亚马逊Elastic Compute Cloud (EC2) Linux实例用户指南

需积分: 9 93 浏览量更新于2024-07-18 收藏 6.82MB PDF 举报

身份认证购VIP最低享 7 折!

30元优惠券

"Amazon Elastic Compute Cloud User Guide for Linux Instances" 亚马逊弹性计算云（Amazon Elastic Compute Cloud，简称Amazon EC2）是亚马逊Web服务（AWS）提供的一个核心云计算产品，它允许用户在云端租用虚拟服务器，即所谓的实例，来运行各种应用程序。此用户指南专门针对Linux实例，提供了关于如何在AWS上部署、管理以及配置这些计算资源的详细信息。 Amazon EC2的主要特点包括： 1. 弹性：可以根据业务需求随时调整实例的数量和规格，快速扩展或缩减计算资源。 2. 可靠性：通过分布在多个可用区（Availability Zones）的数据中心提供高可用性和容灾能力。 3. 安全性：支持安全组和网络访问控制列表（ACLs）等安全措施，确保数据和应用的安全。 4. 自定义：用户可以创建自己的自定义镜像（Amazon Machine Images, AMIs），包含特定的应用程序和配置，方便快速部署。 5. 经济性：采用按需付费模式，用户只支付实际使用的计算时间，降低了IT成本。在开始使用Amazon EC2之前，你需要了解以下几个步骤： 1. 注册AWS账户：创建并验证AWS账户，获得访问AWS服务的权限。 2. 创建安全组：定义实例的网络访问规则，限制入站和出站流量。 3. 选择实例类型：根据计算、内存、存储和网络需求选择合适的实例类型。 4. 选择区域和可用区：根据目标用户地理位置和合规性要求选择适合的区域和可用区。 5. 配置启动模板：创建或选择合适的AMIs，指定实例的启动配置。 6. 启动实例：提交启动请求，并监控实例状态，直至其变为运行状态。 Amazon EC2的相关服务包括： - 存储服务如Amazon S3和Amazon EBS，用于存储实例的数据和快照。 - 网络服务如Virtual Private Cloud (VPC)，让用户可以创建私有的网络环境。 - 负载均衡服务如 Elastic Load Balancing (ELB)，分发流量到多个实例以提高可用性。 - 监控和日志服务如CloudWatch和CloudTrail，帮助用户跟踪和审计资源性能。在费用方面，Amazon EC2的定价基于多种因素，包括实例类型、计费模式（按需、预留、竞价）、操作系统和附加服务。用户可以通过AWS价格计算器预估成本。此外，Amazon EC2符合Payment Card Industry Data Security Standard (PCI DSS)的要求，对于处理信用卡信息的业务提供了安全保障。所有非亚马逊商标均为各自所有者的财产，且与亚马逊可能无关联、无赞助关系。 Amazon Elastic Compute Cloud User Guide for Linux Instances是开发者和IT管理员深入了解和使用Amazon EC2的宝贵资源，涵盖了从基础概念到高级操作的全面指导。通过学习这个指南，用户能够有效地利用AWS云平台构建和管理高度可伸缩的Linux应用。

资源详情

资源推荐

Amazon Elastic Compute Cloud

User Guide for Linux Instances

AMIs

• Restrict access by only allowing trusted hosts or networks to access ports on your instance. For example,

you can restrict SSH access by restricting incoming traffic on port 22. For more information, see Amazon

EC2 Security Groups for Linux Instances (p. 418).

• Review the rules in your security groups regularly, and ensure that you apply the principle of least

privilege—only open up permissions that you require. You can also create different security groups to

deal with instances that have different security requirements. Consider creating a bastion security group

that allows external logins, and keep the remainder of your instances in a group that does not allow

external logins.

• Disable password-based logins for instances launched from your AMI. Passwords can be found or

cracked, and are a security risk. For more information, see Disable Password-Based Remote Logins for

Root (p. 84). For more information about sharing AMIs safely, see Shared AMIs (p. 78).

Stopping, Starting, and Terminating Instances

Stopping an instance

When an instance is stopped, the instance performs a normal shutdown, and then transitions to a stopped

state. All of its Amazon EBS volumes remain attached, and you can start the instance again at a later time.

You are not charged for additional instance hours while the instance is in a stopped state. A full instance

hour will be charged for every transition from a stopped state to a running state, even if this happens

multiple times within a single hour. If the instance type was changed while the instance was stopped, you

will be charged the rate for the new instance type after the instance is started. All of the associated Amazon

EBS usage of your instance, including root device usage, is billed using typical Amazon EBS prices.

When an instance is in a stopped state, you can attach or detach Amazon EBS volumes. You can also

create an AMI from the instance, and you can change the kernel, RAM disk, and instance type.

Terminating an instance

When an instance is terminated, the instance performs a normal shutdown, then the attached Amazon EBS

volumes are deleted unless the volume's deleteOnTermination attribute is set to false. The instance itself

is also deleted, and you can't start the instance again at a later time.

To prevent accidental termination, you can disable instance termination. If you do so, ensure

that the disableApiTermination attribute is set to true for the instance. To control the behavior

of an instance shutdown, such as shutdown -h in Linux or shutdown in Windows, set the

instanceInitiatedShutdownBehavior instance attribute to stop or terminate as desired. Instances with

Amazon EBS volumes for the root device default to stop, and instances with instance-store root devices

are always terminated as the result of an instance shutdown.

For more information, see Instance Lifecycle (p. 285).

AMIs

Amazon Web Services (AWS) publishes many Amazon Machine Images (AMIs) that contain common

software configurations for public use. In addition, members of the AWS developer community have

published their own custom AMIs. You can also create your own custom AMI or AMIs; doing so enables

you to quickly and easily start new instances that have everything you need. For example, if your

application is a website or a web service, your AMI could include a web server, the associated static

content, and the code for the dynamic pages. As a result, after you launch an instance from this AMI, your

web server starts, and your application is ready to accept requests.

All AMIs are categorized as either backed by Amazon EBS, which means that the root device for an

instance launched from the AMI is an Amazon EBS volume, or backed by instance store, which means that

the root device for an instance launched from the AMI is an instance store volume created from a template

stored in Amazon S3.

Amazon Elastic Compute Cloud

User Guide for Linux Instances

Regions and Availability Zones

Amazon EC2 is hosted in multiple locations world-wide. These locations are composed of regions and

Availability Zones. Each region is a separate geographic area. Each region has multiple, isolated locations

known as Availability Zones. Amazon EC2 provides you the ability to place resources, such as instances,

and data in multiple locations. Resources aren't replicated across regions unless you do so specifically.

Amazon operates state-of-the-art, highly-available data centers. Although rare, failures can occur that affect

the availability of instances that are in the same location. If you host all your instances in a single location

that is affected by such a failure, none of your instances would be available.

Contents

• Region and Availability Zone Concepts (p. 8)

• Available Regions (p. 9)

• Regions and Endpoints (p. 10)

• Describing Your Regions and Availability Zones (p. 10)

• Specifying the Region for a Resource (p. 12)

• Launching Instances in an Availability Zone (p. 13)

• Migrating an Instance to Another Availability Zone (p. 13)

Region and Availability Zone Concepts

Each region is completely independent. Each Availability Zone is isolated, but the Availability Zones in a

region are connected through low-latency links. The following diagram illustrates the relationship between

regions and Availability Zones.

Amazon EC2 resources are either global, tied to a region, or tied to an Availability Zone. For more

information, see Resource Locations (p. 726).

Regions

Each Amazon EC2 region is designed to be completely isolated from the other Amazon EC2 regions. This

achieves the greatest possible fault tolerance and stability.

When you view your resources, you'll only see the resources tied to the region you've specified. This

is because regions are isolated from each other, and we don't replicate resources across regions

automatically.

When you launch an instance, you must select an AMI that's in the same region. If the AMI is in

another region, you can copy the AMI to the region you're using. For more information, see Copying an

AMI (p. 135).

Amazon Elastic Compute Cloud

User Guide for Linux Instances

Available Regions

All communication between regions is across the public Internet. Therefore, you should use the appropriate

encryption methods to protect your data. Note that there is a charge for data transfer between regions. For

more information, see Amazon EC2 Pricing - Data Transfer.

Availability Zones

When you launch an instance, you can select an Availability Zone or let us choose one for you. If you

distribute your instances across multiple Availability Zones and one instance fails, you can design your

application so that an instance in another Availability Zone can handle requests.

You can also use Elastic IP addresses to mask the failure of an instance in one Availability Zone by rapidly

remapping the address to an instance in another Availability Zone. For more information, see Elastic IP

Addresses (p. 545).

An Availability Zone is represented by a region code followed by a letter identifier; for example, us-east-1a.

To ensure that resources are distributed across the Availability Zones for a region, we independently map

Availability Zones to identifiers for each account. For example, your Availability Zone us-east-1a might not

be the same location as us-east-1a for another account. There's no way for you to coordinate Availability

Zones between accounts.

As Availability Zones grow over time, our ability to expand them can become constrained. If this happens,

we might restrict you from launching an instance in a constrained Availability Zone unless you already have

an instance in that Availability Zone. Eventually, we might also remove the constrained Availability Zone

from the list of Availability Zones for new customers. Therefore, your account might have a different number

of available Availability Zones in a region than another account.

You can list the Availability Zones that are available to your account. For more information, see Describing

Your Regions and Availability Zones (p. 10).

Available Regions

Your account determines the regions that are available to you. For example:

• An AWS account provides multiple regions so that you can launch Amazon EC2 instances in locations

that meet your requirements. For example, you might want to launch instances in Europe to be closer to

your European customers or to meet legal requirements.

• An AWS GovCloud (US) account provides access to the AWS GovCloud (US) region only. For more

information, see AWS GovCloud (US) Region.

• An Amazon AWS (China) account provides access to the China (Beijing) region only.

The following table lists the regions provided by an AWS account. You can't describe or access additional

regions from an AWS account, such as AWS GovCloud (US) or China (Beijing).

Code Name

us-east-1 US East (N. Virginia)

us-east-2 US East (Ohio)

us-west-1 US West (N. California)

us-west-2 US West (Oregon)

ca-central-1 Canada (Central)

eu-west-1 EU (Ireland)

剩余816页未读，继续阅读

胡译胡说

粉丝: 0
资源: 2

亚马逊Elastic Compute Cloud (EC2) Linux实例用户指南

Amazon Elastic Compute Cloud

ec2-exporter:适用于Amazon Elastic Compute Cloud（EC2）的Prometheus导出器

Amazon EC2 Spot Fleet

application.yml 中 ami-id 是做什么用的

2c 16G 的EC2

Elastic-Cloud

ebs的ECO是什么

EC2 S3生命周期

AWS EC2过滤器

AWS Global Accelerator

亚马逊公司在云计算领域有多项重要里程碑，主要包括哪些？

elasticsearch-cloud-shield

elasticsearch.tar.gz linux安装启动

aws云原生应用程序在线下单,查询状态

前后端分离项目部署EC2

linux安装elasticsearch

aws python

cloud to use to build image

https://www.elastic.co/guide/en/elasticsearch/reference/8.8/important-settings.html#initial_master_nodes

alibaba cloud linux docker

最新资源