Revision 2 Flashcards
Allows to connect to AWS Services using a private network. instead of www
VPC Endpoints
-enhanced security
-lower latency
VPC Endpoint for S3 and Dynamo DB
VPC Endpoint Gateway
VPC Enpoint to connect to the rest of AWS Sercvices
VPC Endpoint Interface
Most secure way to expose a service to 1000s of VPC
Private Link
Necessary for a Private Link
-Service: Network Load Balancer
-Consumer: Elastic Network Interface
Connect on-prem to AWS over the public internet, connection encrypted
Site to Site VPN
Physical connection between on-prem and AWS over the private network , private,secure, fast,
Direct Connect DX
Necessary for a site to site VPN
On-prem: Customer Gateway
AWS: Virtual Private Gateway
Connect computer to EC2 over a private IP
AWS Client VPN
-using Open VPN
-over public internet
-could use the site to site to speak to on-prem
Use with
-A transit gateway when you have multiple VPCs in the same Region
-A virtual private gateway
AWS Direct Connect Gateway
Six Pillars of the Well Architected Framework
-Operational Excellence
-Security
-Reliability
-Performance Efficiency
-Cost Optimization
-Sustainability
Well Architected Framework Genera Guiding Principles
-Stop guessing capacity needs
-Test systems at production scale
- Automate to make architectural experimentation easier
-Allow for evolutionary architectures
-Design based on changing requirements
-Drive architectures using data
-Improve through game days
-stress system
Cloud best practices design principles
-Scalability
-Disposable resources
-Automation
-Loose coupling
-Services not servers
Operational Excellence Design Principles
-Perform operations as code - (Cloud Formation)
-Annotate documentation
-Make frequent, small, reversible changes
-Refine operation procedures frequently
-Anticipate failure
Operational excellence design principles as Services
-Prepare
CloudFormation / Config
-Operate
CloudFormation / Config / CloudTrail / CloudWatch / Xray
-Evolve
CloudFormation / CICD services - Code…
