-
Provides a brief summary for the Ideal Use cases and Anti-Patterns for Storage Gateway and Import/Export AWS storage options
Read More
-
Identity Provider can be used to grant external user identities permissions to AWS resources without having to be created within your AWS account.
Read More
-
CloudWatch offers either basic or detailed monitoring for supported AWS services.
Read More
-
Amazon WorkSpaces is a fully managed, secure desktop computing service which runs on the AWS cloud.
Read More
-
WAF allows controlling behavior to web requests by creating conditions, rules, and web access control lists (web ACLs).
Read More
-
VPC VPN connections are used to extend on-premise data centers to AWS site:. google sitemap xml, Open Graph and plain old meta-tags.
Read More
-
In a VPC, both Security Groups and Network ACLs (NACLS) together help to build a layered network defense.
Read More
-
A VPC peering connection is a networking connection between two VPCs that enables routing of traffic between them using private IP addresses.
Read More
-
NAT gateway is a AWS managed NAT service that provides better availability, higher bandwidth, and requires less administrative effort.
Read More
-
VPC endpoint enables creation of a private connection between VPC to supported AWS services and VPC endpoint services powered by PrivateLink using its private IP address
Read More
-
Instances launched in the VPC can have Private, Public and Elastic IP address assigned to it and are properties of ENI (Network Interfaces)
Read More
-
Trusted Advisor inspects the AWS environment to make recommendations for system performance, saving money, availability\xa0and closing security gaps
Read More
-
Tags are key/value pairs that can be attached to AWS resources
Read More
-
AWS SWF makes it easy to build applications that coordinate work across distributed components
Read More
-
AWS Storage Options is one of the most important Whitepaper for AWS Solution Architect Professional Certification exam and covers a brief summary of each AWS storage options, their ideal usage patterns, anti-patterns, performance, durability and availability, scalability etc.
Read More
-
SQS is a temporary data repository for messages and provides a reliable, highly scalable, hosted message queuing service for temporary storage and delivery of short .
Read More
-
Amazon S3 has following Anti-Patterns where it is not an optimal solution
Read More
-
Provides a brief summary for the Ideal Use cases, Anti-Patterns and other factors for Amazon RDS, DynamoDB & Databases on EC2 storage options
Read More
-
Amazon Web Services Scalability and Elasticity
Read More
-
Cloudfront Elasticache provides low latency by caching and delivering content from a global network of edge locations located nearest to the user .
Read More
-
AWS Storage Gateway offers file-based, volume-based, and tape-based storage solutions
Read More
-
S3 allows the buckets and objects to be referred in Path-style or Virtual hosted-style URLs
Read More
-
Amazon SQS is a highly available distributed queue system
Read More
-
Simple Notification Service - SNS is a web service that coordinates and manages the delivery or sending of messages to subscribing endpoints or clients
Read More
-
SES acts as an outbound email server and eliminates the need to support own software or applications to do the heavy lifting of email transport
Read More
-
AWS provides the root or system privileges only for a limited set of services, which includes
Read More
-
AWS consists of many cloud services that can be use in combinations tailored to meet business or organizational needs. This section introduces the major AWS services by category.
Read More
-
AWS Security whitepaper is one of the most important whitepaper for the Certification perspective
Read More
-
Amazon S3 Subresources provides support to store, and manage the bucket configuration information
Read More
-
Amazon S3 storage classes are designed to sustain the concurrent loss of data in one or two facilities
Read More
-
S3 permissions are classified into Resource based policies and User policies
Read More
-
S3 Object Versioning can be used to protect from unintended overwrites and deletions
Read More
-
S3 Object lifecycle can be managed by using a lifecycle configuration, which defines how S3 manages objects during their lifetime
Read More
-
S3 allows protection of data in-transit by enabling communication via SSL or using client-side encryption
Read More
-
S3 achieves high availability by replicating data across multiple servers within Amazons data centers.
Read More
-
S3 scales to support very high request rates. If the request rate grows steadily, S3 automatically partitions the buckets as needed to support higher request rates.
Read More
-
AWS Route 53 routing policy determines how AWS would respond to the DNS queries and\xa0provides multiple Routing policy options
Read More
-
Route 53 Resolver provides automatic DNS resolution within the VPC.
Read More
-
AWS Risk and Compliance Whitepaper is intended to provide information to assist AWS customers with integrating AWS into their existing control framework supporting their IT environment.
Read More
-
Amazon Relational Database Service (RDS) is a web service that makes it easier to set up, operate, and scale a relational database in the cloud.
Read More
-
Amazon Services\xa0are hosted in multiple locations world wide. Amazon provides the ability to place resources and data in multiple locations to improve performance, provide fault tolerance,\xa0high availability and cost optimization.
Read More
-
Amazon Redshift is a fully managed, fast and powerful, petabyte scale data warehouse service
Read More
-
RDS automatically stripes across multiple EBS volumes to enhance IOPS performance, depending on the amount of storage requested
Read More
-
AWS provides multiple features to provide RDS security
Read More
-
DB instances replicas can be created in two ways Multi-AZ & Read Replica
Read More
-
RDS integrates with CloudWatch and provides metrics for monitoring
Read More
-
RDS provides two different methods Automated and Manual for backing up your DB instances
Read More
-
Changes to a DB instance can occur when a DB instance is manually modified for e.g. DB engine version is upgraded, or when Amazon RDS performs maintenance on an instance
Read More
-
AWS OpsWorks is a configuration management service that helps to configure and operate applications in a cloud enterprise by using Chef
Read More
-
An Internet gateway serves two purposes: to provide a target in the VPC route tables for internet-routable traffic, and to perform network address translation (NAT) for instances that have not been assigned public IPv4 addresses.
Read More
-
AWS Lambda can be configured as an event source for multiple AWS services
Read More
-
Core components of Lambda are Lambda functions and event sources.
Read More
-
Amazon Kinesis Data Streams enable real-time processing of streaming data at massive scale
Read More
-
Kinesis Data Firehose is a fully managed service as there is no need to write applications or manage resources
Read More
-
AWS KMS is a managed encryption service that allows creation and control of encryption keys to enable encryption of data easilyKMS provides a highly available key storage, management,
Read More
-
An Intrusion Prevention System IPS is an appliance that monitors and analyzes network traffic to detect malicious patterns and potentially harmful packets and prevent vulnerability
Read More
-
AWS in API driven and AWS Interaction Tools allow plenty of options to enable interaction with its services and includes.
Read More
-
AWS Import/Export accelerates moving large amounts of data into and out of AWS using portable storage devices for transport
Read More
-
IAM identities determine who can access\xa0and help to\xa0provide authentication for people and processes\xa0in your AWS account
Read More
-
AWS allows granting cross-account access to AWS\xa0resources, which can be done using IAM Roles or Resource Based policies
Read More
-
IAM role is very similar to a user, in that it is an identity with permission policies that determine what the identity can and cannot do in AWS
Read More
-
To help secure AWS resources, AWS\xa0recommends the following AWSIdentity and Access\xa0Management (IAM) service - IAM Best Practices
Read More
-
Amazon Web Services provides services and infrastructure to build reliable, fault-tolerant, and highly available systems in the cloud.
Read More
-
AWS provides a lot of services and these services are either Global, Regional or specific to the Availability Zone and cannot be accessed outside. Most of the AWS managed services are regional based services (except for IAM, Route53, CloudFront, WAF etc).
Read More
-
Glacier provides three options for retrieving data with varying access times and cost: Expedited, Standard, and Bulk retrievals.
Read More
-
Encryption models in AWS depends on the on how you/AWS provides the encryption method and the KMI
Read More
-
Network Load Balancer operates at the connection level (Layer 4), routing connections to targets - EC2 instances, containers and IP addresses based on IP protocol data.
Read More
-
Following Features can be used for Monitoring Elastic Load Balancer
Read More
-
An Application Load Balancer is a load balancing option for the ELB service that operates at the layer 7 (application layer) and allows defining routing rules based on content across multiple services or containers running on one or more EC2 instances.
Read More
-
Amazon Elasticsearch Service is a managed service that makes it easy to deploy, operate, and scale Elasticsearch clusters in the AWS Cloud.
Read More
-
AWS ElastiCache is a managed web service that helps deploy and run Memcached or Redis protocol-compliant cache clusters in the cloud easily
Read More
-
Amazon Elastic Transcoder is a highly scalable, easy-to-use and cost-effective way for developers and businesses to convert (or "transcode") video files from their source format into versions that will play back on multiple devices like smartphones, tablets and PCs
Read More
-
Amazon EMR is a web service that utilizes a hosted Hadoop framework running on the web-scale infrastructure of EC2 and S3
Read More
-
Elastic Load Balancing allows the incoming traffic to be distributed automatically across multiple healthy EC2 instances
Read More
-
Elastic Compute Cloud (EC2) provides scalable computing capacity in the Amazon Web Services (AWS) cloud.
Read More
-
Amazon EBS provides highly available, reliable, durable, block-level storage volumes that can be attached to a running instance
Read More
-
AWS\xa0offers multiple options for provisioning IT infrastructure and application deployment and management varying from convenience &\xa0easy of setup with low level granular control
Read More
-
AWS Elastic Beanstalk helps to quickly deploy and manage applications in the AWS Cloud without having to worry about the infrastructure
Read More
-
EC2 VM Import/Export enables importing virtual machine (VM) images from existing virtualization environment to EC2, and then export them back
Read More
-
Verify the Security groups are properly configured to allow ssh access from the ip to the EC2 instance. For Security groups, Inbound traffic from
Read More
-
Amazon EC2 provides flexible, cost effective and easy-to-use EC2 storage options with a unique combination of performance and durability
Read More
-
EC2 uses public-key cryptography to encrypt & decrypt login information
Read More
-
Placement group determines how instances are placed on underlying hardware
Read More
-
EC2 Network covers a lot of features for High Performance Computing, Ehanced Networking, low latency access
Read More
-
Enhanced networking results in higher bandwidth, higher packet per second (PPS) performance, lower latency, consistency, scalability and lower
Read More
-
Status monitoring help quickly determine whether EC2 has detected any problems that might prevent instances from running applications.site: google sitemap xml, Open Graph and plain old meta-tags.
Read More
-
EC2 Instance types determines the hardware of the host computer used for the instance
Read More
-
Instance store storage is located on the disks that are physically attached to the host computer.
Read More
-
Buying Reserved Instances need selection of the following
Read More
-
An instance is a virtual server in the AWS cloud.You launch an instance from an Amazon Machine Image (AMI)
Read More
-
Instance metadata and user data can be used for Self Configuration allowing EC2 instance answer the question
Read More
-
AWS EC2 Container Service (ECS) is a highly scalable, high performance container management service that supports Docker containers and allows
Read More
-
AWS recommends the following to get maximum benefit and satisfaction from EC2
Read More
-
Amazon Linux AMI is a supported and maintained Linux image provided by AWS with the following features
Read More
-
EC2 Instances can be launched using either Elastic Block Store (EBS) or Instance Store volume as root volumes and additional volumes.
Read More
-
AWS provides the following EBS volume types, which differ in performance characteristics and price which can be tailored for storage performance
Read More
-
EBS provides the ability to create snapshots (backups) of any EBS volume and write a copy of the data in the volume to Amazon S3,
Read More
-
EBS Performance depends on several factores including I/O characteristics and the configuration of\xa0instances and volumes and can be improved using PIOPS, EBS-Optimized instances, Pre-Warming and RAIDed configuration
Read More
-
DynamoDB provides fast access to items in a table by specifying primary key values
Read More
-
Refer to DynamoDB Advanced\xa0post, which covers DynamoDB Streams, Triggers, Cross Region Replication, DAX, VPC Endpoints etc.
Read More
-
AWS Disaster Recovery Whitepaper is one of the very important Whitepaper for both the Associate & Professional AWS Certification exam
Read More
-
Read More
-
AWS Direct Connect is a network service that provides an alternative to using the Internet to utilize AWS cloud services
Read More
-
Denial of Service (DoS) is an attack, carried out by a single attacker, which attempts to make a website or application unavailable to the end users
Read More
-
Data Pipeline supports JDBC, RDS and Redshift database
Read More
-
Consolidated billing enables consolidating payments from multiple AWS accounts
Read More
-
AWS Config is a fully managed service that provides AWS resource inventory, configuration history, and configuration change notifications to enable security and governance
Read More
-
AWS CloudWatch monitors AWS resources and applications in real-time. For Supported Services refer @ CloudWatch Supported Services
Read More
-
AWS CloudTrail helps to get a history of AWS API calls and related events for the AWS account.
Read More
-
CloudSearch is a fully-managed, full-featured search service in the AWS Cloud that makes it easy to set up, manage, and scale a search solution
Read More
-
AWS CloudHSM provides secure cryptographic key storage to customers by making hardware security modules (HSMs) available in the AWS cloud
Read More
-
CloudFront is a web service that speeds up distribution of static, dynamic web or streaming content to end users
Read More
-
AWS CloudFormation gives developers and systems administrators an easy way to create and manage a collection of related AWS resources, provision and
Read More
-
AWS CloudFormation Best Practices are based on real-world experience from current AWS CloudFormation customers
Read More
-
AWS Cloud Migration services help to address a lot of common use cases such as cloud migration,disaster recovery, etc
Read More
-
Some of the key drivers to moving to cloud is
Read More
-
Elastic Load Balancing supports two types of load balancers: Application Load Balancers and Classic Load Balancers. While there is some overlap in the features, AWS does not maintain feature parity between the two types of load balancers. Content below lists down the feature comparison for both.
Read More
-
AWS Certified SysOps Administrator - Associate (SOA-C01) exam is the latest AWS exam and has already replaced the old SysOps Administrator - Associate exam from 24th Sept 2018. It basically validates
Read More
-
AWS Solutions Architect - Associate SAA-C01 exam is the latest AWS exam and would replace the old CSA-Associate exam. It basically validates the ability to effectively demonstrate knowledge of how to architect and deploy secure and robust applications on AWS technologies
Read More
-
AWS Certified Solutions Architect - Professional (SAP-C01) exam is the upgraded pattern of the previous Solution Architect - Professional exam which was released last year (2018) and upgraded this year. I recently passed the latest pattern and difference is quite a lot between the previous pattern and the latest pattern. The amount of overlap between the associates and professional exams and even the Solutions Architect and DevOps has drastically reduced.
Read More
-
AWS Certified Security - Speciality (SCS-C01) exam is the focusing on the AWS Security and Compliance concepts.
Read More
-
AWS Certified DevOps Engineer - Professional (DOP-C01) exam is the upgraded pattern of the DevOps Engineer - Professional exam which was released last year (2018). I recently attempted the latest pattern and AWS has done quite good in improving it further, as compared to the old one, to include more DevOps related questions and services.
Read More
-
AWS Certified Developer - Associate DVA-C01 exam is the latest AWS exam and would replace the old Developer - Associate exam. It basically validates
Read More
-
AWS Certified Cloud Practitioner exam basically validates the following
Read More
-
Clearing the AWS Certified Big Data - Speciality (BDS-C00) was a great feeling. This was my third Speciality certification and in terms of the difficulty level (compared to Network and Security Speciality exams), I would rate it between Network (being the toughest) Security (being the simpler one).
Read More
-
Read More
-
AWS SA exam cheat sheets are very helpful. Going to S3 sheet I got bit confused.
Read More
-
IAM securely control access to AWS services and resources
Read More
-
Amazon Route is a highly available and scalable Domain Name System (DNS) web service.
Read More
-
AWS recommends RDS best practices in terms of Monitoring, Performance and security
Read More
-
Aws Certification Networking Services Cheat Sheet.
Read More
-
Aws Certification Management Tools Cheat Sheet.
Read More
-
AWS Certification Exams cover a lot of topics and a wide range of services with minute details for features, patterns, anti patterns and their integration with other services. This blog post is just to have a quick summary of all the services and key points for a quick glance before you appear for the exam
Read More
-
cross region replicas and snapshots does not work across region can you please explain this Jay
Read More
-
VPC does not support IPv6 - VPC support IPV6
Read More
-
Please include API Gateway
Read More
-
Kinesis enables real-time processing of streaming data at massive scale
Read More
-
Blue/green deployments provide near zero-downtime release and rollback capabilities.
Read More
-
AWS Billing and Cost Management is the service that you use to pay AWS bill, monitor your usage, and budget your costs
Read More
-
Bastion means a structure for Fortification to protect things behind it
Read More
-
AWS does not perform automated backups for EC2 EBS volumes and needs to be manually scripted
Read More
-
Auto Scaling provides the ability to ensure a correct number of EC2 instances are always running to handle the load of the application
Read More
-
Read More
-
Read More
-
Architecting for the Cloud - AWS Best Practices whitepaper provides architectural patterns and advice on how to design systems that are secure, reliable, high performing, and cost efficient
Read More