AWS Service

• Services Cheat Sheet
• Typical AWS Network Architecture in one diagram
• AWS Lambda Powertools for TypeScript
  • Commands
• Elastic Container
• Resources
• AWS Certified Solutions Architect Associate
  • EC2
  • VPC

Services Cheat Sheet

• 👍The Open Guide to Amazon Web Services

• Security, Identity, & Compliance
  • IAM: AWS’s permission system that can control users and AWS services.
  • Cognito: User and password management system. Useful for managing users for your applications.
• Compute
  • EC2: Virtual Private Servers
  • ECS (EC2 Container Service): manages clusters of services deployed via Docker.
  • Lambda: Functions you can run, written in Python, NodeJS, Go etc. Can run many in parallel.
  • Elastic Beanstalk: Run software on managed virtual machines
• Storage
  • S3: File / object storage. Not primarily used for mounting as filesystem, but you can directly download files through HTTP.
  • S3 Glacier: Low cost storage system for backups and archives and such
• Database
  • RDS: Managed mysql, postgres databases etc.
  • DynamoDB: Large & scalable non-relational database
  • Amazon QLDB: Database for immutable and cryptographically verifiable data (money transactions etc)
• Networking & Content Delivery
  • VPC: Create your own virtual private network within AWS.
  • CloudFront: Content Delivery Network.
  • Route 53: Manage domain names and records.
  • API Gateway: Create HTTP APIs and let them connect to different backends.
• Blockchain
  • Amazon Managed Blockchain: Block chains
• Management & Governance
  • CloudWatch: Logging from various AWS components
  • CloudFormation: Templates to create and configure AWS components (think terraform/sls)
• Machine Learning
  • Amazon SageMaker: Machine learning tools
• Analytics
  • Athena: Query data stored in s3 buckets.
  • AWS Glue: ETL service. Enrich, validate data.
• Mobile
  • AWS Amplify: Let AWS automatically generate frontend & backend apps and deploy them automatically.
  • AWS AppSync: Create API backends that you can connect to. Can be created through AWS Amplify as well.
• Application Integration
  • Application Integration: State machines written in amazon’s own language
  • Simple Notification Service: Notification system that can notify through email, api endpoints, sms etc.
  • Simple Queue Service: Message queue system
• Customer Engagement
  • Simple Email Service: Send out emails. Email provider.
• Internet Of Things
  • IoT Core: Manage fleets of IOT devices through MQTT broker
  • FreeRTOS: RTOS operating system for microcontrollers to automatically connect to IOT-Core or greengrass.
  • IoT 1-Click: Manage 1-click buttons that can be connected to other systems - like Lambda
  • IoT Analytics: Clean up and save messages from topics into a data-store for analytics
  • IoT Device Defender: Detect unwanted issues on your devices and take actions
  • IoT Device Management: Organize IoT devices into groups, schedule jobs on the devices and configure remote access
  • IoT Events: Monitor telemetry from devices and then trigger other AWS services or jobs on the devices themselves
  • IoT Greengrass: A message broker can buffer messages for groups of up to 200 devices which can communicate and process data locally if connectivity to IoT Core is intermittent.
  • IoT SiteWise: Collect, organize, analyze and visualize data from industrial equipment at scale
  • IoT Things Graph: Cloudformation-like designer for graphing how devices should communicate with other AWS services
• Containers
  • Elastic Container Registry: Store docker images like on DockerHub
  • Elastic Container Service: Run containers, either on your own EC2 machines, or on managed machines called Fargate.
  • Elastic Kubernetes Service: Kubernetes as a service

Typical AWS Network Architecture in one diagram

AWS Lambda Powertools for TypeScript

A suite of utilities for AWS Lambda Functions that makes structured logging, creating custom metrics asynchronously and tracing with AWS X-Ray easier

Lambda Layer is a .zip file archive that can contain additional code, pre-packaged dependencies, data, or configuration files. Layers promote code sharing and separation of responsibilities so that you can iterate faster on writing business logic.

Commands

Get associated aws account id

aws sts get-caller-identity --profile legacy --output json | jq ".Account" | sed 's/\"//g'

Elastic Container

aws ecr describe-repositories

aws ecr list-images --repository-name your-repository-name

Resources

• How to Build AWS Lambdas with TypeScript

AWS Certified Solutions Architect Associate

• Sample Questions
• Learn the AWS Fundamentals (EC2, ELB, ASG, RDS, ElasticCache, S3)
• Master all the differences of Databases on AWS
  • use both services in the same application architecture
    • use RDS for transactional data
    • use DynamoDB for a rapidly changing product catalog
  • Choose a RDS
    • the data has a well-defined, structured schema that changes infrequently
    • you need complex queries, joins
  • Choose DynamoDB
    • for unstructured or semi-structured data
    • allowing for rapid changes in data structure
    • is optimized for simple, key-based queries
    • pricing is based on throughput and storage
• Learn the Serverless Fundamentals (Lambda, DynamoDB, Cognito, API Gateway)
• Understand the Well Architected Framework, Disaster Recovery
• Secure your entire AWS Cloud using KMS, IAM Policies & SSM

EC2

• Hibernating EC2 instances save the contents of instance memory to an Amazon Elastic Block Store (Amazon EBS) root volume. When the instances restart, the instance memory contents are reloaded.

VPC

• CIDR: Classless Inter-Domain Routing.
• subnets: are divisions of a VPC's IP address range.
  • public and private
• route table: a set of rules, controls the network traffic
• internet gateway
  • routing outbound traffic from the VPC to the internet (NAT)
  • routing inbound traffic fro the Internet to the VPC
• NAT Gateway: network address translation