![Page 1: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/1.jpg)
Amazon We(AW
Slices from MajSlices from Maj
AW
eb ServicesWS)
jd F Sakr CMUjd F. Sakr, CMU
WS
![Page 2: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/2.jpg)
AWWS
![Page 3: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/3.jpg)
AWAWAWAW• Provides computing resoup g
can use to build applicatioas-you-go pricing.Example: you can rent a server on AWsecure, and run just as you would a phvirtual server runs on top of a planet svirtual server runs on top of a planet-s
• You pay for your virtual seno up-front purchase costno up front purchase costcosts. Backed by the AWSserver can do things no pserver can do things no pautomatically scaling into demand for your applicatiy pp
Getting started with AWS - http://s3.amazonaws.co
WSWSWSWSurces and services that you yons within minutes at pay-
WS that you can connect to, configure, hysical server. The difference is the
scale network managed by AWSscale network managed by AWS.
erver only while it runs, with ts or ongoing maintenancets or ongoing maintenance S network, your virtual
physical server can, such asphysical server can, such as multiple servers when
ion increases.
om/awsdocs/gettingstarted/latest/awsgsg-intro.pdf
![Page 4: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/4.jpg)
What canWhat canWhat canWhat can• You can run nearly anythiy y
run on physical hardwaredatabases, mobile apps, distributed data analysis, networks. The services w
k h hwork together so that yousolutions.
• There are currently dozenbeing added each year.
Getting started with AWS - http://s3.amazonaws.co
n you do?n you do?n you do?n you do?ing on AWS that you would g y
e: websites, applications, email campaigns, media storage, and private
we provide are designed to b ild lu can build complete
ns of services, with more
om/awsdocs/gettingstarted/latest/awsgsg-intro.pdf
![Page 5: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/5.jpg)
Getting started with AWS - http://s3.amazonaws.coom/awsdocs/gettingstarted/latest/awsgsg-intro.pdf
![Page 6: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/6.jpg)
StoreStoreStoreStore
Getting started with AWS - http://s3.amazonaws.co
e filese filese filese files
om/awsdocs/gettingstarted/latest/awsgsg-intro.pdf
![Page 7: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/7.jpg)
Host a Host a static static wewe
Getting started with AWS - http://s3.amazonaws.co
bsite (html, bsite (html, csscss))
om/awsdocs/gettingstarted/latest/awsgsg-intro.pdf
![Page 8: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/8.jpg)
Host a Host a dynamic dynamic webweb.NET & SQ.NET & SQ
bsite (bsite (phpphp & & mysqlmysql, , QL Server )QL Server )))
![Page 9: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/9.jpg)
Host a Host a dynamic dynamic webweb.NET & SQ.NET & SQ
bsite (bsite (phpphp & & mysqlmysql, , QL Server )QL Server )))
![Page 10: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/10.jpg)
Run a DRun a DRelational DBRelational DBRelational DBRelational DB
NoSQLNoSQL DBDB
atabaseatabase
1
![Page 11: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/11.jpg)
Deploy an ADeploy an AApplicationApplication
1
![Page 12: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/12.jpg)
Create a Create a
• Create virtual private clouds ofrom the Internet, or you can ymakes part of your network a
• Create a hardware virtual privb t t k d AWbetween your network and AWsolution in which part of your physical data center and partphysical data center and partcloud on AWS.
networknetwork
on AWS. These can be isolated add a public-facing subnet that p g
accessible from the Internet. vate network (VPN) connection WS i d t t h b idWS in order to create a hybrid IT infrastructure runs in your
t of it runs in your virtual privatet of it runs in your virtual private
1
![Page 13: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/13.jpg)
AWWS 1
![Page 14: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/14.jpg)
AWWS 1
![Page 15: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/15.jpg)
AWWS1
![Page 16: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/16.jpg)
AWWS1
![Page 17: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/17.jpg)
AWWS 1
![Page 18: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/18.jpg)
AWWS 1
![Page 19: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/19.jpg)
StoStoStoSto• In earlier days when you y y
to scare up enough monepurchase process, and thdelivered, installed, and cFinally (finally!), you gaine
’ f hiwasn’t uncommon for thisto six months!
• EC2 is the most revolutiobecause it has transformeth f i i ithe use of provisioning se
• EC2 provides virtual servll i lf iall via self-service
oryoryoryoryneeded a server, you had , y
ey to buy one, complete the hen have the server connected to the network. ed access to your server. It
k f hs process to take from three
nary of the AWS services ed a fundamental part of IT: ervers.ers in a matter of minutes,
1
![Page 20: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/20.jpg)
EC2 VirtualizatEC2 VirtualizatEC2 VirtualizatEC2 Virtualizat• EC2 is based on virtualiza
using software to create vcarry out all the tasks youcomputer using a “real” ocomputer using a real o
• In a standard virtualizatiomachine is either runningmachine is either runningof saying “not running”).
• EC2 has come up with itsEC2 has come up with itsvirtual machine is runningan instance; when an insti ’ f d iit’s referred to as an imagIn virtualization, a virtual mEC2 an instance is la nchEC2 an instance is launch
ionion vsvs VMWareVMWareion ion vsvs VMWareVMWareation — the process of virtual machines that then u’d associate with a “real” perating systemperating systemn product, a virtual or quiescent (a fancy way or quiescent (a fancy way
s own terminology: When as own terminology: When a g in EC2, it’s referred to as tance isn’t running in EC2,
ge. machine is started, and in hedhed.
2
![Page 21: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/21.jpg)
EC2 VirtualizatEC2 VirtualizatEC2 VirtualizatEC2 Virtualizat• A virtualization product stp
machine on disk; the onlybetween a running virtualvirtual machine is that thebrought into the virtual ma
i l h di koperational — the disk stoexactly the same.
• EC2, by contrast, stores onecessary to provide the
ti toperating system,
ionion vsvs VMWareVMWareion ion vsvs VMWareVMWareores the entire virtual
y difference in storage machine and a quiescent
e running machine is achine manager and made
iorage requirements are
only the actual data virtual machine and
2
![Page 22: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/22.jpg)
Amazon MachinAmazon MachinAmazon MachinAmazon Machin• Amazon Simple Storage Sp g
Images: These S3-backestandard treatment — a fas an instance but a striprunning. ~ LiveCD
• EBS- backed image (Elasoperates more like traditiostorage of the entire instamuch of it has no data.
e Images (AMIs)e Images (AMIs)e Images (AMIs)e Images (AMIs)Service (known as S3) ( )d images are given the ull file system while running peddown image when not
stic Block Storage), onal virtualization, with full ance file system, even if
2
![Page 23: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/23.jpg)
AWWS2
![Page 24: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/24.jpg)
AWWS2
![Page 25: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/25.jpg)
AWWS 2
![Page 26: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/26.jpg)
AWWS 2
![Page 27: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/27.jpg)
AWWS2
![Page 28: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/28.jpg)
2
![Page 29: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/29.jpg)
AWWS 2
![Page 30: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/30.jpg)
AWWS 3
![Page 31: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/31.jpg)
AWWS3
![Page 32: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/32.jpg)
AWWS 3
![Page 33: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/33.jpg)
AAWS 3
![Page 34: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/34.jpg)
AWS NetAWS NetAWS NetAWS Net• Without networking, noneg,
would be able to send an• Virtual LAN (VLAN)…( )• AWS networking is often
completely flat — all traffico p e e y a a aand no hierarchy is implieassigned to an instance. gcompletely flat network imcomplexity on Amazon, bnetwork use.
tworkingtworkingtworkingtworkinge of your AWS instances yd receive network traffic.
described as being c is iPad-address-based, c s ad add ess based,
ed by the IP address Undoubtedly, managing a y g g
mposes challenges and ut it simplifies customer
3
![Page 35: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/35.jpg)
AWS NetworkAWS NetworkAWS Network AWS Network • Unlike other cloud-compup
assign a fixed range of admachines hosted within aVLANs, AWS dynamicallyfrom within its own IP add
• No IP address is persisteaccount, and a server laumay be assigned one IP adifferent IP address tomo
• AWS assigns two IP addrVNIC
IP AddressingIP AddressingIP AddressingIP Addressinguting providers, which g p ,ddresses to virtual a customer’s assigned y assigns IP addresses dress rangently assigned to a customer
unched from a given image address today and a rrow.resses to an instance’s
3
![Page 36: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/36.jpg)
3
![Page 37: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/37.jpg)
AWS NetworkAWS NetworkAWS Network AWS Network • Having two IP addresses
can send and receive trafpublic IP address that anyWithi AWS i t• Within AWS, instances caanother using the private assignedassigned.
• Example: if I have two sehas assigned 10.1.2.3 anhas assigned 10.1.2.3 anassigned 10.1.2.4, those one another via the 10.X.i h bli IP ddvia the public IP address
traffic isn’t routed by the pconfined within AWSconfined within AWS.
IP AddressingIP AddressingIP AddressingIP Addressingmeans that each instance
ffic from outside AWS on a yone can reach.
i t ithan communicate with one IP address they’ve been
rvers, one of which AWS d one of which it hasd one of which it has servers can send traffic to X.X addresses rather than h AWS i d Ththat AWS assigned. That
public Internet; instead, it’s
3
![Page 38: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/38.jpg)
3
![Page 39: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/39.jpg)
3
![Page 40: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/40.jpg)
Three choices ofThree choices ofThree choices ofThree choices off Network Trafficf Network Trafficf Network Trafficf Network Traffic
4
![Page 41: Amazon Web Services S) · n AWS. These can be isolated add a public-facing subnet that ccessible from the Internet. ate network (VPN) connection WS i d t t h b idWS in order to create](https://reader035.vdocument.in/reader035/viewer/2022070709/5ebb618d747cf446f650d7c4/html5/thumbnails/41.jpg)
For others, reaFor others, rea(and (and AWS gAWS g
ad the textbook ad the textbook guidelines)guidelines)