From the course: Hands-On Development in AWS
Join today to access over 24,700 courses taught by industry experts.
Using ECS best practices - Amazon Web Services (AWS) Tutorial
From the course: Hands-On Development in AWS
Using ECS best practices
- We do have some recommended best practices for ECS. Make your container images static and keep them as small as possible. It is recommended to have one application process per image. Log your output to standard error and standard output so that we can see that stuff in CloudWatch logs. And it is recommended to have a dedicated IAM role per task definition. So that you can follow that principle of least privilege. Allow internet access in and out only if you need to. If you don't need access to the internet, don't allow it. It is unsafe. Monitor your containers which CloudWatch Container Insights, we have X-Ray available as well as VPC Flow Logs. This will allow us to see data going into and out of our containers to insure security. The Shared Responsibility Model remember that this is security of the Cloud versus security in the Cloud. It is your responsibility for security in the Cloud, whatever you deploy in AWS is your responsibility to ensure its security. Use the Amazon Key…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
(Locked)
Module 2: AWS foundational services introduction24s
-
(Locked)
Learning objectives32s
-
(Locked)
Understanding IAM11m 55s
-
(Locked)
Understanding permissions11m 37s
-
Exploring users and groups8m 58s
-
(Locked)
Exploring roles5m 13s
-
(Locked)
Using IAM multi-factor authentication (MFA)4m 18s
-
(Locked)
Creating a Cognito user pool15m 12s
-
(Locked)
-
-
(Locked)
Module 3: Database and storage services introduction19s
-
(Locked)
Learning objectives27s
-
(Locked)
An RDS overview8m 47s
-
(Locked)
Understanding database security in RDS2m 48s
-
(Locked)
Configuring an RDS database9m 9s
-
(Locked)
Scaling RDS4m 30s
-
(Locked)
Exploring database on EC25m 12s
-
(Locked)
Using RDS best practices2m 16s
-
(Locked)
-
-
(Locked)
Learning objectives23s
-
(Locked)
Understanding S310m 42s
-
(Locked)
Creating buckets12m 17s
-
(Locked)
Securing S37m 33s
-
(Locked)
Using global data replication6m 11s
-
(Locked)
Understanding Glacier5m 34s
-
(Locked)
Exploring events8m 48s
-
(Locked)
Using third-party browser tools2m 34s
-
(Locked)
Using S3 best practices2m 47s
-
(Locked)
Using CloudFront with S316m 18s
-
(Locked)
-
-
(Locked)
Module 4: Messaging services introduction29s
-
(Locked)
Learning objectives31s
-
(Locked)
Understanding SQS10m 25s
-
(Locked)
Creating an SQS queue3m 39s
-
(Locked)
Securing SQS5m 53s
-
(Locked)
Interacting with an SQS queue12m 32s
-
(Locked)
Using message encryption4m 42s
-
(Locked)
Using SQS best practices2m 36s
-
(Locked)
-
-
(Locked)
Module 5: Execution services introduction24s
-
(Locked)
Learning objectives27s
-
(Locked)
Highlighting Lambda6m 6s
-
(Locked)
Understanding Lambda scalability and availability3m 24s
-
(Locked)
Exploring Lambda security3m 43s
-
(Locked)
Using Lambda functions10m 42s
-
(Locked)
Deploying a Lambda function8m 32s
-
(Locked)
Using Lambda best practices5m 8s
-
(Locked)