Cloud Deployment Environment . Dec.-21, Marks 13 42. Amazon AWS i Microsoft Azure 44 Cloud Software Environments : Eucalyptus MpmapenstackK vette en Dec.-21, -- cs ++ Marks 13 Two Marks Questions with Answers: Fs your own web applications and have y . gine is a ies developers to build their web application, aes ec that power Google applications. 5 | oe is software which can run on cnr Y een ae C 7 © An app is 4 piece oe device. Google refers to their online services as Apps, They any other electronic . also sell a specific suite of services known as Google Apps. ; . Seer Trazlitods In Aloud comps | * Services provided by App engine includes : ss a) Platform as a Service (PaaS) to build and deploy scalable applications, b) Hosting facility in fully-managed data centers. ©) A fully-managed, flexible environment platform for managing application Server and infrastructure. 4) Support in the form of popular development languages and developer tools, Major feature of Google App Engine : aE and load balancing. 2. Authentication Using Google Accounts APL 3. Provides dynamic webservices based on solRGH Webb 4 services ang 5. Support persistent storage, with query access sorting and transaction management features, * Google App engine offers users the ability to build and host web applications on Google's infrastructure, Google app engine Datastore | Caching [astreiaton Mail eo {abie/ M | ak lemeach preduce ache = apps Gmail Fig. 4. — TECHNICAL PUBLICA TIONS® . an Up-thrust for knowledge aa...can send email by providing high retrieval g users the benef i me application at the same ea ‘ime “hen Multiple users access application. With the use of this en ae to manipulate images of ges in JPEG and PNG formats, size, crop, rotate and flip the PaaS space Google is a key jad run applications on Google's player. eo Engine is a platform to create, store Servers using development languages as java and x App Engine Seer tools for managing the data store, monitoring the site and its ecurce consumption and debugging and logging. A user can ervelthe app from his own domain name using Google Apps, + Key features of GAE programming mode using java and python. + The Google App engine Software Development Kit (SDK) provides Java and python programming languages. + The languages have their own web server application that contains all Google App Engine services on a local computer. The web server also simulates a secure sandbox environment. + The Google App engine SDK has APIs and libraries including the tools to upload applications. The architecture defines the structure of applications that run on the Google App engine. 1, Python : * The Google App engine allows implementation of applications using python programming language and running them on its interpreter. * The Google App engine provides rich APIs and tools for designing web applications, data modeling, managing, accessing apps data, support for mature libraries and frameworks like Django. * The main characteristics of Google App engine are its DataStore, configuration file ’pp-yaml and how it serves an application. Blava : * The Google App engine provides tools and APIs required for the development of Web applications that run on the Google App engine Java run time TECHNICAL PUBLICATIONS® - an up-thrust for knowledge* The application interacts with the EGA t os Hees Servlets ES technologies like Java Server Pages (JSPs) 1 Ped using y * The GAE environment uses Java SE Runtime JRE platform 6 ang Un the applications can access using APIs. ; \ Java SDK has implementations for Java Data Objects JDO) and jay, ra OPA) interface. : * To exchange email messages with Google App engine, it provides the Geog Engine mail service through the Java Mail API. ra a F * Sy like JavaScript, Ruby or Scalar is als ir t Gant, Aes Sees zi JVM compatible compilers and interpret * When Google App engine gets a web request that corresponds to 4. 4 mentioned in the applications deployment descriptor it invokes a ee corresponding to the request and uses Java Servlets API to provide Tequesteg a and accepts response data ty * Google App engine makes it easy to build an applications that runs relia, d under heavy load and with large amounts of data 9 ery * App engine includes the below features : a) Dynamic web serving, with full support for common web technologies b) Persistent storage with queries, sorting and transactions ©) Automatic scaling and load balancing. 4) APIs for authenticating users and sending email using Google accounts ) Scheduled tasks for triggering events at specified times and regular interval oe ar) 1. Write detailed steps to set the google app engine environment fo any program of ‘your choice. easy | 4.2 | Amazon AWS pr s * Amazon first debuted its Amazon Web Services in 2006 as a way to enable the u of online services by client-side applications or other web sites via HTTP, RES SOAP protocols. TECHNICAL PUBL Ications®ine AWS Marketplace is an online store fo nd compare and begin using AWS software and techni] services, * Amazon Web Services customers to yn Web Services is a secure clo) ud i A AMEN database storage, content oee ewe Platform, offering. compute Fasinesses scale and grow. very and other functionality to help jp 2017, AWS comprised more than 90 services * computing, storage, networking, database, deployment, management, mobile, Things: « Today, : of businesses in 190 countries around the world. In 2016 AWS Partnered with Digital Currency Group to create a laboratory environment allowing companies to experiment with block chain technologies. + In January 2018, Amazon launched an autoscaling service on AWS. spanning a wide range including analytics, application services, developer tools and tools for the Internet of what is Amazon Web Services ? + Amazon Web Services (AWS) is a collection of remote computing services (web services) that together make up a cloud computing platform, offered over the Internet by [Link]. « The AWS Cloud infrastructure is jones (AZs). A Region is a physical location in the world where we have multiple AZs. AZs consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities. These AZs offer you the ability to operate production applications and databases that are more highly available, fault tolerant, and scalable than would be possible from a single data center. The AWS cloud operates 42 AZs within 16 geographic regions around the world, with five more availability zones and two more regions coming online in 2017 Each availability zone is designed as an independent failure zone. This means that availability zones are physically separated within a typical metropolitan region and are located in lower risk flood plains —————— hrust for kno TECHNICAL PUBLICATIONS™ - an up-thrust for knowledgei ion will -* Your request which includes all information Testful service. information + API Gateway will transfer the collected user info ‘Seana function, : , - i] and forward it to ‘he Brainy * AWS Lambda function will generate an ema mail server using Amazon SES. — © Components of Amazon Web Service architecture are Amazon API Gateway, ay. Lambda, Amazon Simple Email Service. , business logic and functionality, Gateway will provide a restful API endpoint for our AWS Lambda function, and helps developers to. manag spectator, create and provide security to the API's. Contact US form "°04 Srd party mail Business 3 server Fig. 4.2.1 AWS events such as object , Dynamo DB or in-app activity. The Lambda function will get all the information from a user through APL Gateway. * Amazon Simple email service helps us to send e-mail with minimal setup ald maximum deliverability. It is integrated with AWS management console s? you can monitor your sending activity. Amazon Simple Email Service helps monitoring insecurity, , TECHNICAL PUBLICATIONS® . an up-thrust for knowledae° mits : Organizati Pee ey wil heed nZAtions launch different projects and the guess what «Pres seed aed aii le : AWS provides securi ; sy the priva as it is stored in AWS data centers, irity and also helps to protect the privacy pisadvantages 2 1, Limitations of Amazon EC2 : AWS sets default limits on resources which vary from region to region. These resources consist of images, volumes and snapshots. oe ll charges you for immediate support. pal Compute Service « Compute services contains the fundamental element of cloud computing systems. Example of compute service is Amazon EC2. « Amazon Elastic Compute Cloud (Amazon EC2) is a web service that provides resizable compute capacity in the cloud. It is designed to make web-scale computing easier for developers and system administrators. + Amazon EC2 reduces the time required to obtain and boot new server instances (called Amazon EC2 instances) to minutes, allowing user to quickly scale capacity, both up and down, as your computing requirements change. EC2 allows creating Virtual Machines (VM) on-demand. Pre-configured template Creating and sharing your own AMI is also possible via the AWS Marketplace. Amazon Machine Image Amazon Machine Image (AMI) is a template for software configuration (Operating System, Application Server and Applications) Machine imaging is a process that is used to provide system. portability and provision and deploy systems in the cloud through capturing the state of systems using a system image. TECHNICAL PUBLICATIONS® - an up-thrust for knowledaee entire computer system ing 5 m called system imaging Prog con makes @ usi Pay A system image MKS Cade by (anaee c é Single fie, The meee # Ag aystem ITT ate, permission 0 launch, vg me and can be vs is a lication server «An AM! typi the instances (AT 4PP an Og 3c reat Ww 1, Template : For # this AMI to launch instance, - and applications) Pepeeeuntrcan Oe F pee tenner the volumes t0 attach 10 the ing rs Permissi am : ; k device mapping * ‘That specific i eae .d to launch a . fe a. te meme es \s, an “plana s ms, mn « AMIs provide a isa eae the operating Syste! ervey re instance. This will typically and applications. issions that restrict the ability ,, yunch perm 0 @ It also includes in the as ued AWS accounts. salty a block devig cl espromy that once it is launched, . ae Peeters (ie clurien tojetiacn fo the mstance mapping specifies the volumes ery -—Launch—= * Once an AMI has been Lt instance . created and registered, it can be used to launch new | instances. An AMI can be Template for the Le copy copied to different regions, footyoume & and it can also be Fig. 4.2.2 AMI lifecycle deregistered. Fig. 42.2 shows an AMI lifecycle © Once an AMI is created, it is stored in an S3 bucket and the user can de whether to make it available to other users or keep it for personal use * Instance is AMI running on virtual servers in the cloud. Each instance type offers different compute and memory facilities. Create an Amazon Machine Image containing your applications, libraries, data and associated configuration settines Or use pre-configured, templated images to get up and running immediately * Auto scaling allows automatically scale of apacit durin " acity up seamlessly during demand spikes to maintain performance and aa minimize costs. “ : demand . aa load balancing automatically distribu multiple Ama E ei ; no oe ama EC2 instances. {t a applications by launcl ¥ lure: reall PP Y launching application ir : : ate availability zones.ing. on For the root volume for the instances (An application server, an Og, and applications) 2. Permissions to launch : Which account can use this AMI to launch instances, 3. Block device mapping : That specifies the volumes to attach to the instance during its launch time. AMIs provide a template for the root volume required to launch a particular instance. This will typically include the operating systems, an application server and applications. It also includes in the AMI are launch permissions that restrict the ability to launch instances from that AMI to defined AWS accounts. Finally, a block device mapping specifies the volumes to attach to the instance once it is launched. Once an AMI has been "ergbcn = created and registered, it can i be used to launch new Create—' nec instances. An AMI can be Template for the amit Loopy ole copied to different regions, root volume PY ee i AML #2 and i it cary also be Denegeten deregistered. Fig. 4.2.2 shows eee NARS an AMI lifecycle. Once an AMI is created, it is stored in an S3 bucket and the user can decide whether to make it available to other users or keep it for personal use. Instance is AMI running on virtual servers in the cloud. Each instance type offers different compute and memory facilities. Create an Amazon Machine Image containing your applications, libraries, data and associated configuration settings. Or use pre-configured, templated images to get up and running immediately. Auto scaling allows automatically scale of the capacity up seamlessly during demand spikes to maintain performance and scales down during demand lulls to minimize costs. Elastic load balancing automatically distributes incoming application traffic across multiple Amazon EC2 instances. It provides tools to build failure resilient applications by launching application instances in separate availability zones. TECHNICAL PUBLICATIONS® - an up-thrust for knowledgeCloud Deployment Environment real y only for resources actually consume, instance-hours. VM_ Import/Export enables user to easily import virtual machine images from existing environment tO amazon EC2 instances and export them back poto is @ Python package that web Services. at any time. Provides programmatic connectivity to Amazon er Ee a wale ceed andl compressed for security purpose and stored in amazon $3 (Simple Storage System) buckets as a set of 10 MB chunks. + Machine imaging is mostly run on virtualization platform due to this it is also called a8 virtual appliances and running virtual machines are called instances. + The AMI file system is not a standard bit-for-bit image of a system that is common to many disk imaging programs. AMI omits the kernel image and stores a pointer to a particular kernel that is part of the AWS kernel library. + Among the choices are Red Hat Linux, Ubuntu, Microsoft Windows, Solaris and others. Files in AMI are compressed and encrypted and an XML file is written that describes the AMI archive. + Machine images are sometimes referred to as "virtual appliances", systems that are meant to run on virtualization platforms. [FED Ec2 Instances + Amazon Elastic Compute Cloud (Amazon EC2) instances represent machines. EC2 instances rual e (AMI. An AWS template that describes and defines the OS and operating environment for one or more EC2 instances of one or more EC2 instance types. Each instance type delivers a mix of CPU, memory, storage and networking capacity, across one or more size options and should be carefully matched to your workload's unique demands. * EC2 functions 1, Load variety of operating system, 2. Install custom applications 3. Manage network access permission. 4. Run image using as many/few systems as customer desire. * Currently available configurations for EC2 instances are as follows 1, Standard instances : Among the most popular and widely used EC2 instance types. Standard instances have memory to CPU ratios suitable for ——— most TECHNICAL PUBLICATIONS® - an up-thrust for knowledae _Peietard tee + rpc 2 odie 5 1 EC2 high memory instances offer 6, 9, 12, 18, ang y in an instance. These instances are purpose-built to run larg, r y databases. _ 4. High-CPU instances : This types of instances are used in compute-intensive applications. 5. Cluster compute instances : Cluster compute instances provide high-performance network interconnect along with a high-performance CPU. 6. Cluster GPU instances : This class provides instances featuring graphic Processing units (GPUs) and high compute power, large memory and extremely high I/O and network performance. EC2 instances can be run either by using the command-line tools provided by Amazon, which connects the Amazon Web Service that provides remote access to the EC2 infrastructure. * EC2 advantages : 1. Amazon EC2 enables you to increase or decrease capacity within minutes. - 2. User have complete control of your Amazon EC2 instances. 3. Support flexible cloud hosting services. 4. Secure : Amazon EC2 works in conjunction with Amazon VPC to provide security and robust networking functionality. 5. . Reliable : Amazon EC2 offers a highly reliable environment where replacement instances can be rapidly and predictably commissioned. Configuring Amazon EC2 Linux instances * Let's get started with Amazon Elastic Compute Cloud (Amazon EC2) by launching, connecting to and using a Linux instance. An instance is a virtual server in the AWS cloud. With Amazon EC2, you can setup and configure the operating system and applications that run on your instance. * When you sign up for AWS, you can get started with Amazon EC2 using the AWS Free Tier. + The instance is an Amazon EBS-backed instance (meaning that the root volume is an EBS volume). You can either specify the availability zone in which your instance runs or let Amazon EC2 select an availability zone for you. When you launch your instance, you secure it by specifying a key pair and security group: TECHNICAL PUBLICATIONS® - an up-thrust for knowledgeyou connect to your instance, iahat you specified when launchip sot Peeey the private key of the key - ching your instance. Step 8 Ste D7 Step 6 Step 5 Cleanup Connect to Ceunch Gri! Leta areata instance instance security group Fig. 42.3 Stops to signup for E62 4; SignUp for AWS ¢ When you signup for Amazon Web Services (AWS), your AWS account is Butomatically i , including Amazon EC2. You are charged 2. + With ferent E you pay only for what you use If you are a Rew AWS: sep 2: Create an IAM user « Services in AWS, such as Amazon EC2, require that You provide credentials when youlaccess them, so that the service can determine whether you have permission to access its resources. The console requires yout password. * You can create access keys for your AWS account to access the command line interface or API. However, we don't recommend that you access AWS using the credentials for your AWS account; we recommend that you use AWS Identity and ‘Access Management (IAM) instead. * Create an IAM user and then add the user to an IAM group with adminis ative permissions or grant this user administrative permissions. You can then access AWS using a special URL and the credentials for the IAM user. If you signed u for AWS but have not created an IAM user for yourself, you can create one u the IAM console. Step 3: Create a key pair + AWS uses public-key “Gryptography to séctire the Togin’ information for you instance. A Linux instance has no password; you use a key pair to log in to your instance securely. You specify the name of the key pair when you launch your instance, then provide the private key when you log in using SSH 2 fe TECHNICAL PUBLICATIONS® - an up-thrust for knowledge* If you haven't created a key pair already, you can create one using the EC2 console, Note that if you plan to launch instances in multiple Fegiong need to create a key pair in each region. Step 4 : Create a Virtual Private Cloud (VPC) * Amazon VPC enables Zour i orn 2. a a es require that you laun ne ones a ue ae peor to the next task, sae a security Broup © determine whether you have a default VPC, open the Amazon EC2 Console a look for default VPC under account attributes on the dashboard. Step 5 : Creat *° Security . The newer EC . IF you have a deg a security group 1, You must add rules to a secu, ity Soup that enable you to connect to your instance from your IP address using ggy You can also add rules that allow inbound and outbound UID. and HTTPs Access from anywhere. Note that if you plan to launch instances in multiple reBions, you'll need to create a security group in each region. Step 6: Launch an instance * You can launch a Linux instance using the AWS management console as describes in the following procedure. 1. Open the Amazon EC2 console at [Link] 2. From the console dashboard, choose Launch Instance. 3: The Choose an Amazon Machine Image (AMI) page displays a list of ba configurations, called Amazon Machine Images (AMIs), that serve as template for your instance. Select an HVM version of Amazon Linux 2. Notice that thes AMIs are marked "Free tier eligible,” 4. On the Choose an Instance Type page, you can select the hardwar configuration of your instance. Select the [Link] type, which is selected by default. Notice that this instance type is eligible for the free tier. wo Choose Review and Launch to let the w: izard complete the other configuratiot settings for you 6 On the Review Instance Launch page, the wizard created and selected a secui security group or alternatively you cai created when getting setup using the fol] under security groups, you'll see bs rity group for you. You can use Ht mn select the security group that J lowing steps. a) Choose Edit security groups, @n up-thrust for knowledgeby On the Configure g, security group is sede Group page, ensure that Select an existing c) Select your securi then choose Revi ty group from the list of existing security and lew and Launch, y i naa 7, On the Review Instance Launch page, choose Launch. n prompte, : e Rie Sa male a key pair, select Choose an existing key pair, then select the acknowledpenent crent°d When getting setup. When you are ready, select fi Bement check box and then choose launch instances. ont ti aa TeetatOn Page lets you know that your instance is launching. Choose ‘© close the confirmation page and return to the console. the Insti 10. On the Instances screen, you can view the status of the launch. It takes a short time for an ins! 5 ee ae to launch. When you launch an instance, its initial state is eons sented the instance starts, its state changes to running and it receives a public DNS name. 11. It can take a few minutes for the instance to be ready so that you can connect to it, Check that your instance has passed its status checks; you can view this information in the status checks column. step 7 : Connect to your Instance Several ways to connect to your Linux instance is shown in Table 4.2.1. Your computer OS Topic Linux Connecting to your Linux instance using SSH. ‘Windows Connecting to your Linux instance from Windows using PuTTY. Connecting to your Linux instance from Windows using Windows Subsystem for Linux Other Connecting to your Linux instance using MindTTerm, Table 4.2.1 Ways to connect to Linux instance Step 8 : Cleanup your instance * After you've finished with the instance, you should cleanup by terminating the instance. a Y * If you launched an instance that is not within the AWS free tier, you'll stop incurring charges for that instance as soon as the instance status changes to shutting down or terminated. If you'd like to keep your instance for later, but not incur charges, you can stop the instance now and then start it again later. TECHNICAL PUBLICATIONS® - an up-thrust for knowledgedata storage and inf. Simple Storage Service (S3). mation: interface that you can use to store from anywhere on the web. $3 can storing raw data, such as sensor data, log services. for * Amazon $3 has a simple web services a retrieve any amount of data, at any time, as a raw data store for IoT systems for data, audio and video data. AWS Response Queue tt) os Request Queue Fig. 4.2.4 Amazon $3 working C2 Instances processing server Features : 1. Unlimited storage. - Highly scalable : In terms of storage, request rate and concurrent users. . Reliable : Store redundant data in multiple facilities and on multiple devices. easiest Eexbility tolcontrol who / how / when / where to access the dati aR won } Performance : Choose region to optimize for latency / minimize costs. TECHNICAL PUBLICATIONS® - an up-thrust for knowledgewt back in the queue. aie San ee distributed system containing multiple servers within ations. Amazon doesn't offer you a GUI based tool to oe your data. You can use one of the several tools online or build one through s. Amazon EC2 provides three type of storage option : Amazon EBS, Amazon S3 and Instance Storage. Amazon EBS (Elastic Block Store) provides with persistent, block-level storage. Basically additional hard disk that you can attach to instance. It suitable for apps which require database, filesystem, block level storage. A bucket is a container for objects stored in Amazon $3. Every object is contained in a bucket. For example, if the object named "photos/[Link]" is stored in the rakshita bucket, then itis. addressable using the «= URL http:/ /[Link]/photos/puppy jpg Buckets serve several purposes : They organize the Amazon $3 namespace at the highest level, they identify the account responsible for storage and data transfer charges, they play a role in access control and they serve as the unit of aggregation for usage reporting. Objects are the fundamental entities stored in Amazon $3. Objects consist of object data and metadata. The data portion is opaque to Amazon $3. The metadata is a set of name-value pairs that describe the object. These include some default metadata, such as the date last modified and standard HTTP metadata, such as content-type. You can also specify custom metadata at the time the object is stored. A key is the unique identifier for an object within a bucket, Every object in a bucket has exactly one key. Because the combination of a bucket, key and version ID uniquely identify each object, Amazon $3 can be thought of as a basic data map between "bucket + key + version” and the object itself. Every object in Amazon $3 can be uniquely addressed through the combination of the web service endpoint, bucket name, key and optionally, a version, TECHNICAL PUBLICATIONS® - an up-thrust for knowledge‘ephemeral0 ephemeralt Instance store Host computer Amazon EBS Amazon S3 Fig. 4.2.5 Amazon EBS and S3 Bucket ° Amazon S3 defines a bucket name as a series of one or more labels, separated by periods, that adhere to the following rules : The bucket name can be between 3 and 63 characters long, and can contain only lower-case characters, numbers, periods and dashes Amazon $3 defines a bucket name as a series of one or more labels, separated by periods, that adhere to the following rules : 1. The bucket name can be between 3 and 63 characters long and can contain only lower-case characters, numbers, periods and dashes. 2. Each label in the bucket name must start with a lowercase letter or number. 3. The bucket name cannot contain underscores, end with a dash, have consecutive periods or use dashes adjacent to periods. 4. The bucket name cannot be formatted as an IP address ([Link]). A bucket is owned by the AWS account that created it, By default, you can create up to 100 buckets in each of your AWS accounts. If you need additional buckets, you can increase your bucket limit by submitting a service limit increase The following are the rules for naming $3 buckets in all AWS Regions : 1. Bucket names must be unique across all existing bucket names in Amazon $3. TECHNICAL PUBLICATIONS® - an up-thrust for knowledge~ 6, Bucket names must be a he ia MUBt not contin uppercase characters Bucket names must start with a lowercase | ae 4 letter or number. — ; eries of Cain . OS ‘Ss of one or more labels. Adjacent labels are lod (.). Bucket names can contain letters, pce and hyphens. Each label must start and end with a lowercase letter or 7, Bucket names must not be fi [Link]). formatted as an IP address (for example, 8, When you use Virtual hosted-style buckets with Secure Sockets Layer (SSL), the SSL wildcard certificate only matches buckets that don't contain periods. To work around this, use HTTP or write your own certificate verification logic. We recommend that you do not use periods (".") in bucket names when using virtual hosted-style buckets, oo Amazon Elastic Block Store Amazon Elastic Block Store (Amazon EBS) provides persistent block storage volumes for use with Amazon EC2 instances in the AWS Cloud. Each Amazon EBS volume is automatically replicated within its Availability Zone to protect you from component failure, offering high availability and durability. EBS volumes are highly available and reliable storage volumes that can be attached to any running instance that is in the same Availability Zone. EBS volumes are particularly well-suited for use as the primary storage for file systems, databases, or for any applications that require fine granular updates and access to raw, unformatted, block-level storage. The size of an EBS volume can be configured by the user and can range from 1GB to 1 TB. The network-based EBS storage service is delivered in volumes, which can be attached to an EC2 instance and used just like a disk drive. Because a volume can become unformatted, it must have a file system installed (formatted) on it before it can be used. Amazon EBS is well suited to both database-style applications that rely on random reads and writes, and to throughput-intensive applications that perform long, continuous reads and writes. TECHNICAL PUBLICATIONS® - an up-thrust for knowledge~ F ‘uses AWS Key Management Service (AWS KMS) master creating encrypted volumes and any snapshots created from your EBS can make your applications more reliable, because the storage is separate from any specific instance. A large repository of public data set snapshots can be restored to EBS volumes and seamlessly integrated into AWS cloud-based applications. Performance metrics, such as bandwidth, throughput, latency and average queue length, are available through the AWS Management Console. These metrics, provided by Amazon CloudWatch, allow you to monitor the performance of your volumes to make sure that you are providing enough performance for your applications without paying for resources you don't need. Amazon EBS storage costs depend on how much EBS storage, in terms of gigabyte-per-month, is provisioned in a particular account. While EC2 instances only accrue charges while they're running, the EBS volumes attached to instances continue to retain information and hence accrue charges, even when the instance is stopped. An EBS snapshot is a point-in-time backup of an EBS volume. It is a "copy" of the data on in EBS volume. EBS snapshots are billed at a lower rate than active EBS volumes. If an EBS block has low access volume, the active volume of this EBS block can be deleted after the information stored in EBS is copied to an EBS Snapshot. EBS Snapshots Amazon EBS provides the ability to create snapshots (backups) of any EBS volume and write a copy of the data in the volume to Amazon $3, where it is stored redundantly in multiple Availability Zones. The volume does not need to be attached to a running instance in order to take @ snapshot. As you continue to write data to a volume, you can periodically create a snapshot of the volume to use as a baseline for new volumes. TECHNICAL PUBLICATIONS® - an up-thrust for knowledgestored from encrypted snapshots are automat! | The snapshots can be shared with specific AWS accounts or n en you create snapshots, olume's total size. For a succe. for any additional data beyond Snapshots are incremental ba that have changed after your you incur charges in Amazon $3 based on the ssive snapshot of the volume, you are only charged the volume's original size. ckups, meaning that only the blocks on the volume Most recent snapshot are saved. Amazon ElastiCache « Itis a fully managed caching service, « ElastiCache is Protocol-compliant with Memcached, an open source, high-performance, distributed memory object caching system for speeding up dynamic web applications by alleviating database load. According to the Amazon website, ElastiCache makes it easy to deploy, operate, and scale an in-memory cache in the cloud. The service improves the performance of web applications by enabling information retrieval from a fast, managed, in-memory caching system, instead of relying entirely on slower disk-based databases. ElastiCache is a managed, in-memory data store service. It has two engines AWS Redis and Memcached which is used to power real-time applications. Memcached is a general-purpose distributed memory caching system. It is often used to speed up dynamic database-driven websites by caching data and objects in RAM to reduce the number of times an external data source must be read. Memcached is free and open-source software, licensed under the Revised BSD license. ElastiCache offloads the administrative overhead of running a caching service by : 1. Creating the server pool based on commands issued via the AWS Management Console or API. 2. Managing the pool to ensure caching server availability. TECHNICAL PUBLICATIONS® - an uo-thrust for knowledgepea ear cd 8 } i che runs in the Amazon Vir our cache cluster. : “complete control over network access t y' er eet 2 _® Amazon ElastiCache eer sd infrastTUctue® cai ede ar associat mana} ene Paes iti ane a of overloaded databases, w! ebsite ang sys mitigat application load times. * Node is the smallest building block chunk of secure, network-attached either Memcached or Redis. * Memeached cluster can have up to 20 nodes. Amazon SimpleDB weae.. ‘* SimpleDB provides a simplified data model based on the re ears a a8e date model. SimpleDB provides support for semi poe data, the model for which is based on the concept of domains, items, and attributes. of an ElastiCache enon Misa ce RAM. Each cache node runs Fc : This service works in close conjunction with Amazon Simple Storage Service (Amazon $3) and Amazon Elastic Compute Cloud, collectively providing the ability to store, process and query data sets in the cloud. These services are designed to make web-scale computing easier and more cost-effective for developers. SimpleDB differs from relational databases where user must define a schema for each database table before user can use it and where user must explicitly change that schema before user can store data differently. In SimpleDB, there is no schema requirement. Although user still have to consider the format of data, this approach has the benefit of freeing from the time it takes to manage schema modifications. The lack of schema means that there are no data types; all data values are treated as variable length character data. As a result, there is literally nothing extra to do if user want to add a new field to an existing database. Just add the new field to whichever data items require it. There is no rule that forces every data item to have the same fields. 7 The drawbacks of a schema-less database include the lack of automatic integrity checking in the database and an é mereased burden on the application to handle formatting and type conversions, So! =... ee——s—C—C or CHNICAL PUBLICATIONS® . 4, Up-theust for knowled r knowledaeCloud Deployment Environment ‘amazon CloudFront "amazon aaa is a content delivery web service (CDN). It integrates with Al ea Services to give developers and businesses an easy way to gistribute content to users across the world with low latency, high data transfer js and no minimum usage commitments, , Amazon CloudFront uses RTMP for web content. Content Protocol for video streaming and HTTP or delivery networks are suited for delivery of pulky data, like video streaming, downloading larger files and software and to make website access faster, , Amazon CloudFront is a pay-as. -you-go model that can easily be integrated with all Amazon Web Services. « Amazon CloudFront operates by caching the instance of each object on its different CDN locations, therefore reducing the time it takes to deliver content. « Amazon CloudFront accesses the data from Amazon S3 through supported application programming interfaces and places it in regional data buckets. advantages : 1, No server hardware infrastructure to set up or maintain. 2, No up-front investment in software licenses. 3. No long -term commitment. 4, Global delivery using CloudFront. 5. Pay for what you use. 6. Easy to get started with self service management console. EE] Microsoft Azure * Windows Azure is a cloud computing platform and infrastructure, created by a global network of Microsoft - ne eases lata centers. * Azure queue storage is a service for storing large numbers of messages that can be ame sory rein ih Worvianan onal HTTPS. A single queue message can be up to in size and a queue can contain millions of messages, up to the total capacity limit of a storage account * Azure is a to which a set of additional enterprise services has been layered on top, including, a virtualization service called Azure AppFabric that creates an application hosting environment. AppFabric is a cloud-enabled Version of the NET framework TECHNICAL PUBLICATIONS® - an up-thrust for knowledge aout-of-the-box applications. 4. Develop massively scalable applications with many users. 5. Offer a wide range of services. 5 Azure has three components : ea 1. Compute : Windows Azure provides a hosting environment for managed cog, It provides a computation service through roles. Windows Azure supsoa. three types of roles : @) Web roles used for web application programming and supported by IIs7_ b) Worker roles are also used for background processing of web roles. ¢) Virtual Machine (VM) roles are generally used for migrating Window 2. Storage : Windows Azure provides storage in the cloud. It provides fou different types of storage services : a) Queues for messaging between web roles and worker roles. b) Tables for storing structural data. c) BLOBs (Binary Large Objects) to store text, files or large data. d) Windows Azure Drives (VHD) to mount a page blob. They can easily be downloaded and uploaded via biobs. 3. AppFabric provides infrastructure services for developing) deploying ahd . It provides five services : Service bus, Access, Caching, Integration and Composite. Fig. 4.3.1 shows Windows Azure platform architecture. Microsoft Azure is a cloud computing service created by Microsoft for building testing, deploying and managing applications and services through a glo network of Microsoft-managed data centers i s tt ) platform as a service and infrastructure a service and supports many different programming languages, tools TECHNICAL PUAL ICaTIONs® 7 AM UNsthiiet fae lnnwladne4-23 Cloud Deployment Environment ‘SQL Azure Live let services services Cloud platform services Application development SOK Security services Windows Azure ‘Compute Stor rage Network resources resources resources ‘Management services. Hosting platform Windows Azure platform Fig. 4.3.1 Windows Azure platform architecture Windows Azure provides resources and services for consumers. For example, hardware is abstracted and exposed as compute resources Physical storage 1s abstracted as storage resources and exposed through very well-defined interfaces. A common windows fabric abstracts the hardware and the software and exposes virtual compute and storage resources vn ig automatically managed and monitored for * Each instance of an applicatio availability and scalability. the Fabric is notified and a new instance of the jement in cloud computing, hardware hosting the * If an application goes down, application is created. Because virtualization is a key el Fy assumption must be made on the state of the underlying application: * Advantages of Microsoft Azure 1. Microsoft Azure offers 2 It offers you a strong security profile. 2: Its a costeffecive soliton for an TT budget 4. Azure allows you to use any frameworks language oF 10°) 5, Azure allows pusinesses to build a hybrid infrastre mo se a thrust for knowladae ity. aa TECHNICAL PUBLICATIONS” ~ an up-tcomput r i es ding AWS-compatible private + Eucalyptus is open-source software for bul aan and ‘ Aris ene amTeST aioe te aa Service ih it Eucalyptus has the following key features : a) Support for multiple users with the help of a single cloud. +) Support for linux and windows virtual machines. ¢) Accounting reports. “d) Use of WS-security to ensure secure communication between internal resources and processes. ) The option to configure policies and service level agreements based on users and the environment. f) Provisions for group, user management and security groups. © Challenges a) Extensibility : Simple architecture and open internal APIs. b) Client-side interface : Amazon's EC2 interface and functionality (familiar and testable). © Networking : Virtual private network per cloud and must function as an overlay. d) Security : Must be compatible with local security policies. 6) ackagingwvinsalation maintenance : system administration staff i a important constituency for uptake. « Fig. 4.4.1 shows Eucalyptus architecture. TECHNICAL PUBLICATIONS® - an up-thrust for knowledge* The CLC itself is composed of a col Node controller Fig, 4.4.1 Eucalyptus architecture + Components of eucalyptus in cloud computing : 4. Node controller : The Node Controller (NC) is the component that executes on the and is responsible for instance start up, inspection, shutdown and clean-up. gectuster controller AucollestiontofsNGsti ata eo eae a single Cluster Controller (CC) that typically executes on a cluster head node or server that has access to both private and public networks. The CC is responsible for i Cs, scheduling incoming VM instance execution requests to individual NCs and managing the configuration of public and private instance networks. 3. Cloud controller : Each Eucalyptus installation includes a si Controller (CLC) that is the ing component of a Eucalyptus installation. The CLC is responsible for processing i i making high-level. VM incoming processing Service-Level Agreements (SLAs) and instance scheduling decisions, maintaining persistent system and user metadata lection of services that handle user requests and authentication, persistent system and user metadata, and the management and monitoring of VM instances CLC's client interface service essentially acts as a 4. Client interface : e i y external client interface TECHNICAL PUBLICATIONS - an up-thrist for knowledge4-26 Cloud Computing WSDL document that describes a Web-serig * For example, Amazon provides @ s well as a document deserj i to thelnies ng translated by Bay, SOAP based client are rest ae can be translated by the Cle HTTP Query-based interface, both ee 5 Usep interface service into Eucalyptus in 5. Administrative interface + In a ; a clou su tarting and stopping instances, ; rs and disk im. Rane alee as adding and removing use! ages. ed interface, implementeq Eucalyptus supports such tasks though a Web iene client interface, howeve cloud controller and command line tools. Unlike , the administrative interface is unique to Eee 6. Instance control : Creation of virtual ma 2 is managed by a component of the CLC named the VmControl service. 7. SLA implementation and management : Service-level perenne (SLAs) are implemented as extensions to the message handling service mo ‘ich can inspec, modify, and reject the message, as well as the state stored by VmControl. * Eucalyptus does not assume that all worker nodes will have publicly routable |p addresses. Each cloud allocation will have one or more public IP addresses, aj) cloud images have access to a private network interface. Two types of networks internal to a cloud allocation. (ZEEH Eucalyptus installation * To install Eucalyptus, perform the following tasks : 1, Plan your installation : In order to get the most out of a Eucalyptus deployment. ddition to supporting primary tasks, suc d infrastructure must b? tus. chine instance metadata in Eucalypi.. 2. Configure dependencies : Before you install Eucalyptus, ensure you have the appropriate dependencies installed and configured . Install repositories : Downloads RPM packages . Configure ae} . Start eucalyptus. Relator eucalyptusiseryices. Configure the runtime environment. * Features of eucalyptus in cloud computing are a) Supports both Windows and Linux virtual machines sae b) API is viable with the Amazon EC2 platform. ) Viable with Simple Storage Service ($3) and Amazon Web Services (AWS): TECHNICAL PUBLICATIONS® ee ~ 2N up-thrust for knowledged way is much faster and will in a matter of minutes, BE, 2 g the node controller is a very simple process. Once your machine boots the Eucalyptus Faststart D) Beta 0 all é VD, select the option ‘Install CentOS lyptus Node Controller’ from the boot screen, ee tallation of the cloud controller is very similar to the nodes, with a few ‘exceptions. Once your machine boots from the Eucalyptus Faststart DVD, select the option ‘Install CentOS 6 with Eucalyptus Frontend’ from the boot screen. ‘4 Again, select the appropriate ‘Language’ and ‘Keyboard settings’ according to your needs. _ Provide a ‘Static IP’ and a suitable ‘Host Name’ to your cloud controller in the ‘Network Configuration’ wizard. * Once done, you will be provided with an interface to supply a ‘Public IP Range/ List’ for your Eucalyptus cloud. You need to enter a valid IP address range here. These public IPs will be mapped to individual Eucalyptus instances (virtual machines) once they are launched in the cloud. Advantages of Eucalyptus + Eucalyptus can be utilised to benefit both the eucalyptus (private cloud and the eucalyptus public cloud. Clients can run Amazon or Eucalyptus machine pictures as examples on both clouds. It isn't extremely mainstream on the lookout yet is a solid contender to CloudStack and OpenStack. It support application programming interface similarity with all the Amazon Web Services, Eucalyptus can be utilised with DevOps apparatuses like;chef and puppet. r, Dx ry U8 openstack * Openstack is a résehlly Openoureed, TaaS cloud-computing platform founded by : ; ie ae Rackspace Hosting and NASA;[Link] used widely in industry, TECHNICAL PUBLICATIONS® - an up-thrust for knowledgeCloud Computing 4-28 i Cloud Deployment. Se OpenStack is an open-source cloud platform. OpenStack software managed by a dashboard that gives administrators control while empowering ae vane interface. users to provision resources through a web interface. ee To produce the ubiquitous Open-Source cloud Sones ae rie Will og the needs of public and private cloud providers regardless ” by being simple to implement and massively scalable. Components of OpenStack are as follows : 1, Horizon - Dashboard : It provides a modular Sea al the OpenStack services St OPetations on your cloud like instance, assigning Setting access controls. 2. Keystone is a framework for authentication and authorization for ai the OpenStack services. It handles le e . Keystone is a framework oy authentication and authorization for all the OpenStack services. Nova : It provides virtual servers upon demand. Nova is the most complicated and SOUR OpenStack. A large number of processes cooperate to turn end user API requests into running virtual machines, 4. Glance - Image Store : It provides discovery, registration and delivery services| for disk and server images. 5. Quantum - Network : It provides * network connectivity as a service " between he service works by allowing users to create their own networks and then attach interfaces to them. Quantum has a pluggable architecture to Support many popular networking vendors and technologies, 6. Cinder allows block devices to be exposed and connected to compute instars | for expanded storage and better performance 7. Object store allows you to store or Tetrieve files. It provides a fully distributed, APLaccessible storage platform that can be integrated directly into applications or used for backup, archiving and data retention. » Detail the structure of OpenStack and explain each of its components, TECHNICAL PUBLICATIONS® . an up-thrust for knowledge }gz What is AWS ecosystem 7 ; + AWS ecosystem is made up of three subsystems : 1, AWS computing services provided by Amazon. 2, Computing services provided by third parties that Operate on AWS, 3, Complete applications offered by third parties that run on AWS. a3 What do you understand by third party cloud services 2 ss.: Composing service that belongs to different vendors or integrating them into isting software systems. The service-oriented model, which is the basis of cloud computing, facilitates such an approach and provides the opportunity for developing a sew class of services that can be called third-party cloud services, q4 What is eucalyptus 7 Ans. ¢ + Eucalyptus stands for Elastic Utility Computing Architecture for Linking Your Programs to Useful Systems. * It is an open-source software framework that provides the platform for private cloud computing implementation on computer clusters. * Eucalyptus implements Infrastructure as a Service (IaaS) methodology for solutions in private and hybrid clouds. * Eucalyptus provides a platform for a single interface so that users can calculate | the resources available in private clouds and the resources available externally in public cloud services QS List the features of eucalyptus. ns. : Features include : 1. Supports both Linux and Windows Virtual Machines (VMs). | 2 Application program interface - (API)compatible with Amazon EC2, 3. Compatible with Amazon Web Services (AWS) and Simple Storage Service ($3) 4 Works with multiple hypervisors including VMware, Xen and KVM. 5. Can be installed and deployed from source code or DEB and RPM. TECHNICAL PUBLICATIONS® - an up-thrust for knowledgeCloud Computing 4-30 Q.6 What is azure queues 7 ; Ans. : Azure queue storage is a service for storing large eee far ee be accessed from anywhere in the world via authenticated cal fe Serie ‘ti . A single queue message can be upto 64 KB in size and a quew millions of messages, upto the total capacity limit of a storage account. Q7 How virtualization employed in azure ? Ans. : Azure is a virtualized infrastructure to which a set of additional enterprisg services has been layered on top, including, a virtualization service called azure AppFabric that creates an application hosting environment. AppFabric jis, cloud-enabled version of the NET Framework. Q8 List the major feature of Google app engine. Which kind of problems can pg Solved using Google app engine ? Ans. : Major feature of Google app engine : | - Automatic scaling and load balancing. | . Authentication using Google Accounts APL | Provides dynamic web services based on common standards. | . Integration with other Google cloud services and API. 2p eone . Support persistent storage, with query access sorting and transaction management features. | | 6. Google app engine offers users the ability to build and host web applications on Google's infrastructure. TECHNICAL PUBLICA’ TIONs® ~ an up-thrust for knowledge