In this course, we shall be discussing Amazon Elastic Load Balancers (ELBs) and how ELBs integrate with other AWS services to help provide high availability, improve performance, and increase security for your applications.
By the end of this course, you will have a greater understanding of:
- ELBs integrations with key AWS services
- ELBs importance to Amazon Kubernetes
Anyone working with AWS Networking will benefit from this course, also if you are:
- Studying for the AWS Networking Specialty certification
- Studying for the AWS Solutions Architect certifications
If you are looking to increase your AWS knowledge, this course is for you.
Before attending this course, you should be familiar with Amazon ELB, including the different ELB types and how they are configured. Experience with AWS services such as CloudFront, WAF, and Global Accelerator is also desirable but not required.
For more information on these services, please see our existing courses:
- Using Elastic Load Balancing & EC2 Auto Scaling to support AWS workloads
- Introduction to DNS & Content Delivery on AWS
- Protecting your Web Apps against common exploits using AWS WAF
- AWS Networking features essential for a solutions architect
- Using Amazon Route 53 to route end users to internet applications
We began this course by outlining ACME's existing environment consisting of an application load balancer and two EC2 instances hosting their website. We then looked integrating the load balancer with Route 53 and AWS Certificate Manager. Route 53 provide name resolution, resolving our friendly name www to the name of the application load balancer using an alias record. AWS Certificate Manager to request and issue public certificates, so that we can use HTTPS on our website. We then discussed ACME's need to distribute content closer to its customers in the USA and their need to inspect traffic before providing access to the content.
This involved integrating with Amazon CloudFront and AWS WAF. Amazon CloudFront to cache content on edge locations reducing latency for their customers. AWS WAF to inspect traffic to help protect ACME from common attacks. Interestingly, both CloudFront and AWS WAF can block traffic from certain geographic locations. So, if you do not want to allow traffic from a particular country, you can do that using Eva service. We then moved on to discuss ELB integration with AWS Global Accelerator. We discussed the benefits of Global Accelerator and how it can be used to route traffic to multiple endpoints in different regions using a single entry point.
Global Accelerator and CloudFront do overlap somewhat, but also have distinct differences. Both use AWS edge locations, but CloudFront's role is to cache content, whereas Global Accelerator's job is to determine the optimal path for traffic. CloudFront works with HTTP and HTTPS, Global Accelerator works with TCP and UDP. CloudFront is best suited to scenarios where you want to cache content, Global Accelerator is best suited for non-HTTP scenarios. We finished off by discussing news in ELB with the Amazon Elastic Kubernetes Service. When working with EKS, you should use either a network load balancer or an application load balancer. Classic load balancers should be avoided. To use an application load balancer, we use an Ingress controller. To use a network load balancer, we use a type of load balancer in a Kubernetes service file. Thank you for your time. Good luck with your continued learning. I hope to see you on other courses soon. Thank you.
Mike has worked in IT since 1997, specializing in networking, storage, and architecture. He's been in cloud computing for the last 8 years, working across several cloud platforms but specializing in AWS. He's been involved in many cloud projects over the years covering migrations, hybrid connectivity, security optimization, networking, and storage architecture.
He gained his first training qualification in 1998 and, about 3 years ago, became an AWS Authorized Champion Instructor. He's delivered AWS cloud courses across Europe for a range of clients, with a focus on Architecture, Security, and Networking. He currently holds certifications for the four biggest cloud vendors, including the AWS Solutions Architect Professional, AWS DevOps Engineer, and AWS Advanced Networking specialty certifications.
He lives in the North of England with his wife Frances and their dog Inca.