The network services allow the application’s components to interact with each other and also connect the application to the Internet and private networks. Examples of network services include
Amazon Virtual Private Cloud (VPC): This service allows you to connect applications with private network ranges, connect those private ranges with the Internet, and assign public IP addresses.
AWS Direct Connect: This private optical fiber connection service connects on-premise sites with AWS.
AWS Site-to-Site VPN gateway (VGW): This component of the VPC provides the capability for establishing VPN connections with on-premises sites.
Amazon Route 53: This is the next-generation, API-addressable DNS service from AWS.
Amazon CloudFront: This caching and CDN service is available in the AWS cloud.
Amazon Elastic Load Balancing (ELB): This service allows load balancing of traffic across multiple EC2 instances, ECS containers, or other IP addressable targets.
You have a lot of flexibility when it comes to compute services in AWS. The following are examples of compute offerings in AWS:
Amazon Elastic Cloud Computing (EC2): Provides the ability to deploy and operate virtual machines running Linux and Windows in the AWS cloud.
Amazon Elastic Container Service (ECS): Provides the ability to deploy, orchestrate, and operate containers in the AWS cloud.
Amazon Elastic Kubernetes Service (EKS): Provides the ability to deploy, orchestrate, and operate Kubernetes clusters in the AWS cloud.
Amazon Lambda: Provides the ability to process simple functions in the AWS cloud.
There are many types of data, and each type requires you to pick the right storage solution. The AWS cloud has several different storage options depending on the types of data that you are storing. Here are a few examples:
Amazon Elastic Block Storage (EBS): This solution provides block-accessible, network-attached, persistent storage for volumes that you can connect to EC2 instances and ECS containers.
Amazon Elastic File System (EFS): This solution provides a network-attached file system that supports the NFS protocol and allows you to share files among EC2 instances, ECS containers, and other services.
Amazon Simple Storage Service (S3): This solution is designed to store unlimited amounts of data; S3 is the ultimate object storage system. All objects in S3 are accessible via standard HTTP requests.
Amazon Glacier: This archive storage solution can be automatically integrated with S3.
AWS Storage Gateway: This hybrid storage solution exposes AWS as storage services to on-premises servers.
AWS Snow Family: These data transfer devices allow for physically moving data from on-premises to the cloud at any scale.
To provide a comprehensive approach to using the AWS environment in a secure manner, AWS provides security services. Examples include the following services:
Amazon Identity and Access Management (IAM): This service allows for control of access to AWS as well as access to an application in one place.
Amazon Key Management Service (KMS): This service enables you to define a unified way to manage encryption keys for AWS services and applications.
Amazon Cloud Hardware Security Module (CloudHSM): This is a cloud-enabled hardware security device.
Amazon Inspector: This tool provides an assessment of services running in AWS with a prioritized, actionable list for remediation.
Amazon Web Application Firewall (WAF): This service protects web applications from attacks using exploits and security vulnerabilities.