Book Image

Implementing AWS: Design, Build, and Manage your Infrastructure

By : Yohan Wadia, Rowan Udell, Lucas Chan, Udita Gupta
Book Image

Implementing AWS: Design, Build, and Manage your Infrastructure

By: Yohan Wadia, Rowan Udell, Lucas Chan, Udita Gupta

Overview of this book

With this Learning Path, you’ll explore techniques to easily manage applications on the AWS cloud. You’ll begin with an introduction to serverless computing, its advantages, and the fundamentals of AWS. The following chapters will guide you on how to manage multiple accounts by setting up consolidated billing, enhancing your application delivery skills, with the latest AWS services such as CodeCommit, CodeDeploy, and CodePipeline to provide continuous delivery and deployment, while also securing and monitoring your environment's workflow. It’ll also add to your understanding of the services AWS Lambda provides to developers. To refine your skills further, it demonstrates how to design, write, test, monitor, and troubleshoot Lambda functions. By the end of this Learning Path, you’ll be able to create a highly secure, fault-tolerant, and scalable environment for your applications. This Learning Path includes content from the following Packt products: • AWS Administration: The Definitive Guide, Second Edition by Yohan Wadia • AWS Administration Cookbook by Rowan Udell, Lucas Chan • Mastering AWS Lambda by Yohan Wadia, Udita Gupta

Related Content you might be interested in

Current Title:

Small book image
Implementing AWS: Design, Build, and Manage your Infrastructure
Yohan Wadia | Rowan Udell | Lucas Chan | Udita Gupta
Jan, 2019 | 11 hours 30 minutes
No titles found
Table of Contents (29 chapters)
Title Page
Title Page
Copyright and Credits
Copyright and Credits
About Packt
About Packt
Contributors
Contributors
Preface
Preface
Free Chapter
1
What is New in AWS?
What is New in AWS?
Improvements in existing services
Introduction of newer services
2
Managing EC2 with Systems Manager
Managing EC2 with Systems Manager
Introducing EC2 Systems Manager
Getting started with the SSM agent
Introducing Run Command
Working with State Manager
Simplifying instance maintenance using System Manager Automation
Managing instance patches using patch baseline and compliance
Getting started with Inventory Management
3
Introducing Elastic Beanstalk and Elastic File System
Introducing Elastic Beanstalk and Elastic File System
Introducing Amazon Elastic Beanstalk
Getting started with Elastic Beanstalk
Introducing Amazon Elastic File System
4
Securing Workloads Using AWS WAF
Securing Workloads Using AWS WAF
Introducing AWS Web Application Firewall
Getting started with WAF
5
Governing Your Environments Using AWS CloudTrail and AWS Config
Governing Your Environments Using AWS CloudTrail and AWS Config
Introducing AWS CloudTrail
Working with AWS CloudTrail
Introducing AWS Config
Tips and best practices
6
Access Control Using AWS IAM and AWS Organizations
Access Control Using AWS IAM and AWS Organizations
What's new with AWS IAM
Introducing AWS Organizations
7
Transforming Application Development Using the AWS Code Suite
Transforming Application Development Using the AWS Code Suite
Understanding the AWS Code Suite
Getting Started with AWS CodeCommit
Introducing AWS CodeDeploy
Introducing AWS CodePipeline
8
Powering Analytics Using Amazon EMR and Amazon Redshift
Powering Analytics Using Amazon EMR and Amazon Redshift
Understanding the AWS analytics suite of services
Introducing Amazon EMR
Introducing Amazon Redshift
9
Orchestrating Data using AWS Data Pipeline
Orchestrating Data using AWS Data Pipeline
Introducing AWS Data Pipeline
Getting started with AWS Data Pipeline
10
Managing AWS Accounts
Managing AWS Accounts
Introduction
Setting up a master account
Creating a member account
Inviting an account
Managing your accounts
Adding a service control policy
11
Using AWS Compute
Using AWS Compute
Introduction
Creating a key pair
Launching an instance
Attaching storage
Securely accessing private instances
Auto scaling an application server
Creating machine images
Creating security groups
Creating a load balancer
12
Management Tools
Management Tools
Introduction
Auditing your AWS account
Recommendations with Trusted Advisor
Creating e-mail alarms
Publishing custom metrics in CloudWatch
Creating monitoring dashboards
Creating a budget
Feeding log files into CloudWatch logs
13
Database Services
Database Services
Introduction
Creating a database with automatic failover
Creating a NAT gateway
Creating a database read-replica
Promoting a read-replica to master
Creating a one-time database backup
Restoring a database from a snapshot
Migrating a database
Calculating DyanmoDB performance
14
Introducing AWS Lambda
Introducing AWS Lambda
What is serverless computing?
Introducing AWS Lambda
Getting started with AWS Lambda
15
Writing Lambda Functions
Writing Lambda Functions
The Lambda programming model
Versioning and aliases
Packaging and deploying
16
Testing Lambda Functions
Testing Lambda Functions
The need for testing Lambda function
Testing with a simple serverless test harness
17
Event-Driven Model
Event-Driven Model
Introducing event-driven architectures
Understanding events and AWS Lambda
Exploring Lambda and event mapping
18
Extending AWS Lambda with External Services
Extending AWS Lambda with External Services
Introducing Webhooks
Integrating GitHub with AWS Lambda
Integrating Slack with AWS Lambda
Invoking Lambda using an external application
19
Build and Deploy Serverless Applications with AWS Lambda
Build and Deploy Serverless Applications with AWS Lambda
Introducing SAM
Introducing AWS step functions
20
Monitoring and Troubleshooting AWS Lambda
Monitoring and Troubleshooting AWS Lambda
Monitoring Lambda functions using CloudWatch
Introducing AWS X-Ray
Monitoring Lambda functions using Datadog
Logging your functions with Loggly
21
AWS Lambda - Use Cases
AWS Lambda - Use Cases
Infrastructure management
Data transformation
22
Next Steps with AWS Lambda
Next Steps with AWS Lambda
Processing content at the edge with Lambda@Edge
Building next generation chatbots with Lambda and Lex
Processing data at the edge with Greengrass and Lambda
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think
Index
Index

Creating a NAT gateway

Unless required, your instances should not be publicly exposed to the Internet. When your instances are on the Internet, you have to assume that they will be attacked at some stage.

This means most of your workloads should run on instances in private subnets. Private subnets are those that are not connected directly to the Internet.

In order to give your private instances access to the Internet you use network address translation (NAT). A NAT gateway allows your instances to initiate a connection to the Internet, without allowing connections from the Internet.

Getting ready

For this recipe, you must have the following resources:

  • A VPC with an Internet gateway (IGW)
  • A public subnet
  • A private subnet route table

You will need the IDs for the public subnet and private subnet route table. Both of these resources should be in the same AZ.

How to do it...

  1. Start with the usual CloudFormation template version and description:
      AWSTemplateFormatVersion: "2010-09-09" 
      Description...
Previous Section
End of Section 4
Next Section