[SAA] 5 EC2 기초

채린·2023년 11월 25일
0

Amazon EC2

EC2 = Elastic Compute Cloud = Infrastructure as a Service (IaaS)

구성:

Renting virtual machines (EC2)- ec2인스턴스

Storing data on virtual drives (EBS)

Distributing load across machines (ELB)

Scaling the services using an auto-scaling group (ASG)

EC2 sizing & configuration options

Operating System (OS): Linux / Windows / Mac OS

compute power & cores (CPU)

random-access memory (RAM)

storage space:

Network-attached (EBS & EFS)
hardware (EC2 Instance Store)

Network card: speed of the card, Public IP address

Firewall rules: security group

Bootstrap script (configure at first launch): EC2 User Data


EC2 User Data

EC2 User data script: EC2 사용자 데이터 스크립트를 사용해 인스턴스 부트 스트래핑 가능

bootstrapping: 머신이 작동될때 명령을 시작하는 것

처음 시작할때만 스크립트 실행

부팅 작업 자동화:

업데이트 설치
sw 설치
인터넷에서 common files 다운 ..

사용자 데이터 스크립트에 작업 추가할수록 부팅 시 인스턴스가 할일이 늘어남

EC2 InstanceTypes

명명규칙m: instance class
5: generation (AWS improves them over time)
2xlarge: size within the instance class

General Purpose

Balance between: Compute / Memory / Networking
(t로 시작)

Compute Optimized

high performance 필요로 하는 compute-intensive tasks

    Batch processing workloads
   Media transcoding
   High performance web servers
   High performance computing (HPC)
   Scientific modeling & machine learning
   Dedicated gaming servers

    (c로 시작)

Memory Optimized

Fast performance for workloads that process large data sets in memory

(메모리에서 빠른 성능)

    High performance, relational/non-relational databases
   Distributed web scale cache stores
   In-memory databases optimized for BI (business intelligence)
   Applications performing real-time processing of big unstructured data

    R로 시작

Storage Optimized

high, sequential read and write access to large data sets on local storage필요한 storage-intensive tasks

    High frequency online transaction processing (OLTP) systems
   Relational & NoSQL databases
   Cache for in-memory databases (for example, Redis)
   Data warehousing applications
   Distributed file systems (분산파일 시스템)

Security Groups

control how traffic is allowed into or out of our EC2 Instances

only contain rules

reference by IP / by security group
They regulate:
• Access to Ports
• Authorised IP ranges – IPv4 and IPv6
• Control of inbound network (from other to the instance)
• Control of outbound network (from the instance to other)

인바운드는 허용하는 ip를 작성, 아웃바운드는 default로 모두 허용

0개의 댓글