Treinamento de AWS - 1° Parte

AWS Certified Solutions Architect
Associate Level

Labs
● Blog
○ labs.siteblindado.com
○ imasters.com.br
● Eventos
○ 1° Fórum de Segurança (Agosto)
○ Grupo de Estudo AWS CSA - Associate (Set/Out)
Pessoas
Tecnologia Processos

Por que AWS?
Ability to Execute
● Product/Service
● Overall Viability
● Sales Execution/Pricing
● Market Responsiveness/Record
● Marketing Execution ("mind share")
● Customer Experience
● Operations
Completeness of Vision
● Market Understanding
● Marketing Strategy
● Sales Strategy
● Offering (Product) Strategy
● Business Model
● Vertical/Industry Strategy
● Innovation
● Geographic Strategy

Fonte: http://www.gartner.com/technology/reprints.do?id=1-1UKQQA6&ct=140528&st=sb

Exam Overview
● Multiple choice and multiple answer questions
● 80 minutes to complete the exam
● 40 - 60 questions
● 65% or above is passing score
● No prerequisites
● Valid for 2 years
● $150,00

● Grupo 03 (20%)
○ Data Security
● Grupo 04 (10%)
○ Troubleshooting
Assuntos
● Grupo 01 (60%)
○ Designing highly available
○ Cost efficient
○ Fault tolerant
○ Scalable systems
● Grupo 02 (10%)
○ Implementation
○ Deployment

Calendário Encontros
1. 08/Set - Abertura, Overview AWS e S3
2. 16/Set (terça) - Cloudfront e Route53
3. 22/Set - EC2 e VPC
4. 29/Set - RDS, DynamoDB e Other Storage Options
5. 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS
6. 13/Out - IAM e Security
7. 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00

Materiais de Apoio
Referências
1. Página oficial
2. Post sobre o programa e prova
3. AWS Architecture Center
4. AWS Security Center
5. AWS Documentation Page
6. Curso online
White Papers
1. Overview of Amazon Web Services
2. Overview of Security Processes
3. AWS Risk and Compliance
4. Storage Options in the AWS Cloud
5. Architecting for the AWS Cloud: Best
Practices
6. Storage Use Cases
7. Designing Fault-Tolerant Applications in
the AWS Cloud

Antes de começar ...
Exemplos de questões

Questão 01 / 10
Does S3 provide read-after-write consistency?
a. No, not for any region
b. Yes, but only for certain regions
c. Yes, but only for certain regions and for new objects
d. Yes, for all regions

Questão 02 / 10
What is the maximum size of a single S3 object?
a. There is no such limit
b. 5 TB
c. 5 GB
d. 100 GB

Questão 03 / 10
Is data stored in S3 is always encrypted?
a. Yes, S3 always encrypts data for security
b. No, there is no such feature
c. Yes, but only when right APIs are called
d. Yes, but only in Gov Cloud datacenters

Questão 04 / 10
What is true for S3 buckets (select multiple if more
than one is true)?
a. Bucket namespace is shared and is global among all AWS users.
b. Bucket names can contain alphanumeric characters
c. Bucket are associated with a region, and all data in a bucket resides in that
region
d. Buckets can be transferred from one account to another through API

Questão 05 / 10
EBS can always tolerate an Availability Zone failure?
a. No, all EBS volume is stored in a single Availability Zone
b. Yes, EBS volume has multiple copies so it should be fine
c. Depends on how it is setup
d. Depends on the Region where EBS volume is initiated

Questão 06 / 10
Which of the following Auto scaling CANNOT do
(select multiple if more than one is true)?
a. Start up EC2 instances when CPU utilization is above threshold
b. Release EC2 instances when CPU utilization is below threshold
c. Increase the instance size when utilization is above threshold
d. Add more Relational Database Service (RDS) read replicas when utilization
is above threshold

Questão 07 / 10
Which of the following benefits does adding Multi-AZ
deployment in RDS provide (choose multiple if more
than one is true)?
a. MultiAZ deployed database can tolerate an Availability Zone failure
b. Decrease latencies if app servers accessing database are in multiple
Availability Zones
c. Make database access times faster for all app servers
d. Make database more available during maintenance tasks

Questão 08 / 10
What happens to data when an EC2 instance
terminates (select multiple if more than one is true)?
a. For EBS backed AMI, the EBS volume with operation system on it is
preserved
b. For EBS backed AMI, any volume attached other than the OS volume is
preserved
c. All the snapshots of the EBS volume with operating system is preserved
d. For S3 backed AMI, all the data in the local (ephemeral) hard drive is deleted

Questão 09 / 10
For an EC2 instance launched in a private subnet in VPC, which of the
following are the options for it to be able to connect to the internet
(assume security groups have proper ports open).
a. Simply attach an elastic IP
b. If there is also a public subnet in the same VPC, an ENI can be attached to
the instance with the ip address range of the public subnet
c. If there is a public subnet in the same VPC with a NAT instance attached to
internet gateway, then a route can be configured from the instance to the NAT
d. There is no way for an instance in private subnet to talk to the internet

Questão 10 / 10
When an ELB is setup, what is the best way to route a
website’s traffic to it?
a. Resolve the ELB name to an ip address and point the website to that ip
address
b. There is no direct way to do so, Route53 has to be used
c. Generate a CNAME record for the website pointing to the DNS name of the
ELB

Resultado
Como estamos?
Mais exemplos aqui e aqui
Online Associate Practice Exam (U$ 20,00)

Recapitulando Agenda
1. 08/Set - Abertura, Overview AWS e S3
2. 16/Set (terça) - Cloudfront e Route53
3. 22/Set - EC2 e VPC
4. 29/Set - RDS, DynamoDB e Other Storage Options
5. 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS
6. 13/Out - IAM e Security
7. 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00

AWS Global Infrastructure
Regions
● Datacenters independentes
Availability Zones
● Failure zones
● Fisicamente independentes
○ Energia
○ Refrigeração
○ Networking
Edge Locations
● Pontos de distribuição de baixa latência
● CDN - CloudFront
● DNS - Route53

AWS Global Infrastructure
10 - Regions
26 - Availability Zones
52 - Edge Locations
Fonte: http://aws.amazon.com/about-aws/global-infrastructure/

VPC - Private and isolated section of the AWS Cloud

Direct Connect
● Conexão segura e privada com a AWS
● Bypass public internet
● Alta velocidade (banda)
● Latencia previsível

S3 - Simple Storage Service
● 1 byte - 5 TB
● 99,999999999% Durability
● 99,99% Durability com RRS
● 99,99% Disponibilidade
● > 100GB Usar Multipart Upload

CloudFront
Global Infrastructure
Quem lembra os números?

Relational Database Service - RDS
● Automatic Software Patching
● Automated Backups
● Multi-AZ
● Reserved Instance Support

No SQL
● Fully managed cloud NoSQL database
service
● Fast, Predictable Performance
○ Particionamento de informações
○ SSD
● Scalable
● High Availability
○ Replica em 3 AZs
● Storage Limit
○ 10 GB
● Request Capacity
○ Limit 25 writes/sec

Others
Analytics Applications Mobile

Eu preciso saber de tudo isso?
● SIM!!
● O mais importante é entender tradeoffs
○ Custo
○ Tolerância a falha
○ Escalabilidade
○ Controle - Gestão
○ Velocidade
○ Flexibilidade
○ ...

Recapitulando Agenda
● 08/Set - Abertura, Overview AWS e S3
● 16/Set (terça) - Cloudfront e Route53
● 22/Set - EC2 e VPC
● 29/Set - RDS, DynamoDB e Other Storage Options
● 06/Out - Elastic Beanstalk, CloudFormation, SWF e SQS
● 13/Out - IAM e Security
● 20/Out - Architecting for the Cloud e Revisão
Horário: 18:00 as 20:00

OBRIGADO!!
AWS Certified Solutions Architect
Associate Level

Treinamento de AWS - 1° Parte

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (20)

Semelhante a Treinamento de AWS - 1° Parte

Semelhante a Treinamento de AWS - 1° Parte (20)

Último

Último (20)

Treinamento de AWS - 1° Parte