AWS or Amazon Web Services is a cloud-based platform, subsidized under Amazon company which provides cloud-based solutions to companies, individual and businesses to cater to the needs of cloud computing platform. It provides flexible and cost-effective cloud solutions and is a combination of Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS).
AWS offers a wide range of product services such as Storage, Analytics, Networking, Enterprise Applications, etc. Some of the advantages of using the AWS platform are:
1) AWS allows enterprises to use the existing programming models, operating systems, databases, and architectures.
2) AWS is a cost-effective platform which allows paying only for the services, one has opted for.
3) Adding and removing capacity is very easy in AWS.
4) Offers centralized billing and management.
5) AWS offers hybrid capabilities.
In this AWS Training and Certification course by Uplatz, students will get a complete introduction to Cloud Computing & AWS, Elastic Compute and Storage Volumes, Load Balancing, Autoscaling and DNS, in-depth understanding on Virtual Private Cloud, Simple Storage Service (S3) and much more. In this AWS tutorial, along with the theoretical explanations, learners will also get practical exercises along with the guidance for clearing exams and interviews on AWS and Cloud Computing.
After the successful completion of this AWS Certification Course, students will be awarded a Certificate of Completion along with having the knowledge and excelling in the field of Cloud Computing and AWS Architect Training.
Module 01 - Introduction to Cloud Computing & AWS
1.1 What is Cloud Computing
1.2 Cloud Service & Deployment Models
1.3 How AWS is the leader in the cloud domain
1.4 Various cloud computing products offered by AWS
1.5 Introduction to AWS S3, EC2, VPC, EBS, ELB, AMI
1.6 AWS architecture and the AWS Management Console, virtualization in AWS (Xen hypervisor)
1.7 What is auto-scaling
1.8 AWS EC2 best practices and cost involved.
Hands-on Exercise – Setting up of AWS account, how to launch an EC2 instance, the process of hosting a website and launching a Linux Virtual Machine using an AWS EC2 instance.
Module 02 - Elastic Compute and Storage Volumes
2.1 Introduction to EC2
2.2 Regions & Availability Zones(AZs)
2.3 Pre-EC2, EC2 instance types
2.4 Comparing Public IP and Elastic IP
2.5 Demonstrating how to launch an AWS EC2 instance
2.6 Introduction to AMIs, Creating and Copying an AMI
2.7 Introduction to EBS
2.8 EBS volume types
2.9 EBS Snapshots
2.10 Introduction to EFS
2.11 Instance tenancy- Reserved and Spot instances
2.12 Pricing and Design Patterns.
Hands-on Exercise –
1. Launching an EC2 instance
2. Creating an AMI of the launched instance
3. Copying the AMI to another region
4. Creating an EBS volume
5. Attaching the EBS volume with an instance
6. Taking backup of an EBS volume
7. Creating an EFS volume and mounting the EFS volume to two instances.
Module 03 - Load Balancing, Autoscaling and DNS
3.1 Introduction to Elastic Load Balancer
3.2 Types of ELB – Classic, Network and Application
3.3 Load balancer architecture
3.4 Cross-zone load balancing
3.5 Introduction to Auto Scaling, vertical and horizontal scaling, the lifecycle of Auto Scaling
3.6 Components of Auto Scaling, scaling options and policy, instance termination
3.7 Using load balancer with Auto Scaling
3.8 Pre-Route 53 – how DNS works
3.9 Routing policy, Route 53 terminologies, Pricing.
Hands-on Exercise –
1. Creating a Classic ELB
2. Creating an Application ELB
3. Creating an auto-scaling group
4. Configuring an auto-scaling group
5. Integrating ELB with Auto Scaling
6. Redirect traffic from domain name to ELB using Route 53.
Module 04 - Virtual Private Cloud
4.1 What is Amazon VPC,
4.2 VPC as a networking layer for EC2,
4.3 IP address and CIDR notations,
4.4 Components of VPC – network interfaces, route tables, internet gateway, NAT,
4.5 Security in VPC – security groups and NACL, types of VPC, what is a subnet, VPC peering with scenarios, VPC endpoints, VPC pricing and design patterns.
Hands-on Exercise –
1. Creating a VPC and subnets,
2. Creating a 3 Tier architecture with security groups,
3. NACL, Internet gateway and NAT gateway,
4. Creating a complete VPC architecture.
Module 05 - Storage - Simple Storage Service (S3)
5.1 Introduction to AWS storage
5.2 Pre-S3 – online cloud storage
5.3 API, S3 consistency models
5.4 Storage hierarchy, buckets in S3
5.5 Objects in S3, metadata and storage classes, object versioning, object lifecycle management, cross-region replication, data encryption, connecting using VPC endpoint, S3 pricing.
Hands-on Exercise –
1. Creating an S3 bucket
2. Uploading objects to the S3 bucket
3. Enabling object versioning in the S3 bucket
4. Setting up lifecycle management for only a few objects
5. Setting up lifecycle management for all objects with the same tag
6. Static website hosting using S3.
Module 06 - Databases and In-Memory DataStores
6.1 What is a database, types of databases, databases on AWS
6.2 Introduction to Amazon RDS
6.3 Multi-AZ deployments, features of RDS
6.4 Read replicas in RDS, reserved DB instances
6.5 RDS pricing and design patterns
6.6 Introduction to Amazon Aurora, benefits of Aurora, Aurora pricing and design patterns
6.7 Introduction to DynamoDB, components of DynamoDB, DynamoDB pricing and design patterns
6.8 What is Amazon Redshift, advantages of Redshift
6.9 What is ElastiCache, why ElastiCache.
Hands-on Exercise –
1. Launching a MySQL RDS instance
2. Modifying an RDS instance
3. Connecting to the DB instance from your machine
4. Creating a multi-az deployment
5. Create an Aurora DB cluster
6. Creating an Aurora replica
7. Creating a DynamoDB table.
Module 07 - Management and Application Services
7.1 Introduction to CloudFormation
7.2 CloudFormation components
7.3 CloudFormation templates
7.4 The concept of Infrastructure-as-a-code
7.5 Functions and pseudo parameters
7.6 Introduction to Simple Notification Service, how does SNS work
7.7 Introduction to Simple Email Service, how does SES work
7.8 Introduction to Simple Queue Service, how does SQS work.
Hands-on Exercise –
1. Creating a CloudFormation stack
2. Launching a t2.micro
3. EC2 instance using CloudFormation
4. Using CloudFormation to automate an architectural deployment
5. Creating an SNS topic, creating a subscription within the topic
6. Setting up SES and sending a mail
7. Creating an SQS queue and sending a sample message.
Module 08 - Access Management and Monitoring Services
8.1 Pre-IAM, why access management
8.2 Amazon Resource Name (ARN), IAM features
8.3 Multi-factor authentication (MFA) in IAM, JSON
8.4 IAM policies, IAM permissions, IAM roles, identity federation, pricing
8.5 Introduction to CloudWatch, metrics and namespaces, CloudWatch architecture, dashboards in CW, CloudWatch alarms, CloudWatch logs, pricing and design patterns
8.6 Introduction to CloudTrail, tracking API usage.
Hands-on Exercise –
1. Creating IAM users and a group
2. creating an IAM policy and attach it to the group
3. creating an IAM role
4. Setup MFA for a user
5. Creating a CloudWatch dashboard and add metrics
6. Create a CloudWatch alarm which triggers according to CPU Utilization of an EC2 instance
7. Creating a billing alarm
8. Creating a log group
9. Creating a trail.
Module 09 - Automation and Configuration management
9.1 What is AWS Lambda
9.2 How Lambda is different from EC2
9.3 Benefits and limitations of Lambda
9.4 How does Lambda work
9.5 Use cases of Lambda, Lambda concepts
9.6 Integration S3 with Lambda
9.7 What is Elastic Beanstalk, how does Beanstalk work, Beanstalk concepts, Beanstalk pricing
9.8 What is configuration management
9.9 What is AWS OpsWorks, AWS OpsWorks benefits
9.10 CloudFormation vs OpsWorks, services in OpsWorks, AWS OpsWorks Stacks, OpsWorks pricing.
Hands-on Exercise –
1. Creating a Lambda function
2. Setting up Lambda triggers and destinations
3. Creating an Elastic Beanstalk application
4. Uploading a new version of the application to Beanstalk
5. Creating a stack in OpsWorks
6. Launching the instance using OpsWorks and automatically installing the application.
Module 10 - Amazon FSx and Global Accelerator
10.1 What is FSx
10.2 Types of FSx,FSx for Windows server
10.3 How does FSx for Windows File Server work, FSx for Lustre
10.4 Use cases of FSx
10.5 Automatic failover process
10.6 Supported clients and access methods
10.7 What is a Global Accelerator, How Global Accelerator works, Listeners and Endpoints
10.8 What are AWS Organizations, Features of AWS Organizations, Managing multiple accounts
10.9 What are ENIs, ENAs and EFAs, Working with network interfaces
10.10 Enhanced Networking with ENA, EFA with MPI, Monitoring an EFA
1. Creating a shared FSx file system between two windows instances
2. Accessing one instance with multiple Elastic IPS using ENI
3. Using Global Accelerator to map instances from 2 regions into one domain name
4. Enabling Enhanced Networking on an Ubuntu instance
Module 11 - Architecting AWS – whitepaper
11.1 Important guidelines for creating a well-architected AWS framework that is resilient and performant
11.2 Designing of fault-tolerant and high-availability architecture
11.3 Resilient storage
11.4 Decoupling mechanism
11.5 Multi-tier architecture solution
11.6 Disaster recovery solution
11.7 Scalable and elastic solutions.
Module 12 - DevOps on AWS
12.1 What is DevOps,
12.2 Introduction to AWS DevOps,
12.3 AWS Developer tools – CodeCommit, CodeBuild, CodeDeploy and CodePipeline, integrating GitHub with CodePipeline,
12.4 Creating a DevOps lifecycle using AWS DevOps tools.
Module 13 - AWS Migration
13.1 What is Cloud migration
13.2 Why migration is important
13.3 Migration process in AWS, the 6 R’s migration strategy
13.4 Virtual machine migration, migrating a local vm onto the AWS cloud
13.5 Migrating databases using Database Migration Service (DMS)
13.6 Migrating a local database to RDS
13.7 Migrating an on-premises database server to RDS using DMS, other migration services.
Module 14 - AWS Architect Interview Questions
14.1 Guidance for clearing the exam, most probable interview questions and other helpful tips for clearing the exam and interview.
AWS Interview Questions
1) Explain what AWS is?
AWS stands for Amazon Web Service; it is a collection of remote computing services also known as a cloud computing platform. This new realm of cloud computing is also known as IaaS or Infrastructure as a Service.
2) Mention what the key components of AWS are?
The key components of AWS are
• Route 53:A DNS web service
• Simple E-mail Service:It allows sending e-mail using RESTFUL API call or via regular SMTP
• Identity and Access Management:It provides enhanced security and identity management for your AWS account
• Simple Storage Device or (S3):It is a storage device and the most widely used AWS service
• Elastic Compute Cloud (EC2): It provides on-demand computing resources for hosting applications. It is handy in case of unpredictable workloads
• Elastic Block Store (EBS):It offers persistent storage volumes that attach to EC2 to allow you to persist data past the lifespan of a single Amazon EC2 instance
• CloudWatch: To monitor AWS resources, It allows administrators to view and collect key Also, one can set a notification alarm in case of trouble.
3) Explain what S3 is?
S3 stands for Simple Storage Service. You can use S3 interface to store and retrieve any amount of data, at any time and from anywhere on the web. For S3, the payment model is “pay as you go.”
4) What is AMI?
AMI stands for Amazon Machine Image. It’s a template that provides the information (an operating system, an application server, and applications) required to launch an instance, which is a copy of the AMI running as a virtual server in the cloud. You can launch instances from as many different AMIs as you need.
5) Mention what the relationship between an instance and AMI is?
From a single AMI, you can launch multiple types of instances. An instance type defines the hardware of the host computer used for your instance. Each instance type provides different computer and memory capabilities. Once you launch an instance, it looks like a traditional host, and we can interact with it as we would with any computer.
6) What does an AMI include?
An AMI includes the following things
• A template for the root volume for the instance
• Launch permissions decide which AWS accounts can avail the AMI to launch instances
• A block device mapping that determines the volumes to attach to the instance when it is launched
7) How can you send a request to Amazon S3?
Amazon S3 is a REST service, and you can send a request by using the REST API or the AWS SDK wrapper libraries that wrap the underlying Amazon S3 REST API.
8) Mention what the difference between Amazon S3 and EC2 is?
The difference between EC2 and Amazon S3 is that:
• It is a cloud web service used for hosting your application
• It is like a huge computer machine which can run either Linux or Windows and can handle application like PHP, Python, Apache or any databases
• It is a data storage system where any amount of data can amount of data can be stored.
• It has a REST interface and uses secure HMAC-SHA1 authentication keys
9) How many buckets can you create in AWS by default?
By default, you can create up to 100 buckets in each of your AWS accounts.
10) Explain can you vertically scale an Amazon instance? How?
Yes, you can vertically scale on Amazon instance. For that
• Spin up a new larger instance than the one you are currently running
• Pause that instance and detach the root webs volume from the server and discard
• Then stop your live instance and detach its root volume
• Note the unique device ID and attach that root volume to your new server
• And start it again
11) Explain what T2 instances is?
T2 instances are designed to provide moderate baseline performance and the capability to burst to higher performance as required by the workload.
12) In VPC with private and public subnets, database servers should ideally be launched into which subnet?
With private and public subnets in VPC, database servers should ideally launch into private subnets.
13) Mention what the security best practices for Amazon EC2 are?
For secure Amazon EC2 best practices, follow the following steps
• Use AWS identity and access management to control access to your AWS resources
• Restrict access by allowing only trusted hosts or networks to access ports on your instance
• Review the rules in your security groups regularly
• Only open up permissions that you require
• Disable password-based login, for example, launched from your AMI
14) Explain how the buffer is used in Amazon web services?
The buffer is used to make the system more robust to manage traffic or load by synchronizing different component. Usually, components receive and process the requests in an unbalanced way. With the help of buffer, the components will be balanced and will work at the same speed to provide faster services.
15) While connecting to your instance what are the possible connection issues one might face?
The possible connection errors one might encounter while connecting instances are
• Connection timed out
• User key not recognized by the server
• Host key not found, permission denied
• An unprotected private key file
• Server refused our key or No supported authentication method available
• Error using MindTerm on Safari Browser
• Error using Mac OS X RDP Client
16) What are key-pairs in AWS?
Key-pairs are secure login information for your virtual machines. To connect to the instances, you can use key-pairs which contain a public-key and private-key.
17) What are the different types of instances?
Following are the types of instances:
• General purpose
• Computer Optimized
• Memory Optimized
• Storage Optimized
• Accelerated Computing
18) Is the property of broadcast or multicast supported by Amazon VPC?
No, currently Amazon VPI not provide support for broadcast or multicast.
19) How many Elastic IPs is allows you to create by AWS?
5 VPC Elastic IP addresses are allowed for each AWS account.
20) Explain default storage class in S3.
The default storage class is a Standard frequently accessed.
21) What are the roles?
Roles are used to providing permissions to entities which you can trust within your AWS account. Roles are very similar to users. However, with roles, you do not require to create any username and password to work with the resources.
22) What are the edge locations?
Edge location is the area where the contents will be cached. So, when a user is trying to accessing any content, the content will automatically be searched in the edge location.
23) What is VPC?
VPC stands for Virtual Private Cloud. It allows you to customize your networking configuration. It is a network which is logically isolated from another network in the cloud. It allows you to have your IP address range, internet gateways, subnet and security groups.
24) Explain snowball
Snowball is a data transport option. It used source appliances to a large amount of data into and out of AWS. With the help of snowball, you can transfer a massive amount of data from one place to another. It helps you to reduce networking costs.
25) What is a redshift?
Redshift is a big data warehouse product. It is fast and powerful, fully managed data warehouse service in the cloud.
26) What are the advantages of auto-scaling?
Following are the advantages of autoscaling
• Offers fault tolerance
• Better availability
• Better cost management
27) What is meant by subnet?
A large section of IP Address divided into chunks is known as subnets.
28) Can you establish a Peering connection to a VPC in a different region?
No, It’s only possible between VPCs in the same region.
29) What is SQL?
Simple Queues Services also known as SQL. It is distributed queuing service which acts as a mediator for two controllers.
30) How many subnets can you have per VPC?
You can have 200 subnets per VPC.
31) DNS and Load Balancer service comes under which type of cloud service?
DNS and Load Balancer and DNS services come under IAAS-storage cloud service.
32) What is the role of AWS CloudTrail?
CloudTrail is a specially designed tool for logging and tracking API calls. It helps to audit all S3 bucket accesses.
33) When EC2 officially launched?
EC2 officially launched in the year 2006.
34) What is SimpleDB?
SimpleDB is a data repository of structure record which encourages data doubts and indexing both S3 and EC2are called SimpleDB.
35) Explain Amazon ElasticCache
Amazon Elasticcache is a web service which makes it easy to deploy, scale and store data in the cloud.
36) What is AWS Lambda?
Lambda is an Amazon compute service which allows you to run code in the AWS Cloud without managing servers.
37) Name the types of AMI provided by AWS.
The types of AMI provided by AWS are:
1. Instance store backed
2. EBS backed
38) Name the AWS service exists only to redundantly cache data and images?
AWS Edge locations are service which redundantly cache data and images.
39) Explain Geo Restriction in CloudFront
A Geo-restriction feature helps you to prevent users of specific geographic locations from accessing content which you’re distributing through a CloudFront web distribution.
40) What is Amazon EMR?
EMR is a survived cluster stage which helps you to interpret the working of data structures before the intimation. Apache Hadoop and Apache Spark on the Amazon Web Services helps you to investigate a large amount of data. You can prepare data for the analytics goals and marketing intellect workloads using Apache Hive and using other relevant open source designs.
41) What is boot time taken for the instance stored backed AMI?
The boot time for an Amazon instance store-backend AMI is less than 5 minutes.
42) Do you need an internet gateway to use peering connections?
Yes, the Internet gateway is needed to use VPC (virtual private cloud peering) connections.
43) How to connect EBS volume to multiple instances?
We can’t be able to connect EBS volume to multiple instances. Although, you can connect various EBS Volumes to a single instance.
44) List different types of cloud services
Various types of cloud services are:
• Software as a Service (SaaS)
• Data as a Service (DaaS)
• Platform as a Service (PaaS)
• Infrastructure as a Service (IaaS)
45) State the difference between An Instance and AMI
AMI is a template consisting software configuration part. For example Operating systems, applications, application server if you start an instance, a duplicate of the AMI in a row as an attendant in the cloud.
46) What are the different types of Load Balancer in AWS services?
Two types of Load balancer are:
1. Application Load Balancer
2. Classic Load Balancer
47) In which situation you will select provisioned IOPS over standard RDS storage?
You should select provisioned IOPS storage over standard RDS storage if you want to perform batch-related workloads.
48) What are the important features of Amazon cloud search?
Important features of the Amazon cloud are:
• Boolean searches
• Prefix Searches
• Range searches
• Entire text search
• AutoComplete advice
49) Can vertically scaling is allows in Amazon Instance?
Yes, you can vertically estimate one Amazon instance.
50) What is the use of lifecycle hooks in Autoscaling?
Lifecycle hooks are used for autoscaling to put an additional wait time to a scale in or scale out event.
51) What are various layers of Cloud Architecture explained in AWS training?
Different layers of cloud architecture are:
• Cloud controller
• Cluster controller
• Storage Controller
• Node Controller
52) What are the storage class available in Amazon s3?
Storage classes available with Amazon s3 are:
• Amazon S3 standard
• Amazon S3 standard-infrequent Access
• Amazon S3 Reduced Redundancy Storage
• Amazon Glacier
53) Name some of the DB engines which can be used in AWS RDS
1. MS-SQL DB
3. MYSQL DB