Hello World from $(hostname -f)

---
# System prepended metadata

title: Ultimate AWS Certified Solutions Architect Associate - 筆記
tags: [AWS]

---

# Ultimate AWS Certified Solutions Architect Associate - 筆記
###### tags: `AWS`


## Records-2023
2/9:
Create a user account on IAM.

2/16: S.34
Skip IAM, Jump into EC2 directly.

2/17: S.43
Enalbe a EC2 with userdata, the implement is similiar as openstack.

2/18: S.45
Spot instance

2/21: S.54
* private IP vs Public IP vs Elastic IP(not recommend)
* Placement group
  * cluster
  * spread
  * partition 
* ENI

3/11 s.68
* EBS, EFS, EC2 Instance store and AMI 
3/13 s.70
* ELB, ALB
3/18 s.82
* NLB, GWLB
3/19 s.86
* Auto scaling 
3/29 s.96
* Aurora, RDS, RDS proxy.

4/16 s.109
* RDS proxy.
Need revisit : 
* aurora, multi-az and read replica
* Route 53
7/6 
* S3
7/18 s.158
* S3
7/19 s.169
* cloudfront
* s.180 : 有綜合 storage 的解說


## Notes
**EC2, SMS, SQS, kenisis**
coding : python practice : range, lambda, class, map
system design questions : educative system design
Sharp behavior interview questions


````
                         ——————> ELK
                         ——————> CloudWatch 
                                 EKS
LB ——> Route 53 ——> VPC —————— > ECS      
                    (Direct connect)
              
              (可能會接到外面)           
              ——————> RDS
              ——————> S3                                        
````


## Common
security group = firewall
ELB            = load balancer
EBS            = ceph
Route53        = DNS
S3             = sotrage --> 當 cache 用
RDS            = DB
ECS, EKS       = K8S and docker
VPC            = Private cloud
SQS            = Queue ---> 可以拿來跑測試, 或者是處理大量的 task
CloudWatch     = prometheus and alertmanager
lamda ?
Elastic cache ?
Radis ? 
SDK            = 重要


glacier        = ?
Athena         = splunk or elastic search ??
Tag            = ?
EC2            = VM
DDB            = no SQL DB
SNS            = 發送訊息到各種裝置
cloudformation = 可以產生 template 快速 clone 一個系統


## Links
* [How I earned two AWS Associates (Solutions Architect & Developer) in 3 months ](https://dev.to/lenguage101/how-i-earned-two-aws-associates-solutions-architect-developer-in-3-months-192c)
* [AWS網路規劃系列 — 如何建立安全的VPC環境](https://medium.com/@1000lin/aws-network-planning-d1424e171846)

## Section 8 Load banalcer
### 練習題
1. Create 3 instances with following code +  1 classic load balancer
```shell=
#!/bin/bash
# Use this for your user data (script from top to bottom)
# install httpd (Linux 2 version)
yum update -y
yum install -y httpd
systemctl start httpd
systemctl enable httpd
echo "<h1>Hello World from $(hostname -f)</h1>" > /var/www/html/index.html
```

2. Create an application load balancer(ALB) with previous 3 instances + 1  extra page with path `/constent`
3. Implemenmt  AGS

### 理解
* stciky session:
在 ELB 中可以設定 session 讓使用者重複連到原本連過的主機，相當於 cache
* ALB (application load balancer):
為 http 跟 https 特化的 load balancer. 其他protocol 可以考慮 network load balancer (NLB) (需要額外花費) 或者 classic load balancer (CLB)
* connection draining:
設定 LB 的 timeout 時間，用於機器掛點時．


## 不理解
1. 什麼是 KMS CMK
2. SSM Parameters Store
3. aws sheld 跟 AWS sheld advance 跟 aws WAF 差異
4. 什麼是 API Gateway
5. 什麼是 CloudTrail
6. 什麼是 AWS Firewall Manager
7. multi-region keys
8. permission set
9. AWS config ?
10. SCP ?
11. IAM Role : 11/15
12. IAM Security Tool: 11/15
13. IAM Policies: 11/15
14. EC2 Purchasing Option
15. EC2 Reserved Instance