AWS

How do we deploy our application in AWS?

  • We use Jenkins or docker to deploy our application in AWS. Using Jenkins docker pipeline We create docker images.We deploy images in ECS or EC2.

How can we enhance availability of production during deployment in server and database?

  • Availability comes from, how will you apply caching mechanism.
  • We should provide hundred percent availability like when moving code to production, there should be not be production downtime.
    • We can do a blueprint deployment Of existing instance, version and route traffic to it, and then create a new plans and update it once it is all set.
  • Availability in RDS on AWS Can be done using read, replica and focus traffic on that by making them available in availability zone.

What is cloud front?What is edge location?

  • Amazon cloud front is a content delivery network service that helps to distribute content quickly and reliably. It uses a global network of servers called as edge locations,To cache content Closer to the users Which improves Speed and reliability.When a user requests Content,The request is routed to the edge location with lowest latency to deliver the content with the best performance.

I have two accounts in AWS.I want to access S3 bucket in account 1 from another account.How to access?

  • To grant access to Amazon S3 buckets Across AWS accounts, we can use your account IAM roles or bucket policies.
    • Cross account role
      • In the source account, create an IAM role for access to the Destination bucket.
      • Grant the role permission for S3 operations.
      • In the Destination account, grant an IAM role or use Permission to assume the role Created in the source account.
    • Bucket policy
      • In the source account, create a policy.
      • Attached policy to the user or role in destination Account that will be used to access the bucket.

What is VPC? What is Internet gateway(IGW)?What is NAT(Network Address Translation) Gateway?

  • VPC stands for virtual private cloud, a virtual network that is hosted within a public cloud.They provide a level of isolation between different organisations that use resources while still offering the scalability and convenience of public cloud computing.
  • IGW Allows both inbound and outbound Internet access. While NAT gateway only allows outbound access.
    • Instances with public IP’S can access Internet with IGW. NAT allow instances with private IP to access Internet.
  • IGW’s are free.NAT incur charges Based on creation and usage.
  • Per VPC Only one IGW is needed. We need one NAT gateway per availability zone.
  • NAT Gateway can be deployed to single availability zone, so it’s best to configure routing to use the NAT gateway in same Availability zone to ensure high availability.

What is the flow of Terraform? What are provisioners in Terraform ? What is a provider in terraform?

  • Terraform’s workflow is made up of five key steps
    • Write
      • Create changes to the code.
    • Init
      • Initialise the code to download requirements
    • Plan
      • Review the changes and choose whether to accept them
    • Apply
      • Accept changes and apply them on infrastructure.
    • Destroy
      • Destroy all created infrastructure.
  • Providers in terraform are used to authenticate with cloud platforms, services, or other tools, allowing users to create, modify, and delete resources declared in terraform configurations. Providers are discovered dynamically as needed.
  • Provisioners are used to copy files Or execute local or remote operations, such as scripts or shell commands during resource creation or deletion. They can be used to bootstrap a resource, Clean up before destroy, Run configuration management and more. There are two types of provisioners, local, and remote.

Comments

Post a Comment

Popular posts from this blog

Setup Flyway,Postgres in Jenkins using Docker

Recently I was trying to setup Flyway on Jenkins for my db in Postgres. The required files can be found here https://github.com/gauravmatta/devops/tree/main/jenkins_flyway The basic files you will need will be  The configuration file in conf folder The sql files in the sql folder The pipeline file "jenkinsfile-2" Here is the sample configuration file flyway.url= jdbc:postgresql://localhost:5432/flyway flyway.user = postgres flyway.password = postgres flyway.schemas= flyway flyway.locations=filesystem:../sql flyway.driver=org.postgresql.Driver Create DB Credentials in Jenkins with ID  "db-creds" We are using this in our sample you may change it but be sure to change it in jenkins pipeline file too. Here is the sample jenkins pipeline file https://github.com/gauravmatta/devops/blob/main/jenkins_flyway/jenkinsfile-2 My postgres is installed on localhost so I am using "--network=host" in my docker command for example docker run --rm --networ...
Read more

Docker

  What are the various commands of docker file? From It defines which image to download and start from. Entry point Specifies the starting of expression to use when starting your container. CMD Command specifies the whole command to run. ADD When we want to add some files ADD statement is used. Add new files from system to the file system of image, example local files: ADD run.sh/ run.sh Tar Archieves : ADD project tar. COPY Copy the current directory contains into a container at current directory. Copy Between different environments Dev/Stage/Prod etc. What is bind mount? They will rely on host machine operating system and directory structure. A route from host computer must be supplied. What is docker persistent volume? Docker volumes provide persistent storage.Docker manages data separately.This can be shared with multiple containers separately.CLI can access docker volume. What is docker Prune command? Docker prune command Is used to Remove all containers, network images, et ce...
Read more

Jenkins

In How many ways can we launch an agent in Jenkins? Launch agent by connecting it to master. Agent Connects to master Launch agent via SSH Controller initiates the connection to the SSH. How do we login into AWS? How do we pass and login AWS in Jenkins pipelines or Jenkins file? We can use assume role and get credentials. We can use AWS plug-in to configure cloud. In the cloud, we can provide our AWS access key or secret key. We can add our EC2 End point, region, et cetera Now in Jenkins credential provider, we can give our username and provide key credentials. This will give us a credential ID. We can use this credential ID in Jenkins pipelines. Can we write git clone in pipeline? No, we can use checkout instead. What is the difference between scripted and declarative pipeline? Declarative pipelines uses declarative model and scripted uses imperative model.Declarative breaks the stages into multiple steps.Scripted Does not require this. Scripted pipelines permit developer to inject a ...
Read more