired by Yahoo for $1.1B in 2013.
Text
Perched atop the rugged cliffs, the majestic griffin surveys its domain with piercing eyes. A creature of myth, where the regal eagle meets the noble lion, it stands as a symbol of power and freedom. Its golden feathers catch the sun's last rays, a sight that fills the heart with wonder and the mind with ancient tales.
3 notes
路
View notes
Text
AWS Cloud Practitioner - study notes
Pricing
------------------------------------------------------
Three fundamental drivers fo cost: compute, storage and outbound data transfer.
Three free offer types: 12 months free, always free and trials.
Total Cost of Ownership (TCO): Financial estimate that helps to understand both the direct and indirect costs.
Minimize capital expenditures, utilize reserved instances, right size your resources.
Application Discovery Service:
Helps in planning of migrations to AWS Cloud.
Plan migration projects
Used to estimate TCO
Works with other services to migrate servers
AWS Price List API:
Query the prices of AWS services.
Uses JSON or HTML
Receive price alerts when prices changes
Support Plans:
Basic
Account and billing
Service limit increases
Customer service: 24/7 via email
Developer
Account and billing
Service limit increases
Technical support
1 Primary contact
Cloud Support Associate: via email only in business-hours
Response times: <24h general guidance, <12h system impaired
Business
Account and billing
Service limit increases
Technical support
Unlimited contacts
Full set of Trusted Advisor Checks
Cloud Support Engineers: 24/7 via email, phone or chat
Response times: <24h general guidance, <12h system impaired, <4h production system impaired, <1h production system down
Enterprise
Account and billing
Service limit increases
Technical support
Unlimited contacts
Full set of Trusted Advisor Checks
Technical Account Manager (TAM)
Concierge Support Team
Infrastructure Event Management
Cloud Support Engineers: 24/7 via email, phone or chat
Response times: <24h general guidance, <12h system impaired, <4h production system impaired, <1h production system down, <15min business-critical system down
Budgets:
Set custom budgets that alert when costs or usage exceed budgeted amount.
Improve planning and cost control
Cost, usage and reservation budgets
Budget alerts
Cost and Usage Report:
Most comprehensive set of cost and usage data.
Aggregate usage data on daily, hourly or monthly level.
Cost Explorer:
Visualize and forecast costs and usage over time.
Visualize costs over time
View past 12 months
Forecast for up to 3 months
Organizations:
Centrally manage multiple AWS accounts under one umbrella.
Group multiple accounts
Single payment for all accounts
Automate account creation
Allocate resources and apply policies across accounts
Control Tower:
Ensure your accounts conform to company-wide policies.
Helps set up new accounts using a multi-account strategy
Works directly with AWS Organizations
Enforces the best use of services across accounts
Provides a dashboard to manage accounts
System Manager:
Gives visibility and control over your AWS resources.
Automate operational tasks on your resources
Group resources and take action
Patch and run commands on multiple EC2 instances or manage RDS instances
Trusted Advisor:
Provides real-time guidance to help provision resources following AWS best practices.
License Manager:
Manage and track software licenses.
Certificate Manager:
Provision and manage SSL/TLS certificates. Provides public and private certificates for free.
0 notes
Text
AWS Cloud Practitioner - study notes
Security and Compliance
------------------------------------------------------
Shared Responsibility Model:
AWS responsibility: security of the cloud
Infrastructure elements: regions, edge locations an availability zones
Access control to data centers
Maintains networking components
Managed services like RDS, S3, ECS, Lambda
My responsibility: security in the cloud
Application data
Security configs like API calls, rotating credentials etc
Patching of a quest operation system
IAM
Network traffic protection
Installed software
Identity and Access Management (IAM):
Control access to your AWS services and resources
Secure cloud
Define who has access
Define what they can do
Free
Web Application Firewall (WAF):
Protect your web applications against common web attacks.
Protects apps against common attack patterns
Protects against SQL injection
Protects against cross-site scripting
Shield:
Managed Distributed Denial of Service protection service.
Always on-detection
Shield Standard is free
Shield Advanced is paid
Works with: CloudFront, Route S3, Elastic Load Balancing and AWS Global Accelerator
Macie:
Discover and protect sensitive data.
Uses machine learning
Evaluates S3 environment
Uncovers personally identifiable information (PII)
Config:
Asses, audit and evaluate the configs of resources.
Track config changes over time
Deliver config history file to S3
Notifications via Simple Notification Service of every config change
GuardDuty:
Intelligent threat detection system which uncovers unauthorized behavior.
Uses machine learning
Built-in detection for EC2, S3 and IAM
Reviews CloudTrail, VPC Flow Logs and DNS logs
Inspector:
Works with EC2 instances to uncover an report vulnerabilities.
Agent installed on EC2 instance
Reports vulnerabilities found
Check access from the internet, remote root login, vulnerable software versions, etc.
Artifact:
Offers on-demand access to AWS security and compliance reports.
Central repository for compliance reports form third-party auditors
Service Organization Controls (SOC) reports
Payment Card Industry (PCI) reports
Cognito:
Control access to mobile and web applications.
Provides authentication and authorization
Helps you manage users
Assists with user sign-up and sign-in
Key Management Service (KMS):
Generate and store encryption keys.
Key generator
Store and control keys
AWS manages encryption keys
Automatically enabled for certain services
CloudHSM:
Hardware security module (HSM) used to generate encryption keys.
Dedicated hardware for security
Generate and manage own encryption keys
AWS doesn't have access to keys
Secrets Manager:
Manage and retrieve secrets like passwords and keys.
Rotate, manage and retrieve secrets
Encrypt secrets at rest
Integrates with services like RDS, Redshift and DocumentDB
Well-Architected Framework:
Design principles and best practices for running workloads in the cloud.
Operational Excellence: AWS CodeCommit for version controlling and code changing.
Security: Using CloudTrail to configure central logging of all actions in account.
Reliability: Multi-AZ deployments for enhanced availability and reliability of RDS databases
Performance Efficiency: use AWS Lambda to run code whitout adminisitration.
Cost Optimization: USe S3 Intelligent-Tiering to move data between access tires.
Sustainability: Using EC2 Auto Scaling to ensure max. utilization.
0 notes
Text
AWS Cloud Practitioner - study notes
Monitoring and Logging
------------------------------------------------------
CloudWatch:
Collection of services to help monitoring and observing cloud resources.
Collects metrics, logs and events
Detect anomalies in the enviroment
Set alarms
Visualize logs
CloudTrail
Track user activity and API calls
Log and retain account activity
Track activity through the console, SDKs and CLI
Identify which user made changes
Detect unusual activity
0 notes
Text
AWS Cloud Practitioner - study notes
Messaging and Integration
------------------------------------------------------
Simple Queue Services (SQS):
Message queuing service which allows building loosely coupled systems.
Allows component-to-component communication using messages
Multiple components can add messages to the queue
Messages are processed in an asynchronous manner
Messages in queues are processed in FIFO order.
Simple Notification Service (SNS):
Send emails and text messages from applications.
Send email and text messages
Publish messages to a topic
Subscribers receive messages
Simple Email Service (SES):
Sen richly formatted HTML emails from applications
Ideal choice for marketing campaigns or professional emails
Sends HTML emails
0 notes
Text
AWS Cloud Practitioner - study notes
Deployment and Infrastructure
------------------------------------------------------
CloudFormatio:
Provision AWS resources using Infrastructure as Code (IaC).
Provides a repeatable process for provisioning resources
Works with most AWS services
Create templates for the resources you want to provision
Elastic Beanstalk:
Deploy web applications and web services to AWS.
Orchestration service which provisions resources
Automatically handles the deployment
Monitors application health with health dashboard
OpsWorks:
Use Chef or Puppet to automate the configuration of the servers and deploy code.
Deploy code and manage applications
Manage on-premises servers / EC2 instances in AWS Cloud
Works with Chef and Puppet
0 notes
Text
AWS Cloud Practitioner - study notes
Developer Tools
------------------------------------------------------
Cloud9:
Write code in an integrated development environment (IDE) in a web browser.
Integrated development tool (IDE)
Write and debug code
Supports popular programming languages
CodeCommit:
Source control system for private Git repositories.
Create repositories
Commit, branch and merge code
Collaborate with other software developers
CodeBuild:
Build an test application source code.
Compiles source code and runs tests
Enable continuous integration and delivery
Produces build artifacts ready to be deployed
CodeDeploy:
Manages the deployment of code to compute services.
Deploy code to EC2, Fargate,Lambda and on-premises
Maintains application uptime
CodePipeline:
Automates software release process.
Quickly deliver new features and updates
Integrates with CodeBuild to run builds an unit tests
Integrates with CoeCommit to retrieve source code
Integrates with CodeDeploy to deploy changes
X-Ray:
Debug production applications.
Analyze and debug production applications
Map application components
View requests end to end
CodeStar:
Collaboratively work on development projects.
Developers connect their development environment
Integrates with CodeCOmmit, CodeBuild and CodeDeploy
Contains issue tracking dashboard
0 notes
Text
AWS Cloud Practitioner - study notes
Machine Learning
------------------------------------------------------
Rekognition:
Automate image and video analysis.
Image and video analysis
Identify custom labels in images and videos
Face and text detection in images and videos
Comprehend:
Natural-language processing (NLP) service which finds relationships in text.
Natural-language processing service
Finds insights and relationships
Analyzes text
Polly:
Text to speech.
Mimics natural-sounding human speech
Several voices across many languages
Can create a custom voice
SageMaker:
Build, train and deploy machine learning models.
Prepare data for models
Train and deploy models
Provides Deep Learning AMIs
Translate:
Language translation.
Provides real-time and batch language translation
Support many languages
Translates many content formats
Lex:
Build conversational interfaces like chatbots.
Recognizes speech and understands language
Build engaging chatbots
Powers Amazon Alexa
0 notes
Text
AWS Cloud Practitioner - study notes
Analytics
------------------------------------------------------
Amazon Redshift:
Scalable data warehouse solution.
Data warehousing solution
Improves speed and efficiency
Handles exabyte-scale data
Use case: Data consolidation, Relational databases
Amazon Athena:
Query service for Amazon S3.
Query service
Analyze S3 data using SQL
Serverless
Glue:
Prepare data for analytics.
Extract, transform, load (ETL) service
Prepare and load data
Helps to better understand your data
Kinesis:
Analyze data and video streams in real time.
Analyze real-time, streaming data
Supports: video, audio, logs, clickstreams an IoT
Elastic MapReduce (EMR):
Process large amount of data.
Procress big data
Analyze data using Hadoop
Works with big data frameworks
Data Pipeline:
Move data between compute and storage services.
Moves data at specific intervals
Moves data based on conditions
Sends notifications on success or failure
QuickSight:
Visualize your data.
Build interactive dashboards
Embed dashboards in your applications
0 notes
Text
AWS Cloud Practitioner - study notes
Migration and Transfer
------------------------------------------------------
Database Migration Service (DMS):
Migrate databases to/or within AWS.
Migrate on-premises database to AWS
Continuous data replication
Supports homogeneous and heterogeneous migrations
Virtually no downtime
Server Migration Service (SMS):
Migrate on-premises servers to AWS.
Migrate on-premises servers to AWS
Server saved as a new Amazon Machine Image (AMI)
Use AMI to launch servers as EC2 instances
Snow Family:
Snowcone
Smallest data transfer device in the Snow Family
8 terabytes of usable storage
Offline shipping
Offline DataSync
Snowball (Edge)
Petabyte-scale data transport solution
Transfer data in/out
Cheaper than internet transfer
Supports EC2 and Lambda
Snowmobile
Multi-petabyte or exabyte scale
Data loaded to S3
Securely transported
DataSync:
Online data transfer from on-premises to AWS storage.
Migrates data from on-premises to AWS
Copy data over Direct Connect or the internet
Copy data between AWS storage services
Replicate data cross-Region or cross-account
0 notes
Text
AWS Cloud Practitioner - study notes
Databases
------------------------------------------------------
Amazon Relational Database Service (RDS):
Service which makes it easy to launch and manage relational databases.
Supports popular databases
High availability and fault tolerance when using Multi-AZ depoloying
AWS manages automatic software patching, backups, operating system maintenance, and more
Enhance performance and durability by launching read replicas acros regions
Use case: migrate an on-premises (Oracle/PostgreSQL) database to the cloud
Amazon Aurora:
Relational database compatible with MySQL and PostgreSQL.
Supports MySQL and PostgreSQL
5x faster than normal MySQL and 3x faster than normal PostgreSQL
Scales automatically
Managed by RDS
Use case: migrate an on-premises PostgreSQL database to the cloud.
Amazon DynamoDB:
Fully managed NoSQL key-value and document database.
NoSQL key-value database
Fully managed and serverless
Scales automatically
Non-relational
Use case: NoSQL database fast enough to handle millions of request per seconds.
Amazon DocumentDB:
Fully managed document database which supports MongoDB.
Document database
MongoDB compatible
Fully managed and serverless
Non-relational
Use case: Operate MOngoDB workload at scale.
Amazonb ElastiCache:
Fully managed in-memory datastore compatible with Redis or Memcached.
In-memory datastore
Compatible with Redis or Memcached
Data cen be lost
Offers high performance and low latency
Use case: Alleviate database load for data that is accessed often.
Amazon Neptune:
Fully managed graph database that supports highly connected datasets.
Graph database service
Supports highly connected datasets
Fully managed and serverless
Fast and reliable
Use case: Process large sets of example user profiles and social interactions.
0 notes
Text
AWS Cloud Practitioner - study notes
Content Delivery
------------------------------------------------------
Amazon Cloudfront:
A CDN which delivers data and applications globally with low latency.
Makes content available globally or restrict based on location
Speeds up content delivery
Uses edge locations to cache content
Real World CloudFront applications:
S3 static websites
Prevent attacks
IP address blocking
Amazon Global Accelerator:
Sends user through the AWS global network when accessing content and thus speeding up delivery.
Improves latency and availability of single region applications
Sends traffic through the AWS global network
Boosts perfomance
Automatically re-routes traffic to healthy endpoints
Amazon S3 Transfer Accleration:
Improves content uploads/downloads to/from S3 buckets.
Fast file transfers even on long distances
Uses CloudFront globally distributed edge locations
Central bucket where customers around the world can upload to
0 notes
Text
AWS Cloud Practitioner - study notes
Storage > Other Services
------------------------------------------------------
Elastic Compute Cloud Storage:
EC2 supports several storage options for instances.
Amazon Elastic Block Store (EBS):
Storage device (volume) that can be attached to instance.
Data persists when instance is not running
Tied to one Availability Zone
Can be only attached to one instance in the same Availability Zone
Recommended: quickly accessed data, database, long-term-storage
EC2 Instance Store
Local storage that is physically attached to the host computer.
Disks physically attached to an instance
High I/O speeds = Faster
Temporary, data loses when EC2 instance stops
Recommended: temporary storage needs, data replications acros multiple instances
Amazon Elastic File System (EFS)
Serverless network file system for file sharing.
Supports only Linux
Expensive than EBS
Accessible across different Availability Zones in the same region
Recommended: main directories for business-critical apps, lift-and-shift
Storage Gateway
Hybrid storage service.
Connect on-premises and cloud data
Supports hybrid model
Recommended: moving backups to the cloud, cost reducing for hybrid cloud storage, low latency access to data
AWS Backup
Manage data backup across multiple AWS services.
Integrates with: EC2, EBS, EFS, etc..
Create backup plan which includes frequency and retention
0 notes
Text
AWS Cloud Practitioner - study notes
Storage > Amazon Simple Storage Service (Amazon S3)
------------------------------------------------------
Amazon Simple Storage Service (Amazon S3)
Storage service for the cloud.
Security on bucket or individual object level using access control lists (ACLs), bucket policies or access point policies
Enable versioning
Access logs
Regional service. but buckets has to be globally unique
Durability: objects are never lost or compromised Availability: access data quickly when needed
Amazon S3 Storage Classes:
S3 Standard:
This is the default storage class, offering high durability, availability, and low-latency performance. It is suitable for frequently accessed data.
Use Cases: Active data, frequently accessed content, big data analytics, mobile and gaming applications.
S3 Intelligent-Tiering:
This storage class automatically moves objects between two access tiers (frequent and infrequent) based on changing access patterns. It aims to provide cost savings without performance impact.
Use Cases: Data with unknown or changing access patterns, cost optimization for a wide range of workloads.
S3 Standard-IA (Infrequent Access):
Designed for infrequently accessed data but with lower retrieval fees compared to S3 Standard. It provides high durability and availability.
Use Cases: Backup and long-term storage, disaster recovery data, data archives.
S3 One Zone-IA:
Similar to S3 Standard-IA but stores data in a single availability zone, making it less durable but more cost-effective. It's suitable for data that can be recreated or is non-critical.
Use Cases: Secondary backup copies, easily reproducible data, non-critical workloads.
S3 Glacier:
A very low-cost storage class designed for archiving data with retrieval times measured in minutes to hours. It offers high durability but slower access times.
Use Cases: Data archiving, compliance and regulatory data retention, long-term backup.
S3 Glacier Deep Archive:
The most cost-effective storage class, designed for archiving data that is rarely accessed and can tolerate access times measured in hours.
Use Cases: Data with very long-term retention requirements, compliance archives, digital preservation.
S3 Outposts:
A storage class that allows you to store data on AWS Outposts, which are on-premises extensions of the AWS cloud. It offers the same durability and low-latency access as S3 Standard.
Use Cases: Hybrid cloud deployments, data residency requirements.
Real-World usage of S3
Static websites
Data archive
Analytics Systems
Mobile applications
0 notes
Text
AWS Cloud Practitioner - study notes
Compute > Other Compute Services
------------------------------------------------------
AWS Fargate
Serverless compute engine for container.
Manage containers like Docker
Scales automatically
serverless
Amazon Lightsail
Launch quickly resources for small projects
Deploy preconfigured applications, like WordPress
Simple and easy to use even to people with no cloud experience
Includes: virtual machines, storage, data transfer, DNS management and static ip
Predictable and low monthly fee
Amazon Outposts
Allows to run cloud services in internal data center.
For workloads which needs to remain on-premises
AWS handles delivery and installing of servers
Hybrid
Access to the cloud services and APIs on-premises
AWS Batch
Proccess large workloads in small batches
0 notes
Text
AWS Cloud Practitioner - study notes
Compute > AWS Lambda
------------------------------------------------------
AWS Lambda
Serverless compute service.
Real-World usage of Lambda:
Real-time file processing
Sending email notifications
Backend business logic
Lambda Features:
Support popular programming languages
Code authoring in preferred development environment
Lambda executes code in response to events
Function time-out 15min
Lamda pricing options:
Compute time
Request count
"Always free"
0 notes
Text
AWS Cloud Practitioner - study notes
Compute > EC2
------------------------------------------------------
Elastic Compute Cloud (EC2)
Allows renting and amanging virtual servers in the cloud
Real-World usage of EC2 instances:
Deploying a database
Deploying a web application
Connecting to EC2 instance:
AWS Management Console
EC2 Instance Connect (EIC)
Secure Shell (SSH)
AWS System Manager
The most common way to connect to EC2 instances is via SSH.
EC2 pricing options:
On-Demand Instances: With on-demand pricing, you pay for compute capacity on an hourly or per-second basis, depending on the instance type, with no upfront costs or long-term commitments. This is a flexible option for short-term and variable workloads.
Spot Instances: Spot Instances let you bid for spare EC2 capacity at a price you specify. These instances can be significantly cheaper than on-demand instances but come with the risk of being terminated if the capacity is needed elsewhere. They are suitable for fault-tolerant, scalable, or batch processing workloads.
Reserved Instances (RIs): Reserved Instances allow you to commit to a one-year or three-year term and receive a significant discount compared to on-demand pricing. You can choose from various RI types, including Standard RIs, Convertible RIs, and Scheduled RIs. The longer your commitment and the higher the upfront payment, the greater the discount.
Dedicated Hosts: Dedicated Hosts allow you to run instances on physical servers dedicated to your AWS account. This option is useful for compliance requirements, licensing restrictions, or when you need more control over your infrastructure.
Savings Plans: Savings Plans provide a flexible pricing model that offers significant cost savings compared to on-demand pricing. You commit to a specific dollar amount per hour (or per second) for a one- or three-year term, and AWS automatically applies the discount to instances that match your usage, regardless of instance family, size, or availability zone.
Elastic Load balancers:
Classic
Application
Gateway
Network
Autoscaling:
Vertical scaling = adding more power (CPU,RAM) Horizontal scaling = adding more server
1 note
路
View note