Transcript
Page 1: AWS Solutions Architect 準備心得

AWS SA 準備心得

Cliff Chao-kuan Lu `clifflu`<[email protected]>

@ AWS 讀書大會 , AWSUGTWApr. 17th, 2014 @ CLBC

Slideshare

Page 2: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 2

授權與格式說明以超連結 (hyperlink) 代替引用 (reference)

引用外部內容均已取得授權,或包含原始連結,並在合理範圍內引用

本文件原創內容以 CC-BY 3.0 釋出

Page 3: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 3

關於 cliffluFull-stack Web CoderSolutions ArchitectNerd

about.me/clifflu

Page 5: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 5

應試動機看過太多人亂搞很怕自己跟他們一樣

Page 6: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 6

Disclaimer

宇宙裡真確不變的,唯有這條原則

- Cliff Chao-kuan Lu 04/02/2014

Page 7: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 7

大綱簡介認證測驗試前準備

Bonus!!!

Page 8: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 8

AWS#1 IaaS 服務商 , Gartner 2013

完善的生態系統

Page 9: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 9

AWS Arsenal

Page 10: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 10

Global Presence

Page 12: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 12

自我感覺良好?

Page 13: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 13

Consulting ServicesAWSTrusted AdvisorSupport Team

3rd party

Page 14: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 14

Certificates

Page 15: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

15 Part I. 認證測驗

Page 16: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 16

寫在前面官方認證文件必看!!

BlueprintSample Questions

誠實面對

Page 17: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 17

測驗方式透過 Kryterion 報名,可刷卡地點:台北資策會二樓記得 Authorization Code物品需收入保管箱可能提供紙筆供計算,試後繳回立刻知道結果、沒過下次請早

Page 18: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 18

測驗時間80 分鐘換題會停秒55 題(資訊已移除)

Page 19: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 19

試題型態單選、多選服務功能、特性、比較、併用情境

Page 20: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 20

測驗介面老實說 忘得差不多了小心誤擊送出! Logo

Control

Control

Quiz

Answers

Count Down

Page 21: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 21

站穩腳步監控答題進度進度落後時:

長文開啟字串反射 Region -> Route53 Availability (HA): ELB, Route53 Scaling: AutoScaling, ELB, EB, …

Page 22: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 22

測驗範圍參考 Blueprint 最準 (Content Limits)General ITAWS

Domain %

Designing HA, Cost Efficient, Scalable systems

60

Implementation / Deployment 10

Data Security 20

Troubleshooting 10

Page 23: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 23

範圍 . 架構High AvailabilityScalingFailoverDesign & Implementation

Page 24: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 24

範圍 . 服務IAMVPC

Security Group / Net ACLRouting

EC2, S3, EBSELB, AutoScaling, Route53RDS, ElastiCache, …

Page 25: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 25

範圍 . 概念Network

SecurityAccess

Monitor (!?)

Page 26: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 26

範圍 . 安全Disaster Recover (RTO / RPO)Security

Access ControlDevice decommissioningEncryption

Page 27: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 27

~ 範圍一般不直接考細節,例如:

使用哪隻 API 從抓取 Glacier 檔案簽 Request 的流程MySQL Multi-AZ 實做細節

必要時捨棄:新、小、怪

Page 28: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

28 試前準備

Page 29: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 29

官方材料Documents

Getting Start 先看Web > Kindle, PDF

White PapersBest PracticeDisaster RecoverySecurityTCO 系列

BlogPodcastYouTubeWebinar

APAC

Training

Page 30: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 30

第三方資源社群

AWS User Group in Taiwan讀書會

教育單位qwikLAB

Page 31: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 31

筆記Mine on Google Drive

Xmind歡迎協作引用CC-BY 3.0

Page 32: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

32 More on EC2

Page 33: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 33

Pricing ModelOn DemandSpot InstanceReserved Instance

Upfront / hourly1yr / 3yrUtilization: Light, Medium, Heavy

Page 34: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 34

機型選擇Family

CPU, RAM, Ephemeral Storage, GPU

連帶影響: I/O Performance

Page 35: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 35

ECU vs. vCPUECU效能計算單位Xeon 1-1.2 GHzCPU steal%

vCPUVM 所見核心數nproc

Page 36: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 36

買錯怎麼辦先用 OD 測試升級合約(限同 family)售出合約(需米國信用卡)

手滑買錯可以開 ticket 哭哭

Page 37: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

37 Cloud Computing

OS: WTF 還講這個

Page 38: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 38

Cloud ComputingNIST Definition:

NetworkMonitorScalingHigh Availability

Page 39: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 39

有做到嗎 !!??

有做對嗎 !!??

Page 40: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 40

MonitorCloudWatch3rd party tools

Nagios, cacti, MRTG…

Page 41: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 41

Actuator in AWSWeb APISDKs

PythonPHPJava…

無限期支持3rd Partys !!

Page 42: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 42

Failover / ScalingEC2

AutoScaling + ELB / Route53

Managed Services

Infrastructure as CodeCloudFormation簡化跨區建置、環境切割

Page 43: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 43

Available ZoneZone Down 絕對可能發生如何準備:

ELBSymmetric Architect across AZs

Page 44: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 44

AutoScaling 參數以 ap-northeast-1 (Tokyo) 為例

3 AZ若 AZ down , loading 要變 1.5 倍Scaling Threshold ~ 67% max load

Page 45: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 45

Cross Region DR強力推薦: White Paper on Disaster Recovery

Route53

Page 46: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

46 More on Services

Page 47: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 47

AWS 不只是 IaaS

更是 Service Provider

Page 48: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 48

Core ServicesIaaS (EC2)StorageNetworkAuthentication

Page 49: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 49

不良示範原因Platform Lock-in雲端架構不當

結果無用功SPOF比 VPC 更不穩

Page 50: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 50

Managed ServicesDevOps

OpsWorks, Elastic Beanstalk, CloudFormation, …

Instance-basedRDS, ElastiCache, …

Fully ManagedRoute53SQS, SNS, SES, DynamoDB, Kinesis, …

Page 51: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 51

Web API

SDK

正解Open ProtocolService Wrapper

Web API

SDK

Service Wrapper

APP Logic

Page 52: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 52

關鍵讓 AWS 煩惱實做專注於自身服務、產品

=> Managed Service !

Page 53: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

53 Shared Responsibility

Page 54: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 54

使用 AWS 服務,還是要理解細節!!

Page 55: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 55

使用 AWS 可節省X 學習成本

O 開發成本O 維護成本

Page 56: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 56

為何?架構需要人為共享管理責任

有多少權力,就有多少責任

Page 57: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

57 AWS 推陳出新

跟上!

Page 58: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 58

新知來源官方

Blog 、 Podcast 、 WebinarEvents (AWS re:Invent, …)

社群Facebook友多聞

Page 59: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 59

Page 60: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 60

Page 61: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

61 No Man’s Land

Automation

Page 62: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 62

Why ?

如果人類能拯救服務人類就能搞爛它

Page 63: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 63

How ?Monitor + APIBulletproof LayersManaged ServicesFault-tolerant consumersFailover

Page 64: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]>

64 LogsEverywhere vs. Nowhere

Page 65: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 65

Nowhere20 世紀高負載建議

Managed ServicesGoogle Analytics

Page 66: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 66

Everywhere雲端、大資料時代首選

資料粒度細、內容完整可分析效能瓶頸、潛在威脅

蒐集、儲存、分析各有成本法律問題

Page 67: AWS Solutions Architect 準備心得

04/07/2023CC-BY 3.0, Cliff Chao-kuan Lu <[email protected]> 67

取捨


Recommended