Introduction to Amazon EKS

RISE Conference 2018 - Hong Kong Developer Workshop: Deep Dive into Amazon ECS & Fargate - Donnie Prakoso

Running Containerized Workloads in Production Presentation from NY Event 4-10-19 and Boston Event 4-11-19

In this session, we walk through the fundamentals of Amazon VPC. First, we cover build-out and design fundamentals for VPCs, including picking your IP space, subnetting, routing, security, NAT, and much more. We then transition to different approaches and use cases for optionally connecting your VPC to your physical data center with VPN or AWS Direct Connect. This mid-level architecture discussion is aimed at architects, network administrators, and technology decision makers interested in understanding the building blocks that AWS makes available with Amazon VPC. Learn how you can connect VPCs with your offices and current data center footprint.

This session is focused on diving into the AWS IAM policy categories to understand the differences, learn how the policy evaluation logic works, and go over some best practices. We will then walk through how to use permission boundaries to truly delegate administration in AWS.

Containers are a lightweight and very fast alternative to virtual machines. But keeping track of and coordinating a vast array of individual containers is no small feat and requires orchestration for all of the components to act as one. Amazon Elastic Container Service for Kubernetes (Amazon EKS) is the tool to handle this task. In this session, learn about this service’s latest new features.

AWS Control Tower is a new AWS service that cloud administrators can use to set up and govern their secure, compliant, multi-account environments on AWS. In this session, we show you how Control Tower automates the creation of a secure and compliant landing zone with best-practice blueprints for a multi-account structure, identity and federated access management, a central log archive, cross-account security audits, and workflows for provisioning accounts with pre-approved configurations. We also discuss guardrails—pre-packaged governance rules created for security, operations, and compliance that you can apply enterprise-wide or to groups of accounts to enforce policies or detect violations. Finally, we show you how to easily manage and monitor all this through the Control Tower dashboard. AWS Control Tower is a new AWS service that cloud administrators can use to set up and govern their secure, compliant, multi-account environments on AWS. In this session, we show you how Control Tower automates the creation of a secure and compliant landing zone with best-practice blueprints for a multi-account structure, identity and federated access management, a central log archive, cross-account security audits, and workflows for provisioning accounts with pre-approved configurations. We also discuss guardrails—pre-packaged governance rules created for security, operations, and compliance that you can apply enterprise-wide or to groups of accounts to enforce policies or detect violations. Finally, we show you how to easily manage and monitor all this through the Control Tower dashboard.

AWS Control Tower is a new AWS service for cloud administrators to set up and govern their secure, compliant, multi-account environments on AWS. In this session, University of York will discuss their implementation of AWS Landing Zone. We’ll also explain how AWS Control Tower automates AWS Landing Zone creation with best-practice blueprints.

Collision Conference 2018 - AWS Developer Workshops How To: Run Your Containers on AWS with ECS & Fargate, Abby Fuller

This document provides an overview of Amazon ECS and AWS Fargate. It begins with concepts of container orchestration and challenges of managing many containers. It then introduces ECS as the easiest way to deploy and manage containers on AWS, and Fargate as a way to run containers without managing infrastructure. Key concepts covered include ECS clusters, tasks, services, task definitions, load balancing, service discovery, placement strategies and data volumes. A demo is shown of defining a task running on Fargate. Differences between ECS EC2 mode and Fargate mode are also highlighted.

The document summarizes AWS Code services for automating the development lifecycle including CodeCommit for source control, CodePipeline for continuous delivery, and CodeDeploy for automated deployments. It describes how these services work together to enable microservices architectures and continuous delivery practices for deploying updates with no downtime. Examples are provided of how to set up a delivery pipeline using these AWS Code services to connect development tools and deploy changes from testing to production environments.

This document provides an overview and introduction to Amazon EKS (Elastic Kubernetes Service). It discusses key EKS features such as AWS integrations for load balancing, authentication via IAM, and VPC networking. The document also covers Kubernetes concepts such as pods, deployments, services and explains some of the difficulties of managing Kubernetes clusters. Finally, it mentions there will be a demonstration of creating and describing an EKS cluster.

In this talk, we provide an introduction to Amazon Elastic Container Service for Kubernetes (Amazon EKS). Learn the basics of managing, deploying, and scaling containerized applications using Kubernetes on AWS. We first provide a quick introduction of containers, Kubernetes, and Amazon EKS. Then we dive into a hands-on demonstration of Amazon EKS.

by Fritz Kunstler, Sr. Security Consultant, AWS AWS Organizations offers policy-based management for multiple AWS Accounts. Learn how Organizations helps you more easily manage policies for groups of accounts and automate account creation.

by Apurv Awasthi, Sr. Technical Product Manager, AWS This session introduces the concepts of AWS Identity and Access Management (IAM) and walks through the tools and strategies you can use to control access to your AWS environment. We describe IAM users, groups, and roles and how to use them. We demonstrate how to create IAM users and roles, and grant them various types of permissions to access AWS APIs and resources. We also cover the concept of trust relationships, and how you can use them to delegate access to your AWS resources. This session covers also covers IAM best practices that can help improve your security posture. We cover how to manage IAM users and roles, and their security credentials. We also explain ways for how you can securely manage you AWS access keys. Using common use cases, we demonstrate how to choose between using IAM users or IAM roles. Finally, we explore how to set permissions to grant least privilege access control in one or more of your AWS accounts. Level 100

This document provides an overview of AWS networking fundamentals including VPC concepts such as IP addressing, subnets, routing, security groups, and connecting VPCs. It discusses choosing IP address ranges and creating subnets across availability zones. It also covers routing and traffic flow, DNS options, network security using security groups and network ACLs, and VPC flow logs. Methods for connecting VPCs like VPC peering, Transit Gateway, VPN connections, and Direct Connect are also summarized.

This document introduces Amazon EKS, a managed Kubernetes service that makes it easy to run Kubernetes on AWS. Some key points: - EKS manages the control plane components needed to run Kubernetes clusters, eliminating the overhead of maintaining the control plane. - It provisions and manages the Kubernetes control plane across multiple availability zones, providing high availability. - It also integrates tightly with other AWS services like IAM, VPC networking, security groups, load balancers, and more for a native AWS experience. - EKS is based on the open source Kubernetes project and allows users to leverage the same APIs, tooling, and features while benefiting from the scalability of AWS.

In this session, we will walk through the fundamentals of Amazon Virtual Private Cloud (VPC). We will discuss core VPC concepts including picking your IP space, subnetting, routing, security, NAT and VPC Endpoints.

O Kubernetes oferece uma poderosa camada de abstração para gerenciar a infraestrutura conteinerizada. O Amazon Elastic Container Service for Kubernetes (Amazon EKS) facilita a execução do Kubernetes na AWS sem ter que gerenciar os nós principais ou o operador do etcd. Nesta sessão, abordamos como o Amazon EKS torna a implementação do Kubernetes na AWS simples e escalável, incluindo rede, segurança, monitoramento e registro. Discutiremos as principais contribuições que estamos dando para que a AWS seja um lugar ainda melhor para executar o Kubernetes e demonstraremos como os clientes da AWS estão começando a usar o Amazon EKS.

Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage master nodes or the etcd operator. In this session, we cover how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging. We discuss the key contributions we’re making to make AWS an even better place to run Kubernetes, and show a live demonstration of how AWS customers are starting to use Amazon EKS.

This document provides an overview of Amazon Web Services (AWS) container services, including Amazon Elastic Container Service (ECS), AWS Fargate, and Amazon Elastic Kubernetes Service (EKS). It discusses how ECS allows users to run and scale containerized applications using tasks on a cluster of EC2 instances or Fargate. EKS manages Kubernetes clusters that can schedule containers across AWS infrastructure and integrates with other AWS services. The document emphasizes that EKS provides an upstream Kubernetes experience and high availability while allowing integration with native AWS networking and services.

This document discusses Amazon Elastic Container Service for Kubernetes (EKS). It highlights how EKS can save time by managing the Kubernetes control plane and enabling the use of various node groups. It provides demonstrations of creating an EKS cluster and registering node groups, such as a general Auto Scaling group and spot fleet. It also covers tight integration with IAM for authentication and authorization and discusses community feedback about customizing worker node AMIs and streamlining access management.

Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage the Kubernetes control plane. In this session, learn how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging. Learn what we're doing to make AWS an even better place to run Kubernetes, and watch a demonstration of AWS customers starting to use Amazon EKS.

Containers are an increasingly important way for developers to package and deploy their applications and AWS offers multiple container products to help you deploy, manage, and scale containers in production. In this session we dive deep into Amazon Elastic Container Service for Kubernetes (Amazon EKS), a new managed service for running Kubernetes on AWS. Learn how Amazon EKS works, from provisioning nodes, launching pods, and integrations with AWS services such as Elastic Load Balancing and Auto Scaling. Learn more about containers here: https://aws.amazon.com/containers/

by Tiffany Jernigan, Developer Advocate, AWS Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage master nodes or the etcd operator. In this session, we show how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging.

The document discusses continuous deployment of Kubernetes applications on AWS. It describes a workflow where code is committed to a repository, triggering a build pipeline. The pipeline builds a Docker image, tests it, and pushes it to ECR. A Lambda function is then invoked, which updates a Kubernetes deployment file with the new image tag and triggers a rolling update of pods. Monitoring and logging tools are also discussed.

Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon Elastic Container Service for Kubernetes (Amazon EKS) makes it easy to run Kubernetes on AWS without having to manage master nodes or the etcd operator. In this session, we show how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging.

The document discusses Kubernetes and how to run it on AWS. It begins with an introduction to containers and Docker. It then explains what Kubernetes is and how it can manage containers at scale by starting, stopping, and monitoring containers across multiple hosts. It discusses key Kubernetes concepts like pods, services, and deployments. It also provides an overview of running Kubernetes on AWS using Elastic Container Service for Kubernetes (EKS), including how it provides a managed Kubernetes control plane and integrates with other AWS services.

The document outlines an agenda for a container session covering topics like getting started with Docker on AWS, deep dives on Amazon ECS and AWS Fargate, building CI/CD pipelines for container deployments, Amazon EKS, and building efficient and secure containers. It provides overviews of key AWS container services like ECS, EKS, and Fargate, how they manage and host containers, and their benefits around scalability, integration and ease of use.

This document discusses tips for successful Kubernetes deployments on AWS. It covers choosing orchestration tools like ECS or EKS, setting up Kubernetes clusters using tools like Kops, networking options, role-based access control, observability, and continuous deployment. Key points include using EKS for a managed control plane, Kops to provision infrastructure, enabling RBAC, capturing logs, metrics and traces, and deploying applications through pipelines like CodePipeline.

Kubernetes offers a powerful abstraction layer for managing containerized infrastructure. Amazon EKSmakes it easy to run Kubernetes on AWS without having to manage the Kubernetes Control Plane. In this session, see how Amazon EKS makes deploying Kubernetes on AWS simple and scalable, including networking, security, monitoring, and logging. Learn what we’re doing to make AWS an even better place to run Kubernetes and watch a demo of AWS customers starting to use Amazon EKS.

You've spent the time designing, architecting, setting up, and configuring your Kubernetes cluster. Now, it's on to day two. "Day two" refers to the functions of scaling, optimizing, monitoring, securing, and in general keeping the lights on. In this talk, we discuss the tools that you have available to help you build a reliable and resilient Kubernetes cluster and run workloads in production. We discuss how to control the network, secure your environment using threat detection, scan your containers for vulnerabilities, use monitoring tools, and create scalable containers and clusters.

Chan Kwun-hok, Solutions Architect, AWS Running and managing a Kubernetes environment at scale is not simple. In this session we will share some expert tips that can help you run production grade Kubernetes deployments on AWS. We will review native AWS services you can use to improve security, deployments, networking, logging and monitoring, and CI/CD. We will also highlight third party services that are popular across a multitude of customers.

The document discusses Amazon EKS (Elastic Kubernetes Service), which allows users to run Kubernetes on AWS. It provides an overview of EKS and Kubernetes, the EKS control plane and worker nodes, networking options, storage, scaling, and CI/CD (continuous integration and continuous delivery) workflows. Key points include that EKS manages the control plane for users and integrates well with other AWS services, while allowing users to choose their own worker nodes and retain a native Kubernetes experience.