Infastructure OS Core Base Platform Software Arch Service Application User On Prem 6month Hybrid Web Servers (IIS, Apache) Application Servers (App1) Database Server / CDN AWS Cloud AWS 2 ways 1. Dashboard 85% 2. AWS CLI 100% Windows > RDP Linux > SSH / Putty Studio Manager > SQL 8/16 8 CPU / 16 GB RAM 996 CPU / 32 TB 448 CPU / 16 TB Resources > EC2, RDS, FW, SG, LB, S3, Containers, DNS, ... Services > Managed Services PCI PPI Data at Rest > DB, SSD, RAID, S3, Log File,... Enc/Dec 256 Data in Transit > https / TLS/SSL OS > W M L Lang > P J R A HW > 4/16 Service Model > Tenants Scale > Container (less cpu/more mem) / Data Streams (both more of) DA IA DP Web Server Microsoft IIS Application Server MyApp1 (java) Database Server (RDS) Microsoft SQL File Server > images(png,jpg,tiff), mp4, mp3, pdf, zip, ... AWS > Resource and Service Windows 4/4 .015 / hr SSD .0015 / GB Transfer .0025 / KB Bandwidth .015 Elastic Cloud Computing EC2 Windows Mac Linux S3 Simple Storage Service pros > scalable 20 GB > 60 GB, pay for useage, cost .0015/GB cons > $$$ (data transfers), more complex security, need EBS (hard drive/volume) static pay for the whole thing 2 TB GP3 SSD > paying for 2 TB use 50 GB con $$$ 3x expensive per GB SSD than S3 con > expandable issue complex pros > RAID 0,1,5,10,11 5 (2TB) not all are avaliable regions AWS Backup $$$ Backup / Restore > HA > SSD Glacier Archive $ Low Avail > Backup / Restore json yaml > yal aint markup language IAM Users > Groups > Dashboard API > Policies Roles > Service Roles > Policies EC2 Instances Dashboard t2.micro and 30GB SDD AWS 2 mu lang / scripting json > java script object notation yaml > yal aint markup language key: value if (!condition) { skip } else { do these 500 steps } firstnameWindowsServer firstnamePEM After Lunch 1. Security Groups 2. IAM Instance Profiles a. EC2 Profile > Joshua ONLY b. RDS Profile > Joshua ONLY EC2 Components Windows 2019 Base 30 GB SSD GP3 Security Group > WindowsServer firstnameWindowsServer OHIO REGION DHCP > dynamically IP Elastic IP > assign static IP server single tier > WS/APP/RDS multi tier > LB > WS > LB > AS > RDS HA > High Availability LB > WS > LB > AS > RDS Fault Tolerance > S3 > Mirrored Region N. Caly> Disaster Recovery > Dup Regions > RDS M Region 1 > Slave Zone Install SQL Studio in RDP Client Connect to our RDS Server from RDP Client host: dbname: wordpressDB username: admin password: passwor Snapshot Pattern EC2, S3, RDS philipServer > AMI > philipServer2 Both servers > target group AMI > Deploy 2nd Server from AMI Snapshot the RDS DB AMI > Deploy 2nd Server from AMI Snapshot the RDS DB Start BOTH EC2 instances ADD 2 running instances to a target group Joel > Use josh's AIM image > 2 instances joelserver, joelserver2 > joeltg Restore > assign a new PEM key TCP IP 80 DHCP 192.168.0.1 - 0.255 DNS domain.com > 10.5.27.4 VPC > 5 IP's 6-10 IP Static Data > Data at rest on storage Dynamic Data > Caching, Rewriting, CDN, clone https://philip08162023.s3.us-east-2.amazonaws.com/Userscreen1.png http://philip08162023.s3.us-east-2.amazonaws.com/Userscreen1.png https://www.philip08162023.s3.us-east-2.amazonaws.com/Userscreen1.png http://www.philip08162023.s3.us-east-2.amazonaws.com/Userscreen1.png https://app.af.mil/Userscreen1.png Uploading Data pattern persistency Spring Boot web service AWS CDK for Java direct > http tcp tcp > slow comparative protocol udp > fast AWS Environment EC2 Instance > S3 Bucket ftp port 21 1. RDP in and Windows Server > Firewall Windows 21 Open 2. Setup FTP Server Windows Box 3. ftp filezilla client > s3 or windows box > php > web api Pros > limitations direct access, ajax Cons > programming Log in > start EC2 instance server 2 > start db instance Challenge> Start EC2 server #2 instance Connect to that instance thru RDP Server philipm / 1234 pem Ghosted AIM philipm / 1234 New Instance server 2 pem3 philipm / 1234 philipm > #*%$^# pem p # h * %$^&^&^% pem1 philipm &^%$&**^ pem2 philipm Server 3: Use server 1 if needed. Server Manager Manage > Add features and roles All nexts, except add feature screen shot hang on / send ftp installed thru chat Setup a user account Tools > Comp Mgmt > Users and Groups ftpuser / Student1234!ONLC Inbound Ports ftp 21 ftp 20 passive ftp 49152-65535 Windows Server Firewall Security Group 172.31.30.141 server 3 172.31.31.182 server start fresh Chapter 7 Database Patterns use filezilla, if filezilla works, troubleshoot off time windows. If filezilla works, or any ftp client, you have your server configured correctly and aws is working. RDS 100 > 64/16T > 50000 RDS 100 / 100 / 100 / 100 / 100 500 Tier 1 > 1 - 500,000 multi-arch basic design patterns Tier 2 > 500,000 - 5M multi-tier adv design patterns Tier 3 > 5M - 10M (7.5M) adv arch / facebook/intuit/go AMI > Core O/S and deployment > middleware && app DI Pattern large scaling Deploy O/S MW App Greater than 8 midnight nov 28th 4 servers > releases movies OpsWorks > 100 EC2 (see them in EC2 dashboard) > managed by that service EC2 Manually > import into Mgmt Service > belongs to that service Stack Layer Resource (Instance or RDS) Application CloudWatch > Alarm system based on metrics and dimensions services and resources CloudTrail > Audit process for services and resources STORED Monitoring Pattern SNS Topic lori@mykfor.com Alarm for our EC2 instance CPU > 10% Start EC2 instance Windows3 Stack Pattern Cleanup Resources RDS and EC2 to free up account limitations. Cleanup Snapshots CloudFormation Template Stack WordPress Template AMI image id's Web Static Patterns S3 Buckets > Create static store for static ml pages html bucket policy json 2 notification services SQS Simple Queuing Service SNS Simple Notification Service Topic Subject Publisher service that sends the message Subscriber email that gets the message Solutions Network NAT > Network Address Translation 172.31.5.2 > printer DHCP reserve and printer services IP 1. VPN > onPrem DB Server 172.31.x.x VPC AWS > onPrem Server 172.31.0.0 2. Peer to Peer > Peer AWS Resource with an onPrem Server Role 3. Direct Connect > AWS Inf to Local Inf Delete Load Balancer Delete Targer Group Delete RDS Instances Delete RDS Snapshots Cloud Formation Templates Cloud Formation Services AWS Deploy our stack using template troubleshooting review resources tear down S3 bucket to data hosting / web hosting arn:aws:s3:::08162023/* "Principal": {}, <<<< "Principal": "*", <<<< "Sid": "Statement1", "Sid": "PublicReadGetObject", AccessMods> Public Private AccessControl> Read Write Controller> Get Put Type> Object File Additional Notes: S3 bucket to static hosting Design Patterns Notes this weekend Thank you... Certificate of Completion philipm@onlc.com Books home tear down onlc.com/eval