AWS-Day5-Assignment

What is Object and Block Storage?

Ans:

Object storage normally uses a distributed storage environment across multiple different storage nodes or servers.

On the other hand, block storage uses RAID, SSDs, and hard disk drives (HDDs) for storage.

Finally, cloud file storage uses network-attached storage (NAS) in an on-premises setup.
What is S3?

Ans:

Amazon Simple Storage Service (Amazon S3) is an object storage service that offers industry-leading scalability, data availability, security, and performance. You can use Amazon S3 to store and retrieve any amount of data at any time, from anywhere.
What are the different Storage Classes available in S3?

Ans:

The S3 storage classes include
1. S3 Standard
2. S3 Intelligent-Tiering
3. S3 Standard-Infrequent Access (S3 Standard-IA)
4. S3 One Zone-Infrequent Access (S3 One Zone-IA)
5. S3 Glacier Instant Retrieval
6. S3 Glacier Flexible Retrieval (formerly S3 Glacier)
7. S3 Glacier Deep Archive (S3 Glacier Deep Archive)
8. S3 Outposts
What is glacier?

Ans:

Amazon S3 Glacier (S3 Glacier) is a secure and durable service for low-cost data archiving and long-term backup.

With S3 Glacier, you can store your data cost-effectively for months, years, or even decades. S3 Glacier helps you offload the administrative burdens of operating and scaling storage to AWS, so you don't have to worry about capacity planning, hardware provisioning, data replication, hardware failure detection and recovery, or time-consuming hardware migrations.
How can you secure access to your S3 bucket? How can you encrypt data in S3?

Ans:

To make sure your files and Amazon S3 buckets are secure, follow these best practices:
- Restrict access to your S3 resources: When using AWS, restrict access to your resources to the people that absolutely need it. Follow the principle of least privilege.
- Monitor your S3 resources: Monitor your resources using AWS CloudTrail logs, S3 server access logging, AWS Config, AWS Identity and Access Management (IAM) Access Analyzer, Amazon Macie, Amazon CloudWatch, or AWS Trusted Advisor's S3 bucket permissions check.
- Use encryption to protect your data: Amazon S3 supports encryption during transmission, server-side encryption (SSE), and client-side encryption.
  
  Amazon S3 now applies server-side encryption with Amazon S3 managed keys (SSE-S3) as the base level of encryption for every bucket in Amazon S3. Starting January 5, 2023, all new object uploads to Amazon S3 are automatically encrypted at no additional cost and with no impact on performance. The automatic encryption status for S3 bucket default encryption configuration and for new object uploads is available in AWS CloudTrail logs, S3 Inventory, S3 Storage Lens, the Amazon S3 console, and as an additional Amazon S3 API response header in the AWS Command Line Interface and AWS SDKs.

Identify the different pricing available for different storage classes including EBS, EFS, FSx and S3 storage classes.

Ans:

Features	Amazon S3	Amazon EBS	Amazon EFS
Storage Cost (US-East, for example)	Amazon S3 pricing: First 50 TB / Month $0.023 per GB Next 450 TB / Month $0.022 per GB Over 500 TB / Month $0.021 per GB	Amazon EBS pricing: General Purpose SSD (gp2) $0.10 per GB-month Provisioned IOPS SSD (io1) $0.125 per GB-month ($0.065 per provisioned IOPS-month) Throughput Optimized HDD (st1) $0.045 per GB-month Cold HDD (sc1) volumes $0.025 per GB-month	Amazon EFS pricing: $0.30 GB-month ($6.00 per provisioned MB/s-month)

What is a Storage Gateway? What are the different types?

Ans:

AWS Storage Gateway is a hybrid cloud storage service that gives you on-premises access to virtually unlimited cloud storage. Storage Gateway provides a standard set of storage protocols such as iSCSI, SMB, and NFS, which allow you to use AWS storage without rewriting your existing applications.

This service provides four different types of gateways – Tape Gateway, Amazon S3 File Gateway, Amazon FSx File Gateway, and Volume Gateway – that seamlessly connect on-premises applications to cloud storage, caching data locally for low-latency access.
What is Snowball and Snowmobile?

Ans:

Snowball:

Snowball is a petabyte-scale data transport solution that uses secure appliances to transfer large amounts of data into and out of the AWS cloud. Using Snowball addresses common challenges with large-scale data transfers including high network costs, long transfer times, and security concerns.

Snowmobile:

AWS Snowmobile is the first exabyte-scale data migration service that allows you to move very large datasets from on-premises to AWS. Each Snowmobile is a secured data truck with up to 100PB storage capacity that can be dispatched to your site and connected directly to your network backbone to perform high-speed data migration. You can quickly migrate an exabyte of data with ten Snowmobiles in parallel from a single location or multiple data centers. Snowmobile is offered by AWS as a managed service.
Identify the minimum and maximum storage for each storage class. What is the maximum size of the object that you can store on S3?

Ans:

Individual Amazon S3 objects can range in size from a minimum of 0 bytes to a maximum of 5 TB. The largest object that can be uploaded in a single PUT is 5 GB.
What are the availability and durability of different S3 storage classes?

Ans:
Case Study for S3-

Create a S3 bucket in ap-south-1 region. Create an object under it using AWS Console. Verify the below -
- 1. Make the object to be accessible publicly and see if you can access from your local
- 2. Remove Public access of object and access it from Cloudshell, AWS EC2 Console and also from your Local Laptop using AWS CLI
- 3. Create an S3 bucket from AWS EC2, upload an object using aws cli commands for S3