Architecture Skeleton
AWS Services Architecture
Virtual Private Network - Private network in AWS to manage public network for web server and load balancers and a private network for databases.
Elastic Load Balancer (ELB) - distribute incoming traffic to multiple back-end EC2 machines.
Route53 - DNS service for mapping domain name to load balancer.
EC2 Machines - VMs
EBS Disk (Elastic Block Storage) - have a limitation of maximum size. EC2 and EBS address the VMs that typically deploy the applications on web and app servers.
RDB - service for Relational Databases
DynamoDB - service for NoSQL DB
ElastiCache - for DB Caches that comes with REDIS and memcached engines.
S3 (Simple Storage Service) - for external storage.
Rekognition - Content filter service
Lambda - video converter e.g. MP4 to a different mobile friendly format.
Kinesis - for click stream data analysis and store in S3
EMR - service for Spark/Hadoop platform. It does operations like aggregation, sorting and run distributed jobs like SPARC, Flink jobs.
Glue - service that converts data from DynamoDB into different format data cataloging and further do some data processing using EMR. Extract, transform and load operations (ETL).
Redshift - data warehouse service for storing data after it's been processed.
Amazon Quicksight - BI tool for analysis and seeing the results. **Athana **is an SQL query interface to pull data from S3, perform an SQL operation and view the results in Quicksight. One can also build some graphs, charts and get insights of data.
CloudFront - content delivery network service which can cache static content or one's data in edge locations which are across cities. When one uses CloudFront service, all your data from S3 service or wherever you store your data it gets your data cached in the nearest edge location from where the user is coming.
SNS (Simple Network Service) - SMS Mobile Push Notifications service.
SES (Simple Email Service) -
SQS (Simple Queue Service) - for messaging queues for chatting applications.
CloudWatch - to monitor all the infrastructure and how EC2 instances are doing, CPU utilization of EC2, database performance.
AWS Security Services
IAM (Identity and Access Management) - manage the authentication and authorization.
KMS (Key Management Service) - encrypt data that is stored at various storage locations like EBS, S3, EMR, Redshift, Queue messages, Databases etc.
ACM (Amazon Certificate Manager) - digital certificates to one may deploy on load balancers or CloudFront so that communication is secure.
WAF (Web Application Firewall) - application firewalls to prevent attacks e.g cross-site scripting, SQL injection, DDoS.
Inspector - assigns an agent inside your machine and scans for any known vulnerabilities and then it will offer reports.
AWS Development and Deployment Services
CloudFormation - takes a template in JSON or YAML template format and create infrastructure from scratch.
CodeCommit - code repository like Git service for QA, Developers and DevOps to check-in code.
CodeBuild - service to build a product using some build tool like ant/maven and also perform some unit tests while building and even produce some artifacts.
Codepipeline - automatically build code, test and deploy into corresponding application servers running in EC2.
Codestar - integrate with project management tools like Jira, bug-tracking tool.
Top comments (0)