# Ultimate AWS Certified Solutions Architect Associate - 筆記
###### tags: `AWS`
## Records-2023
2/9:
Create a user account on IAM.
2/16: S.34
Skip IAM, Jump into EC2 directly.
2/17: S.43
Enalbe a EC2 with userdata, the implement is similiar as openstack.
2/18: S.45
Spot instance
2/21: S.54
* private IP vs Public IP vs Elastic IP(not recommend)
* Placement group
* cluster
* spread
* partition
* ENI
3/11 s.68
* EBS, EFS, EC2 Instance store and AMI
3/13 s.70
* ELB, ALB
3/18 s.82
* NLB, GWLB
3/19 s.86
* Auto scaling
3/29 s.96
* Aurora, RDS, RDS proxy.
4/16 s.109
* RDS proxy.
Need revisit :
* aurora, multi-az and read replica
* Route 53
7/6
* S3
7/18 s.158
* S3
7/19 s.169
* cloudfront
* s.180 : 有綜合 storage 的解說
## Notes
**EC2, SMS, SQS, kenisis**
coding : python practice : range, lambda, class, map
system design questions : educative system design
Sharp behavior interview questions
````
——————> ELK
——————> CloudWatch
EKS
LB ——> Route 53 ——> VPC —————— > ECS
(Direct connect)
(可能會接到外面)
——————> RDS
——————> S3
````
## Common
security group = firewall
ELB = load balancer
EBS = ceph
Route53 = DNS
S3 = sotrage --> 當 cache 用
RDS = DB
ECS, EKS = K8S and docker
VPC = Private cloud
SQS = Queue ---> 可以拿來跑測試, 或者是處理大量的 task
CloudWatch = prometheus and alertmanager
lamda ?
Elastic cache ?
Radis ?
SDK = 重要
glacier = ?
Athena = splunk or elastic search ??
Tag = ?
EC2 = VM
DDB = no SQL DB
SNS = 發送訊息到各種裝置
cloudformation = 可以產生 template 快速 clone 一個系統
## Links
* [How I earned two AWS Associates (Solutions Architect & Developer) in 3 months ](https://dev.to/lenguage101/how-i-earned-two-aws-associates-solutions-architect-developer-in-3-months-192c)
* [AWS網路規劃系列 — 如何建立安全的VPC環境](https://medium.com/@1000lin/aws-network-planning-d1424e171846)
## Section 8 Load banalcer
### 練習題
1. Create 3 instances with following code + 1 classic load balancer
```shell=
#!/bin/bash
# Use this for your user data (script from top to bottom)
# install httpd (Linux 2 version)
yum update -y
yum install -y httpd
systemctl start httpd
systemctl enable httpd
echo "<h1>Hello World from $(hostname -f)</h1>" > /var/www/html/index.html
```
2. Create an application load balancer(ALB) with previous 3 instances + 1 extra page with path `/constent`
3. Implemenmt AGS
### 理解
* stciky session:
在 ELB 中可以設定 session 讓使用者重複連到原本連過的主機,相當於 cache
* ALB (application load balancer):
為 http 跟 https 特化的 load balancer. 其他protocol 可以考慮 network load balancer (NLB) (需要額外花費) 或者 classic load balancer (CLB)
* connection draining:
設定 LB 的 timeout 時間,用於機器掛點時.
## 不理解
1. 什麼是 KMS CMK
2. SSM Parameters Store
3. aws sheld 跟 AWS sheld advance 跟 aws WAF 差異
4. 什麼是 API Gateway
5. 什麼是 CloudTrail
6. 什麼是 AWS Firewall Manager
7. multi-region keys
8. permission set
9. AWS config ?
10. SCP ?
11. IAM Role : 11/15
12. IAM Security Tool: 11/15
13. IAM Policies: 11/15
14. EC2 Purchasing Option
15. EC2 Reserved Instance
Sign in with Wallet
Connect another wallet