treinamento de aws - 1° parte
DESCRIPTION
Nesta semana ocorreu o Primeiro Treinamento de AWS da Site Blindado Labs, ministrado pelo Heitor Vital (CTO Site Blindado). Vídeo do treinamento: https://www.youtube.com/watch?v=2C0JlawhSwY Mais info: http://labs.siteblindado.com/2014/09/primeito-treinamento-de-aws-amazon-web.htmlTRANSCRIPT
AWS Certified Solutions ArchitectAssociate Level
Labs● Blog
○ labs.siteblindado.com○ imasters.com.br
● Eventos○ 1° Fórum de Segurança (Agosto)○ Grupo de Estudo AWS CSA - Associate (Set/Out)
Pessoas
ProcessosTecnologia
Ability to Execute● Product/Service● Overall Viability● Sales Execution/Pricing● Market Responsiveness/Record● Marketing Execution ("mind share")● Customer Experience● Operations
Completeness of Vision● Market Understanding● Marketing Strategy● Sales Strategy● Offering (Product) Strategy● Business Model● Vertical/Industry Strategy● Innovation● Geographic Strategy
Por que AWS?
Fonte: http://www.gartner.com/technology/reprints.do?id=1-1UKQQA6&ct=140528&st=sb
AWS Certification Roadmap
Exam Overview● Multiple choice and multiple answer questions● 80 minutes to complete the exam● 40 - 60 questions● 65% or above is passing score● No prerequisites● Valid for 2 years● $150,00
● Grupo 03 (20%)○ Data Security
● Grupo 04 (10%)○ Troubleshooting
Assuntos● Grupo 01 (60%)
○ Designing highly available○ Cost efficient○ Fault tolerant○ Scalable systems
● Grupo 02 (10%)○ Implementation○ Deployment
Calendário Encontros1. 08/Set - Abertura, Overview AWS e S32. 16/Set (terça) - Cloudfront e Route533. 22/Set - EC2 e VPC4. 29/Set - RDS, DynamoDB e Other Storage Options5. 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS6. 13/Out - IAM e Security7. 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00
Materiais de ApoioReferências1. Página oficial2. Post sobre o programa e prova3. AWS Architecture Center4. AWS Security Center5. AWS Documentation Page6. Curso online
White Papers1. Overview of Amazon Web Services2. Overview of Security Processes3. AWS Risk and Compliance4. Storage Options in the AWS Cloud5. Architecting for the AWS Cloud: Best
Practices6. Storage Use Cases7. Designing Fault-Tolerant Applications in
the AWS Cloud
Antes de começar ...
Exemplos de questões
Questão 01 / 10Does S3 provide read-after-write consistency?a. No, not for any regionb. Yes, but only for certain regionsc. Yes, but only for certain regions and for new objectsd. Yes, for all regions
Questão 02 / 10What is the maximum size of a single S3 object?a. There is no such limitb. 5 TBc. 5 GBd. 100 GB
Questão 03 / 10Is data stored in S3 is always encrypted?a. Yes, S3 always encrypts data for securityb. No, there is no such featurec. Yes, but only when right APIs are calledd. Yes, but only in Gov Cloud datacenters
Questão 04 / 10What is true for S3 buckets (select multiple if more than one is true)?a. Bucket namespace is shared and is global among all AWS users.b. Bucket names can contain alphanumeric charactersc. Bucket are associated with a region, and all data in a bucket resides in that regiond. Buckets can be transferred from one account to another through API
Questão 05 / 10EBS can always tolerate an Availability Zone failure?a. No, all EBS volume is stored in a single Availability Zoneb. Yes, EBS volume has multiple copies so it should be finec. Depends on how it is setupd. Depends on the Region where EBS volume is initiated
Questão 06 / 10Which of the following Auto scaling CANNOT do (select multiple if more than one is true)?a. Start up EC2 instances when CPU utilization is above thresholdb. Release EC2 instances when CPU utilization is below thresholdc. Increase the instance size when utilization is above thresholdd. Add more Relational Database Service (RDS) read replicas when utilization is above threshold
Questão 07 / 10Which of the following benefits does adding Multi-AZ deployment in RDS provide (choose multiple if more than one is true)?a. MultiAZ deployed database can tolerate an Availability Zone failureb. Decrease latencies if app servers accessing database are in multiple Availability Zonesc. Make database access times faster for all app serversd. Make database more available during maintenance tasks
Questão 08 / 10What happens to data when an EC2 instance terminates (select multiple if more than one is true)?a. For EBS backed AMI, the EBS volume with operation system on it is preservedb. For EBS backed AMI, any volume attached other than the OS volume is preservedc. All the snapshots of the EBS volume with operating system is preservedd. For S3 backed AMI, all the data in the local (ephemeral) hard drive is deleted
Questão 09 / 10For an EC2 instance launched in a private subnet in VPC, which of the following are the options for it to be able to connect to the internet (assume security groups have proper ports open).a. Simply attach an elastic IPb. If there is also a public subnet in the same VPC, an ENI can be attached to the instance with the ip address range of the public subnetc. If there is a public subnet in the same VPC with a NAT instance attached to internet gateway, then a route can be configured from the instance to the NATd. There is no way for an instance in private subnet to talk to the internet
Questão 10 / 10When an ELB is setup, what is the best way to route a website’s traffic to it?a. Resolve the ELB name to an ip address and point the website to that ip addressb. There is no direct way to do so, Route53 has to be usedc. Generate a CNAME record for the website pointing to the DNS name of the ELB
Resultado
Como estamos?
Mais exemplos aqui e aquiOnline Associate Practice Exam (U$ 20,00)
Recapitulando Agenda1. 08/Set - Abertura, Overview AWS e S32. 16/Set (terça) - Cloudfront e Route533. 22/Set - EC2 e VPC4. 29/Set - RDS, DynamoDB e Other Storage Options5. 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS6. 13/Out - IAM e Security7. 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00
Modelo de referência
AWS Global InfrastructureRegions
● Datacenters independentes
Availability Zones● Failure zones● Fisicamente independentes
○ Energia○ Refrigeração○ Networking
Edge Locations● Pontos de distribuição de baixa latência ● CDN - CloudFront● DNS - Route53
AWS Global Infrastructure
10 - Regions26 - Availability Zones52 - Edge Locations
Fonte: http://aws.amazon.com/about-aws/global-infrastructure/
Networking
VPC - Private and isolated section of the AWS Cloud
Direct Connect● Conexão segura e privada com a AWS● Bypass public internet● Alta velocidade (banda)● Latencia previsível
Compute
EC2 - Elastic Cloud Computing
Auto Scaling
Elastic Load Balancer
Storage & Content Delivery
S3 - Simple Storage Service
● 1 byte - 5 TB● 99,999999999% Durability● 99,99% Durability com RRS● 99,99% Disponibilidade● > 100GB Usar Multipart Upload
EBS - Elastic Block Store
CloudFront
Global InfrastructureQuem lembra os números?
AWS Global Infrastructure
10 - Regions26 - Availability Zones52 - Edge Locations
Fonte: http://aws.amazon.com/about-aws/global-infrastructure/
Database
Relational Database Service - RDS
● Automatic Software Patching● Automated Backups● Multi-AZ● Reserved Instance Support
No SQL● Fully managed cloud NoSQL database
service● Fast, Predictable Performance
○ Particionamento de informações○ SSD
● Scalable● High Availability
○ Replica em 3 AZs● Storage Limit
○ 10 GB
● Request Capacity○ Limit 25 writes/sec
App Services
Deployment & Adm
Deployment & Adm
OthersAnalytics Applications Mobile
Eu preciso saber de tudo isso?● SIM!!● O mais importante é entender tradeoffs
○ Custo○ Tolerância a falha○ Escalabilidade○ Controle - Gestão○ Velocidade○ Flexibilidade○ ...
Recapitulando Agenda● 08/Set - Abertura, Overview AWS e S3● 16/Set (terça) - Cloudfront e Route53● 22/Set - EC2 e VPC● 29/Set - RDS, DynamoDB e Other Storage Options● 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS● 13/Out - IAM e Security● 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00
AWS Certified Solutions ArchitectAssociate Level
OBRIGADO!!