Search results

EBS Encryption:When create an encrypted EBS volume, get the following: Data at rest is encrypted inside the volumeAll the data in flight moving between the instance and the volume is encryptedAll snapshots are encryptedAll volumes created from the snapshotEncryption and decryption are handled...

EBS Snapshots:Make a backup (snapshot) of EBS volume at a point in timeNot necessary to detach volume to do snapshot, but recommendedCan copy snapshots across AZ or Region AMI Overview:AMI = Amazon Machine ImageAMI are a customization of an EC2 instance Add own software, configuration, operating...

Most modern malware uses some form of obfuscation to avoid detection as there is a range of obfuscation techniques and there are tools freely available on the Internet for a malware author to use. Polymorphism can be used to defeat detection methods that are based on 'signatures' or patterns of...

EC2 Nitro:Underlying Platform for the next generation of EC2 instancesNew virtualization technologyAllows for better performance: Better networking options (enhanced networking, HPC, IPv6)Higher Speed EBS (Nitro is necessary for 64,000 EBS IOPS - max 32,000 on non-Nitro)Better underlying...

รวมวิธีใช้งาน Microsoft 365 หรือ Microsoft Office Free ไม่เสียเงิน ไม่ผิดลิขสิทธิ์!: www.sanook.com/hitech/1500213 medium.com/mseduth/การสร้างระบบการ-จอง-ยืม-ลา-ขออนุมัติ-ด้วย-flow-ใน-office-365-แบบ-step-by-step-6bf16de0ee00 สอนควบคุมเอกสารด้วย Power Apps: www.youtube.com/watch?v=KldpBTM_6tg

EC2 instance types/families: General Purpose: Great for a diversity of workloads such as web servers or code repositoriesBalance between Compute, Memory, and NetworkingMac, T4g, T3, T3a, T2, M6g, M5, M5a, M5n, M5zn, M4, and A1 Compute Optimized: Great for compute-intensive tasks that require...

IAM Users: Can belong to multiple groupsDon't have to belong to a groupCan have policies assigned to themAccess AWS using a username and a password Don't use the root user account is an IAM best practice. Only want to use the root account to create first IAM user, and for a few account and...

Multi Factor Authentication - MFA:Users have access to account and can possibly change configurations or delete resources in AWS accountWant to protect Root Accounts and IAM usersMFA = password know + security device ownAlice > Password + MFA => Successful loginMain benefit of MFA: if a password...

5 เคล็ดลับ ใช้งาน AWS อย่างคุ้มค่าสูงสุด ปกป้องข้อมูลได้ทุกส่วน: dl.techtalkthai.com/ttt_veeam_aws_cloud_cost_optimization_2021_whitepaper_01 v1.1.pdf AWS Cloud History: 2002: Internally launched 2003: Amazon infrastructure is one of their core strength. Idea to market 2004: Launched publicly...

An ASG spawns across 2 availability zones. AZ-A has 3 EC2 instances and AZ-B has 4 EC2 instances. The ASG is about to go into a scale-in event. The AZ-B will terminate the instance with the oldest launch configuration. The Default Termination Policy for ASG tries to balance across AZ first, and...

If application is scaling up and down multiple times each hour, modify the Auto Scaling Groups cool-down timers and the CloudWatch Alarm Period that triggers the scale in ASG for Solution Architects:ASG Default Termination Policy (simplified version): Find the AZ which has the most number of...

AWS Competency Program allows companies in the Partner Network to demonstrate and prove their expertise in areas like Migrations. AWS Snowball service provides a physical device that can be connected directly to data center network can leverage the local network to copy data, can hold up to 80...

Security section from Trusted Advisor exists under the Well-Architected Framework as a pillar as well. Amazon Inspector AWS Service has an optional agent that can be deployed to EC2 instances to perform a security assessment. Amazon Relational Database Service is also a valid storage service...

Resource interface:Higher level interfaceObject-orientedWrapper for clientExposes a subset of AWS APIs client.py:import boto3 client = boto3.client('s3') response = client.list_objects(Bucket='aws-bma-test') for content in response: obj_dict = client.get_object(Bucket='aws-bma-test'...

The default configuration of a security group blocks all inbound traffic and allows all outbound traffic. Amazon EC2 provides a wide selection of instance types optimized to fit different use cases. Instance types comprise varying combinations of CPU, memory, storage, and networking capacity...

Nowadays, TLS certificates are mainly used, but people still refer as SSLPublic SSL certificates are issued by Certificate Authorities (CA)Comodo, Symantec, GoDaddy, GlobalSign, Digicert, Letsencrypt, etc...SSL certificates have an expiration date (set) and must be renewed Load Balancer - SSL...

It's easy to horizontally scale thanks the cloud offerings such as Amazon EC2 High Availability:Usually goes hand in hand with horizontal scalingMeans running application / system in at least 2 data centers (== Availability Zones)The goal is to survive a data center lossCan be passive (for RDS...

IAM Tutorial: Delegate access to the billing console Placement Groups: Cluster: Pros: Great network (Low latency 10 Gbps bandwidth between instances)Cons: If the rack fails, all instances fails at the same timeUse case: Big Data job that needs to complete fastApplication that needs extremely...

Spot Fleets:Set of Spot Instances + (optional) On-Demand InstancesWill try to meet the target capacity with price constraints Define possible launch pools: instance type (m5.large), OS, Availability ZoneCan have multiple launch pools, so that the fleet can chooseSpot Fleet stops launching...

apiVersion: projectcalico.org/v3 kind: GlobalNetworkPolicy metadata: name: red-policy spec: order: 100 selector: color == 'red' ingress: - action: Deny source: selector: color == 'blue' - action: Allow source: serviceAccounts: selector: color == 'green'...