Amazon FSx for Lustre

Amazon FSx also integrates with Amazon S3, making it easy for you to process cloud data sets with the Lustre high-performance file system. When linked to an S3 bucket, an FSx for Lustre file system transparently presents S3 objects as files and allows you to write changed data back to S3.

• FAQ

EFS

• Allows concurrent connections from multiple EC2 instances
• Amazon EFS provides the scale and performance required for big data applications that require high throughput to compute nodes coupled with read-after-write consistency and low-latency file operations.

Performance Mode

• Max I/O Use the Max I/O performance mode if you have a very high requirement of file system operations per second.
• General Purpose General Purpose performance mode has the lower latency of the two performance modes and is suitable if your workload is sensitive to latency. Max I/O performance mode offers a higher number of file system operations per second but has a slightly higher latency per each file system operation.

Aurora

You can invoke a Lambda function from an Amazon Aurora MySQL DB cluster. This approach can be useful when you want to integrate your database running on Aurora MySQL with other AWS services. For example, you might want to send a notification using Amazon Simple Notification Service (Amazon SNS) whenever a row is inserted into a specific table in your database.

To invoke a Lambda, the Aurora DB cluster must:

• Create an IAM role, and attach the IAM polcy for providing permissions that allow Aurora DB cluster to invoke Lambda functions.
• Configure your Aurora MySQL DB cluster to allow outbound connections to Lambda.

Elatic Beanstalk

• Deploying Elastic Beanstalk applications from Docker containers

CloudTrail

By default, CloudTrail event log files are encrypted using Amazon S3 server-side encryption (SSE). You can also choose to encrypt your log files with an AWS Key Management Service (AWS KMS) key.

For global services such as AWS Identity and Access Management (IAM), AWS STS, and Amazon CloudFront, events are delivered to any trail that includes global services.

To avoid receiving duplicate global service events,

• If you have multiple single region trails, consider configuring your trails so that global service events are delivered in only one of the trails.

Data Event

You can currently log data events on different resource types such as Amazon S3 object-level API activity (e.g. GetObject, DeleteObject, and PutObject API operations), AWS Lambda function execution activity (the Invoke API), DynamoDB Item actions, and many more.

Read More:

• Data Protection in AWS CloudTrail
• Avoid duplicate global service events

AWS Trusted Advisor

• S3 Versioning

• Redshift Clusters

• Exposed Access Keys

• Reserved EC2 Instance

• Service Limit

• https://aws.amazon.com/about-aws/whats-new/2016/03/aws-trusted-advisor-adds-checks-for-amazon-s3-amazon-redshift-reserved-instances-security-and-service-limits/

Cost

The main distinction between RIs and Savings Plans is the former commits to number of instances used (RIs), while the latter commits to a minimum dollar per hour spend (Savings Plans).

Reserved Instance

• Standard Reserved Instance, enables modify AZ, scope, networking type and instance size.
• Convertable Reserved Instance, enables modify instance family, operating system and tenancy.

You can also go to the AWS Reserved Instance Marketplace and sell the Reserved instances.

Scheduled Reserved Instance

Spot Instance

Spot Instance runs whenever capacity is available and the maximum price per hour for your request exceeds the Spot price. Spot Instances are a cost-effective choice if you can be flexible about when your applications run and if your applications can be interrupted

Saving Plan

• Compute Saving Plans, reduce costs of EC2 Instance usage by up to 66%, regardless of instance family,region, size, AZ, OS or tenancy, EC2 Intance usage even includes ECS and Lambda.
• EC2 Instance Saving Plans, reduce costs of EC2 Instance usage by up to 72%, regardless of instance size, AZ, OS or tenancy

Read more

• Saving Plans FAQ
• AWS Savings Plans: What They Are And Why You Should Care
• https://aws.amazon.com/blogs/aws/new-savings-plans-for-aws-compute-services/
• Using Sport instances

SNS

Designing durable serverless apps with DLQs for Amazon SNS, Amazon SQS, AWS Lambda

Cloud Watch

• EC2
  • CPUUtilization, DisReadOps, DiskWriteOps, NetworkIn/Out
  • Detailed monitoring is 1 minutes, Basic monitoring is 5 minute peroids.
• RDS
  • CPUUtilization, FreeableMemory, Database connections, Read/WriteLatency
• Enhanced RDS
  • RDS processes, RDS child processes, OS processes
• ECS
  • CPUUtiliation/Reservation, MemoryUtilization/Reservation
• Cloud Agent
  • can be intalled on both Linux and Windows instances

Kineise

Kineise Data Stream

AWS Application Auto Scaling

Kineise Firehose

Destinations:

• S3,
• Redshift
• Amazon Elastic Search
• Http endpoint owned by you
• Thirdparty providers, including Datadog,New Relic and Splunk

AWS Backup

Others

• Cloud Search
• AWS Step Functions
  • serverless orchestration for modern applications.
• ACM and IAM certificate store
  • import third-party certificat
• Direct Connect
• AWS Batch
• AWS KMS
• Disaster Recovery
• CloudFormation
  • CreationPolicy and cfn-signal for associate resources.
  • updatePolicy is primarily used for updating resources and for stack update rollback operations.
• AWS CloudHSM
• Amazon Polly
• Amazon EMR