How AWS data and security services are used to help an EC2 compute instance deliver its network-facing
application:
1 VPCs encompass all the AWS resources in an application deployment.
2 There are two kinds of subnets: private and public. They can be located in separate availability
zones and are used to manage and, where needed, isolate resources.
3 Security groups’ rules control the movement of data between resources.
4 The EC2 Amazon Machine Image (AMI) acts as a template for replicating precise operating sys-
tem environments.
5 The Simple Storage Service (S3) bucket can store and deliver data for both backup and delivery
to users.
6 Elastic Block Store (EBS) volumes act as data volumes (like hard drives) for an instance.
7 The auto scaler permits automatic provisioning of greater (or fewer) instances to meet changing
demands on an application.
8 The load balancer routes traffic among multiple servers to ensure the smoothest and most effi-
cient user experience.
EBS
volume
Load
balancer
Internet
EC2 AMI
S3 bucket
RDS-managed
database instance 1
Private subnet 1
Security
group
Security
group
RDS-managed
database instance 2
Public subnet 1
VPC (Virtual Private Cloud)
Public subnet 2
EBS
volume
Auto scaler
EC2
instance
Private subnet 2
EC2
instance
VPC encompasses
all AWS resources.
Private and public
zones manage and
isolate resources.
S3 bucket
stores and
delivers data.
EBS volumes
act as data
volumes.
Auto scaler
provisions more
or fewer instances
as necessary.
Load balancer
routes traffic
among multiple
servers.
Security groups
control data flow.
EC2 AMI replicates
OS environments.
评论0