AWS Solutions Architect –‚™ƒ¾—

  • View
    1.507

  • Download
    2

Embed Size (px)

DESCRIPTION

How I prepared for AWS Solutions Architect, associate level. Chinese (Mandarin)

Text of AWS Solutions Architect –‚™ƒ¾—

AWS SA

AWS SA

Cliff Chao-kuan Lu `clifflu`@ AWS , AWSUGTWApr. 17th, 2014 @ CLBC

Slideshare

slideshare exclusive content open Its not a talk show

1

(hyperlink) (reference) CC-BY 3.0

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

2

2

clifflu

Full-stack Web CoderSolutions ArchitectNerd

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

3

about.me/clifflu

3

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

4

4

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

5

5

Disclaimer

- Cliff Chao-kuan Lu 04/02/2014

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

6

Everything changes

6

Bonus!!!

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

7

7

AWS

#1 IaaS , Gartner 2013

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

8

Why AWS ?Maturity1st party & 3rd party tools

8

AWS Arsenal

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

9

Why AWS ?Variety of servicesComputer & Networking: EC2, VPC, Route53Storage: CF, S3, GlacierDatabase: ElastiCache, DynamoDB, RDS, RedshiftDevOps: Authorization: IAMAutomation: EB, OpsWorks, CFMonitoring: CloudWatch, CloudTrailAnalyticsAPP

9

Global Presence

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

10

Latency / Cost optimizationGlobal DR

10

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

11

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

12

AWS

12

Consulting Services

AWSTrusted AdvisorSupport Team

3rd party

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

13

Certificates

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

14

14

Part I.

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

15

15

BlueprintSample Questions

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

16

16

Kryterion Authorization Code

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

17

17

80 55

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

18

18

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

19

19

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

20

Logo

Control

Control

Quiz

Answers

Count Down

20

Region -> Route53Availability (HA): ELB, Route53Scaling: AutoScaling, ELB, EB,

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

21

Prev

21

Blueprint (Content Limits)General ITAWS

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

22

Domain

%

Designing HA, Cost Efficient, Scalable systems

60

Implementation / Deployment

10

Data Security

20

Troubleshooting

10

22

.

High AvailabilityScalingFailoverDesign & Implementation

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

23

HA Scaling Failover HA SA

23

.

IAMVPCSecurity Group / Net ACLRoutingEC2, S3, EBSELB, AutoScaling, Route53RDS, ElastiCache,

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

24

IAM VPC AWS roleEC2, S3, EBS ELB, AutoScaling, Route53 AZ Region HA / Scaling

24

.

NetworkSecurityAccess

Monitor (!?)

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

25

Network Monitor Cloud Computing AWS CloudWatch Monitor Log

25

.

Disaster Recover (RTO / RPO)SecurityAccess ControlDevice decommissioningEncryption

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

26

DR:RTO: Recovery Time Objective, RPO: Recovery Point Objective,

IAM S3 policy log AWS WhitePaper AWS

26

~

API Glacier Request MySQL Multi-AZ

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

27

27

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

28

28

DocumentsGetting Start Web > Kindle, PDFWhite PapersBest PracticeDisaster RecoverySecurityTCO

BlogPodcastYouTubeWebinarAPACTraining

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

29

29

AWS User Group in TaiwanqwikLAB

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

30

30

Mine on Google DriveXmindCC-BY 3.0

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

31

31

More on EC2

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

32

32

Pricing Model

On DemandSpot InstanceReserved InstanceUpfront / hourly1yr / 3yrUtilization: Light, Medium, Heavy

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

33

Spot Instance On Demand

Reserved InstanceHeavy = instance 24 x 7 hourly charge

33

FamilyCPU, RAM, Ephemeral Storage, GPUI/O Performance

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

34

On Demand

34

ECU vs. vCPU

ECU

Xeon 1-1.2 GHzCPU steal%

vCPU

VM nproc

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

35

35

OD family)

ticket

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

36

36

Cloud Computing

OS: WTF

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

37

37

Cloud Computing

NIST Definition:NetworkMonitorScalingHigh Availability

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

38

38

!!??

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

39

!!??

39

Monitor

CloudWatch3rd party toolsNagios, cacti, MRTG

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

40

40

Actuator in AWS

Web APISDKsPythonPHPJava

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

41

3rd Partys

41

Failover / Scaling

EC2AutoScaling + ELB / Route53Managed Services

Infrastructure as CodeCloudFormation

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

42

42

Available Zone

Zone Down ELBSymmetric Architect across AZs

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

43

43

AutoScaling

ap-northeast-1 (Tokyo) 3 AZ AZ downloading 1.5 Scaling Threshold ~ 67% max load

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

44

44

Cross Region DR

White Paper on Disaster RecoveryRoute53

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

45

45

More on Services

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

46

46

AWS IaaS

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

47

Service Provider

47

Core Services

IaaS (EC2)StorageNetworkAuthentication

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

48

48

Platform Lock-in

SPOF VPC

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

49

SPOF scale

EC2 Managed Service AWSPremature optimization is the root of all evil Donald Knuth

49

Managed Services

DevOpsOpsWorks, Elastic Beanstalk, CloudFormation, Instance-basedRDS, ElastiCache, Fully ManagedRoute53SQS, SNS, SES, DynamoDB, Kinesis,

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

50

DevOps: Instance-based: AWS instance typeAZ ( failover)VPC (Net ACL, SG)IAM Fire and forgetAWS IAM

50

Web API

SDK

Open ProtocolService Wrapper

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

51

Web API

SDK

Service Wrapper

APP Logic

Open Protocol: Web Session Store Redis Memcached ElastiCache

51

AWS

=> Managed Service !

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

52

52

Shared Responsibility

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

53

53

AWS

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

54

54

AWS

X

O O

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

55

55

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

56

56

AWS

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

57

57

BlogPodcastWebinarEvents (AWS re:Invent, )Facebook

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

58

58

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

59

59

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

60

60

No Mans Land

Automation

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

61

20

61

Why ?

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

62

How ?

Monitor + APIBulletproof LayersManaged ServicesFault-tolerant consumersFailover

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

63

Logs

Everywhere vs. Nowhere

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

64

Nowhere

20

Managed ServicesGoogle Analytics

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu

65

Everywhere

2014/4/17

CC-BY 3.0, Cliff Chao-kuan Lu