AWS
Services and definition
Compute
EC2: EC2 is an AWS service which provides on-demand resizable compute capacity where we choose OS, Storage, networking and scale up or don whenever we want without buying physical hardware.
Lambda: Lambda is AWS’s serverless compute service that runs code in response to events without provisioning servers.
ECS: ECS is AWS’s managed container orchestration service for running Docker containers at scale.
EKS: EKS is AWS’s managed Kubernetes service for deploying, scaling, and managing containerized applications.
Storage
S3: S3 is AWS’s highly scalable object storage service for storing and retrieving any amount of data.
EBS: EBS is AWS’s block-level storage service for EC2 instances that provides persistent and high-performance storage.
EFS: EFS is AWS’s fully managed file storage service that can be shared across multiple EC2 instances.
Glacier: Glacier is AWS’s low-cost archival storage service for long-term data retention and backup.
Networking
VPC: A VPC is basically a private, isolated network inside the cloud where we have full control over networking-like designing your own data center but with the scalability of the cloud. we define IP ranges, subnets, routing, and connectivity — so our resources (like EC2s, databases, or containers) can communicate securely within that controlled environment. It’s the foundation for building secure and structured cloud architectures.
VPC Peering: VPC Peering is a private connection between two VPCs enabling internal traffic without using the public internet.
Internet Gateway: Internet Gateway allows communication between resources in a VPC and the internet.
NAT Gateway: NAT Gateway enables private instances in a VPC to access the internet securely.
Route Tables & Subnets: Route Tables and Subnets define network segmentation and traffic routing within a VPC.
Security Groups / NACLs: Security Groups and NACLs are virtual firewalls controlling inbound and outbound traffic to resources.
Database
RDS: RDS is AWS’s managed relational database service that automates patching, backups, and scaling.
DynamoDB: DynamoDB is AWS’s managed NoSQL database service designed for low-latency, high-throughput workloads.
Aurora: Aurora is a high-performance managed relational database compatible with MySQL and PostgreSQL.
DNS
Route53: Route53 is AWS’s highly available and scalable managed DNS service for routing traffic to applications.
Monitoring & Logging
CloudWatch: CloudWatch is AWS’s monitoring service for collecting metrics, logs, and triggering alarms.
CloudTrail: CloudTrail is AWS’s service for logging and tracking all API activity and account changes.
Prometheus: Prometheus is an open-source system for monitoring metrics and alerting.
Grafana: Grafana is an open-source visualization and dashboard tool for monitoring data.
Loki: Loki is a log aggregation system designed for efficiently collecting logs from cloud-native applications.
CI/CD & DevOps
CodePipeline: CodePipeline is AWS’s CI/CD service to automate build, test, and deployment workflows.
CodeBuild: CodeBuild is AWS’s fully managed service for compiling source code and running tests.
CodeDeploy: CodeDeploy automates deployment of applications to EC2, Lambda, or on-prem servers.
Terraform / CloudFormation: Terraform and CloudFormation are infrastructure-as-code tools for provisioning and managing cloud resources.
Helm Charts: Helm Charts is a Kubernetes package manager for deploying applications using reusable manifests.
Security & Identity
IAM: IAM is AWS’s service for managing users, roles, and permissions securely.
Secrets Manager / Parameter Store: These services securely store and manage sensitive information like passwords and API keys.
WAF: WAF is AWS’s Web Application Firewall for protecting web applications from common attacks.
Other Key Services
Auto Scaling Groups: AWS managed service that automatically adjust number of EC2 based on demand and Scaling policy to maintain availability.
KMS: KMS is AWS’3s managed service for creating and controlling encryption keys.
CloudFront: CloudFront is AWS’s global content delivery network for fast and secure distribution of content.
Elastic Load Balancer (ALB/NLB): ELB service automatically distributes incoming traffic across multiple targets to ensure high availability.
If you want, I can now make a super condensed, 60-second “ready-to-speak” version where each definition is short, core-focused, and easy to memorize — perfect for interviews.
Do you want me to do that?
✅ Problem Statement: Why Do We Need AWS?
Traditional on-premise infrastructure requires:
Heavy upfront investment in hardware
Long provisioning times for servers and storage
Manual maintenance and scaling efforts
As applications scale, companies face:
Difficulty handling traffic spikes
Downtime risks due to hardware failure
Complex disaster recovery planning
Limited global reach for users in different regions
Managing physical infrastructure distracts from core product development and innovation.
🛠️ Solution: What AWS Offers
AWS is a cloud computing platform that offers on-demand infrastructure and services via a pay-as-you-go model.
Key benefits:
Elastic scalability: Automatically scale compute and storage based on usage.
High availability: Global data centers with failover support and redundancy.
Fast provisioning: Launch virtual servers (EC2), databases (RDS), and storage (S3) in minutes.
Managed services: Offload operations like patching, backups, monitoring, and security.
Cost efficiency: Only pay for what you use — no upfront infrastructure cost.
Security and compliance: Built-in tools like IAM, VPC, encryption, and certifications for data protection.
Enables teams to focus on building and deploying applications instead of managing physical infrastructure.
AWS is a platform that provides on-demand resources for hosting web services, storage, networking, databases and other resources over the internet with a pay-as-you-go pricing
Elastic lock store is a persistent volume in aws that we can attach to virtual machine and it can persist even if we delete server
VPC is a network that is logically isolated from other network in the cloud
it allow us to have our own IP adress ranges, subnets, internet, nat gateway and sg
Nat gateway enables instance in private subnets to connect tto the internet
multi-az - running replica of instance in multiple availability zone
region > availabilty zones > data centre
SG act as firewallthat controls inbount and outbount traffic
control access at instance level
dg -can add rules for allow only
NACL
nacl control access at subnet level
can allow denied rule
ELB - automatically distributes incoming web traffic accross multiple targtes (ec2, container, ip)
subnets: large section of ip adress divided in chunks (range of ip adress) called subnets
Last updated