AWS

AWS is Amazon's cloud computing platform.

Regions

Regions are collections of resources in a geographic area. They're isolated and independent of one another, except where replication makes resources available across a boundary.

Regions introduced before 20th March 2019 are enabled by default, and cannot be disabled. Other regions can be enabled via the Console.

Quotas

Quotas are hard limits beyond which an account can't provision additional resources. They're usually region-specific.

Some quotas can't be increased.

Tagging

Resources can be tagged with metadata that can make them easier to locate, in key-value pairs AWS calls tags. Tags make it easier to manage, identify, organise, search for and filter resources.

Consider tagging by:

  • Owner
  • Environment
  • Purpose
  • Application
  • Stack
  • Operating System

Resource groups

AWS resource groups allow grouping related resources into a structure for easier bulk operations.

Not all services support resource groups.

ARNs

Amazon Resource Names uniquely identify resources. They're in the following format:

arn:partition:service:region:account-id:resource-id
arn:partition:service:region:account-id:resource-type:resource-id
arn:partition:service:region:account-id:resource-type/resource-id

And are comprised of:

  • partition describes the group of regions in which the account exists:
    • aws - AWS consumer regions,
    • aws-cn - AWS China consumer regions.
    • aws-us-gov - AWS GovCloud regions.
  • service - identifies the service, e.g. s3.
  • region contains the region name.
  • account-id contains the owning AWS account ID.
  • resource-type define subtypes within a service; treat these as opaque.
  • resource-id is the resource-specific section of the identifier, and may contain a path.

If resource-id is a path, wildcards (*) can be used to match segments, but not subsegments.

Clients

Services

AWS is broken up into a number of services, most with regional availability. AWS services are generally accessible via service endpoints of the form:

protocol:service-code.region-code.amazonaws.com

Global services (services that aren't regional) will omit the region-code segment.


Children
  1. ACM
  2. API Gateway
  3. Amazon Redshift
  4. Amplify
  5. AppStream
  6. AppSync
  7. Application Auto Scaling
  8. Athena
  9. Batch
  10. Billing
  11. CLI
  12. Cloud Directory
  13. CloudFormation
  14. CloudFront
  15. CloudHSM
  16. CloudSearch
  17. CloudTrail
  18. CloudWatch
  19. CodeBuild
  20. CodeCommit
  21. CodeDeploy
  22. CodePipeline
  23. CodeStar
  24. Cognito
  25. Config
  26. DMS
  27. Device Farm
  28. Direct Connect
  29. DocumentDB
  30. DynamoDB
  31. EC2
  32. ECR
  33. ECS
  34. EFS
  35. EKS
  36. ELB
  37. EMR
  38. ElastiCache
  39. Elastic Beanstalk
  40. EventBridge
  41. FSx
  42. Fargate
  43. Global Accelerator
  44. Glue
  45. GuardDuty
  46. IAM
  47. Inspector
  48. KMS
  49. Keyspaces
  50. Kinesis
  51. Lambda
  52. License Manager
  53. Macie
  54. Managed Services
  55. Neptune
  56. OpenSearch Service
  57. OpsWorks
  58. Organisations
  59. Outposts
  60. QLDB
  61. RDS
  62. Route 53
  63. S3
  64. SCT
  65. SDKs
  66. SES
  67. SWF
  68. SageMaker
  69. Secrets Manager
  70. Security Hub
  71. Service Catalog
  72. Shield
  73. Simple Notification Service
  74. Simple Queue Service
  75. SimpleDB
  76. Snow family
  77. Step Functions
  78. Systems Manager
  79. Timestream
  80. Trusted Advisor
  81. VPC
  82. VPN
  83. WAF
  84. X-Ray

Backlinks