AWS ‐ CloudFormation

CloudFormation is an infrastructure code tool to manage aws services, using a text based file one can provision or update the resources. CloudFormation aka Resource Group or Resource Stack, it helps manage resources as single unit.

Using a template code (using json or yaml) to define the resource stack (vm, db, alb, buckets, iam policy etc) and this code can be reused. This template can be stored locally or s3 bucket. We dont need to create a template for each resource, instead, create a template for multiple resources (Stack, ex: LAMP).

Template Code Supports Parameters, Mappings, Conditions

CloudFormation Stack - to manage resources as a single unit, it can have Nested Stacks, Windows Stacks, StackSets

CloudFormation ChangeSets - Summary of potential changes to review before implementation.

Cloud Service Models

Its network based IT Service, comes with proper authentication and security services.

SLA - Contract between consumer and service provider to keep up the uptime guarantees and define the consequences of the downtime.

5 Cloud Characteristics

On-demand self-service.
Broad network access.
Resource pooling.
Rapid elasticity.
Measured Service.

XaaS - Anything as a Service

Any network accessed service

IaaS

Moving Data Centers to cloud

VMs
CSP responsible for the hardware
Customer responsible for the software

PaaS

Moving Platforms to cloud

Web apps, CDN, IDEs, databases, Software development platforms

SaaS

Moving Software to cloud

User productivity apps - Office365, SalesForce etc
Accessible from thin clients

FaaS - Function as a Service

Typically used for microservice, pay-per-use apps and functions

SECaaS - Security as a service

Network access security a services, Cloud based DDoS mitigation, Cloud based firewall

IaaC - Infrastructure as a code

Allow IT infra much more manageable using code/configuration files using tools CloudFormation Complete automation for all the infrastructure resources. It supports version control and deployment control using CI/CD.

Using CloudFormation Templates, we can do below activities

Manage
Monitor
Provision

Advantages

It helps achieve Efficiency and Speed using the automated scripts with consistency for all env (dev, test, stage)

Risks

Find out more

IaaC Automation

With the automation, engineer does not have to do any activity manually, everything would be automated using script and executed.

Resource Provisioning (allocating new resources spun up) by script
Instance Configuration (creating instances on the allocated resources, installing a software) by using script
Workload configuration and deployment (Establishing service connections ex: web app to db, web app to cache etc), monitoring and management

AWS ‐ CloudFormation

Cloud Service Models

5 Cloud Characteristics

XaaS - Anything as a Service

IaaS

PaaS

SaaS

FaaS - Function as a Service

SECaaS - Security as a service

IaaC - Infrastructure as a code

Advantages

Risks

IaaC Automation

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!