AWS SA 準備心得
Cliff Chao-kuan Lu `clifflu`<[email protected]>
@ AWS 讀書大會 , AWSUGTWApr. 17th, 2014 @ CLBC
Slideshare
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 2
授權與格式說明以超連結 (hyperlink) 代替引用 (reference)
引用外部內容均已取得授權,或包含原始連結,並在合理範圍內引用
本文件原創內容以 CC-BY 3.0 釋出
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 3
關於 cliffluFull-stack Web CoderSolutions ArchitectNerd
about.me/clifflu
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 4
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 5
應試動機看過太多人亂搞很怕自己跟他們一樣
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 6
Disclaimer
宇宙裡真確不變的,唯有這條原則
- Cliff Chao-kuan Lu 04/02/2014
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 9
AWS Arsenal
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 10
Global Presence
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 12
自我感覺良好?
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 13
Consulting ServicesAWSTrusted AdvisorSupport Team
3rd party
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 14
Certificates
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>
15 Part I. 認證測驗
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 16
寫在前面官方認證文件必看!!
BlueprintSample Questions
誠實面對
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 17
測驗方式透過 Kryterion 報名,可刷卡地點:台北資策會二樓記得 Authorization Code物品需收入保管箱可能提供紙筆供計算,試後繳回立刻知道結果、沒過下次請早
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 18
測驗時間80 分鐘換題會停秒55 題(資訊已移除)
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 19
試題型態單選、多選服務功能、特性、比較、併用情境
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 20
測驗介面老實說 忘得差不多了小心誤擊送出! Logo
Control
Control
Quiz
Answers
Count Down
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 21
站穩腳步監控答題進度進度落後時:
長文開啟字串反射 Region -> Route53 Availability (HA): ELB, Route53 Scaling: AutoScaling, ELB, EB, …
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 22
測驗範圍參考 Blueprint 最準 (Content Limits)General ITAWS
Domain %
Designing HA, Cost Efficient, Scalable systems
60
Implementation / Deployment 10
Data Security 20
Troubleshooting 10
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 23
範圍 . 架構High AvailabilityScalingFailoverDesign & Implementation
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 24
範圍 . 服務IAMVPC
Security Group / Net ACLRouting
EC2, S3, EBSELB, AutoScaling, Route53RDS, ElastiCache, …
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 25
範圍 . 概念Network
SecurityAccess
Monitor (!?)
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 26
範圍 . 安全Disaster Recover (RTO / RPO)Security
Access ControlDevice decommissioningEncryption
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 27
~ 範圍一般不直接考細節,例如:
使用哪隻 API 從抓取 Glacier 檔案簽 Request 的流程MySQL Multi-AZ 實做細節
必要時捨棄:新、小、怪
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>
28 試前準備
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 29
官方材料Documents
Getting Start 先看Web > Kindle, PDF
White PapersBest PracticeDisaster RecoverySecurityTCO 系列
BlogPodcastYouTubeWebinar
APAC
Training
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 30
第三方資源社群
AWS User Group in Taiwan讀書會
教育單位qwikLAB
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 31
筆記Mine on Google Drive
Xmind歡迎協作引用CC-BY 3.0
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>
32 More on EC2
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 33
Pricing ModelOn DemandSpot InstanceReserved Instance
Upfront / hourly1yr / 3yrUtilization: Light, Medium, Heavy
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 34
機型選擇Family
CPU, RAM, Ephemeral Storage, GPU
連帶影響: I/O Performance
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 35
ECU vs. vCPUECU效能計算單位Xeon 1-1.2 GHzCPU steal%
vCPUVM 所見核心數nproc
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 36
買錯怎麼辦先用 OD 測試升級合約(限同 family)售出合約(需米國信用卡)
手滑買錯可以開 ticket 哭哭
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 38
Cloud ComputingNIST Definition:
NetworkMonitorScalingHigh Availability
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 40
MonitorCloudWatch3rd party tools
Nagios, cacti, MRTG…
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 41
Actuator in AWSWeb APISDKs
PythonPHPJava…
無限期支持3rd Partys !!
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 42
Failover / ScalingEC2
AutoScaling + ELB / Route53
Managed Services
Infrastructure as CodeCloudFormation簡化跨區建置、環境切割
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 43
Available ZoneZone Down 絕對可能發生如何準備:
ELBSymmetric Architect across AZs
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 44
AutoScaling 參數以 ap-northeast-1 (Tokyo) 為例
3 AZ若 AZ down , loading 要變 1.5 倍Scaling Threshold ~ 67% max load
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 45
Cross Region DR強力推薦: White Paper on Disaster Recovery
Route53
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>
46 More on Services
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 48
Core ServicesIaaS (EC2)StorageNetworkAuthentication
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 49
不良示範原因Platform Lock-in雲端架構不當
結果無用功SPOF比 VPC 更不穩
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 50
Managed ServicesDevOps
OpsWorks, Elastic Beanstalk, CloudFormation, …
Instance-basedRDS, ElastiCache, …
Fully ManagedRoute53SQS, SNS, SES, DynamoDB, Kinesis, …
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 51
Web API
SDK
正解Open ProtocolService Wrapper
Web API
SDK
Service Wrapper
APP Logic
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 52
關鍵讓 AWS 煩惱實做專注於自身服務、產品
=> Managed Service !
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>
53 Shared Responsibility
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 54
使用 AWS 服務,還是要理解細節!!
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 58
新知來源官方
Blog 、 Podcast 、 WebinarEvents (AWS re:Invent, …)
社群Facebook友多聞
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 59
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 60
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 63
How ?Monitor + APIBulletproof LayersManaged ServicesFault-tolerant consumersFailover
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>
64 LogsEverywhere vs. Nowhere
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 65
Nowhere20 世紀高負載建議
Managed ServicesGoogle Analytics
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 66
Everywhere雲端、大資料時代首選
資料粒度細、內容完整可分析效能瓶頸、潛在威脅
蒐集、儲存、分析各有成本法律問題
04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 67
取捨