Book Description

The Practical, Foundational Technical Introduction to the World's #1 Cloud Platform

Includes access to several hours of online training video: Mark Wilkins' expert training video library guides you through setting up core services and prepares you to deploy your own apps and resources.

Learning Amazon Web Services (AWS) is the perfect foundational resource for all administrators, developers, project managers, and other IT professionals who want to plan and deploy AWS services and/or earn AWS certification.

Top cloud trainer and evangelist Mark Wilkins teaches best practices that align with Amazon's Well-Architected Framework, introduces key concepts in the context of a running case study, carefully explains how core AWS services operate and integrate, and offers extensively tested tips for maximizing flexibility, security, and value. Companion online videos guide you step-by-step through setting AWS compute, storage, networking, scale, security, automation, and more.

  • Balance cost, compliance, and latency in your service designs
  • Choose the right networking options for your virtual private cloud (VPC)
  • Build, host, launch, manage, and budget for EC2 compute services
  • Plan for scale and resiliency, and make informed decisions about AWS storage
  • Enforce strict security, and automate to improve operational efficiency

This book with companion training videos is a valuable learning tool for anyone seeking to demonstrate expertise through formal certification.

WEB EDITION: All buyers of the book or ebook can register your book for access to a free online Web Edition of this title, which included videos embedded within the text, plus updates as they become available.

Table of Contents

  1. Cover
  2. About This E-Book
  3. Half Title
  4. Title Page
  5. Copyright Page
  6. Accessing the Web Edition
  7. Contents at a Glance
  8. Table of Contents
  9. Companion Videos List
  10. Preface
  11. About the Author
  12. Acknowledgments
  13. 1. Learning AWS
    1. About This Book
    2. Trying to Define the Cloud
    3. Moving to AWS
    4. Essential Characteristics of AWS Cloud Computing
    5. Operational Benefits of AWS
    6. Cloud Provider Limitations
    7. Data Security at AWS
    8. Network Security at AWS
    9. Application Security at AWS
    10. Compliance in the AWS Cloud
    11. Migrating Applications
    12. The Well-Architected Framework
    13. The Well-Architected Tool
    14. In Conclusion
  14. 2. Designing with AWS Global Services
    1. Considering Location
    2. AWS Regions
    3. Availability Zones
    4. Multiple Availability Zones
    5. What’s the AWS Service-Level Agreement?
    6. Global Edge Services
    7. Choosing a Region
    8. AWS and Compliance
    9. Latency Concerns
    10. Services Offered at Each Region
    11. Calculating Costs
    12. Management Service Costs
    13. AWS Compute Costs
    14. Storage Costs
    15. Data Transfer Costs
    16. Optimizing Costs at AWS
    17. Tools for Analyzing Costs at AWS
    18. AWS Simple Monthly Calculator
    19. In Conclusion
    20. Top 10 Big-Picture Discussion Points: Compliance, Governance, Latency, and Failover Considerations
  15. 3. AWS Networking Services
    1. VPC Networking
    2. What’s Behind the Networking Curtain?
    3. Creating Your First VPC
    4. How Many VPCs?
    5. Creating the VPC CIDR Block
    6. The Default VPC
    7. Revisiting Availability Zones
    8. Creating Subnets
    9. Working with Route Tables
    10. Private IPV4 Addresses
    11. Elastic IP Addresses
    12. Bring Your Own IP (BYOIP)
    13. IPv6 Addresses
    14. Security Groups
    15. Network ACLs
    16. Understanding Ephemeral Ports
    17. Peering VPCs
    18. Gateway VPC Endpoints
    19. VPC Connectivity
    20. VPN Connections
    21. VPN Connections
    22. Understanding Route Propagation
    23. Direct Connect
    24. Route 53
    25. Using DNS with a VPC: Private DNS Zones
    26. In Conclusion
    27. Top 10 Discussion Points: Networking Considerations for Security, Failover, and Connectivity
  16. 4. Compute Services: AWS EC2 Instances
    1. A Short History of EC2 Virtualization
    2. The Nitro System
    3. EC2 Instances
    4. Instance Families
    5. What’s a vCPU?
    6. EC2 Instance Choices
    7. Instances Designed to Burst
    8. EC2 Network Performance
    9. Amazon Machine Images (AMIs)
    10. Choosing an AMI
    11. Creating a Custom AMI
    12. Custom Instance Store AMIs
    13. Proper AMI Design
    14. EC2 Pricing
    15. Reserved Instances (RI)
    16. Spot Fleet
    17. EC2 Fleet
    18. EC2 Instance Storage Options
    19. EC2 Auto Recovery
    20. Ordering an Instance
    21. Migrating to AWS
    22. Other Ways to Host Workloads at AWS
    23. In Conclusion
    24. Top 10 Big-Picture Discussion Points: Migration and Planning Considerations
  17. 5. Planning for Scale and Resiliency
    1. The Concept of Monitoring
    2. What Is CloudWatch?
    3. Planning for Monitoring
    4. CloudWatch Integration
    5. CloudWatch Terminology
    6. Using the Dashboard
    7. Monitoring EC2 Instances
    8. Elastic Load Balancing Services
    9. Additional ELB Features
    10. Application Load Balancer (ALB)
    11. Configuring Health Checks
    12. Network Load Balancer
    13. Scaling Applications
    14. Launch Templates
    15. Scaling Options for Auto Scaling Groups
    16. AWS Auto Scaling
    17. In Conclusion
    18. Top 10 Big-Picture Discussion Points: Scale, Availability, and Monitoring Decisions
  18. 6. Cloud Storage
    1. Cloud Storage
    2. EBS Block Storage
    3. EBS Snapshots
    4. S3 Storage
    5. S3 Management
    6. S3 Bucket Security
    7. Amazon S3 Glacier Archive Storage
    8. Shared File Systems at AWS
    9. Elastic File System (EFS)
    10. Storage Performance Compared
    11. Amazon FSx for Windows File Server
    12. Relational Database Service (RDS)
    13. Big-Picture RDS Installation Steps
    14. Aurora
    15. DynamoDB
    16. DynamoDB Tables
    17. ElastiCache
    18. AWS Data Transfer Options
    19. The Snow Family
    20. AWS Storage Gateway Family
    21. In Conclusion
    22. Top 10 Big-Picture Discussion Points: Storage Options and Considerations
  19. 7. Security Services
    1. Identity and Access Management
    2. IAM Users
    3. Creating an IAM User
    4. Using Multifactor Authentication (MFA)
    5. IAM Policy Types
    6. IAM Policy Creation
    7. Reading a Simple JSON Policy
    8. Policy Actions
    9. Reviewing the Policy Permissions Applied
    10. Using Tags with IAM Identities
    11. IAM Roles
    12. Cross-Account Access to AWS Resources
    13. The AWS Security Token Service (STS)
    14. Identity Federation
    15. IAM Best Practices
    16. IAM Security Tools
    17. Creating a CloudWatch Trail Event
    18. Other AWS Security Services
    19. In Conclusion
    20. Top 10 Big-Picture Security Discussion Points
  20. 8. Automating AWS Infrastructure
    1. Automating with AWS
    2. From Manual to Automated Infrastructure with CloudFormation
    3. CloudFormation Components
    4. Creating an EC2 Instance with ElP
    5. Updating with Change Sets
    6. AWS Service Catalog
    7. The 12-Factor Methodology
    8. Elastic Beanstalk
    9. CodePipeline
    10. Serviceless Computing with Lambda
    11. API Gateway
    12. Building a Serverless Web App
    13. In Conclusion
    14. Top 10 Big-Picture Discussion Points: Moving Toward Stateless Design
  21. Index
  22. Code Snippets