IAM roles’ Trust Policies Cross-account access is made possible because of IAM roles. IAM roles have a distinct capacity to act both as an identity and as a resource, and as such, you can associate both identity-based policies and resource-based policies with IAM roles. In the case of IAM roles, resource-based policies are also called […]

Elastic Block Store (EBS) Although EBS and EC2 are closely tied together, it is important to remember that they are both separate services. EBS is a storage service that provides network-based storage allocated in the same Availability Zone as the instance and is then mounted for usage. The amount of instance storage allocated to an […]

Relational Database Service Relational Database Service (RDS) aims to remove the tasks previously performed by a database administrator who had to be on staff but gave little to no actual value to the end product or project. These tasks include provisioning a new database, creating backups, scaling out to read replicas, patching and upgrading instances, […]

AWS provides a wide range of services to store your data safely and securely. There are various storage options available on AWS, such as block storage, file storage, and object storage. It is expensive to manage on-premises data storage due to the higher investment in hardware, admin overheads, and managing system upgrades. With AWS storage […]

Custom Routing Accelerator Custom routing accelerators extend the capabilities to allow you to map specific application IP ports to destinations in one or more AWS regions that you define. This capability allows you to control the destination devices across the AWS network as compared to standard accelerators that do not support routing to a specific […]

Additional Considerations for Resiliency As a best practice, it is recommended to have at least two separate connections at two different DX locations. In this case, you end up with two DX connections. This will provide resiliency against connectivity failure due to a device failure, a network cable cut, or an entire location failure. To […]

AWS Load Balancer Offerings AWS offers three types of elastic load balancers with each designed for a specific use case. In this section we will learn about these AWS service offerings, what they do, how they are different, and which load balancer in the family is the best fit for a given requirement. Tables 1.1 […]

Metering Metering is a process of extracting information from a platform and storing it for processing. In the scope of this chapter, the information would be operational metrics of the system or platform where the application resides—for example, capturing how many units of CPU, network, and disk capacity are used. On top of the system […]

Checking the Health of a Specific Endpoint In this case, you would create a check from Route 53 that conducts checks at regular intervals specified by you. Your health checks monitor an endpoint that is either an IP address or a domain name. Route 53 then checks at specified intervals if the server, application, or […]

Exam Readiness Drill – Chapter Review Questions Apart from a solid understanding of key concepts, being able to think quickly under time pressure is a skill that will help you ace your certification exam. That is why working on these skills early on in your learning journey is key. Chapter review questions are designed to […]