Michael Guild michaelguild13

## AWS-Storage-Gateway.txt
AWS Storage Gateway - A service that connects to a software appliance, that is on location, to supply cloud based storage seamlessly and securely as a cost scalable cost effective storage.

Your Data Center => AWS Storage Gateway => AWS S3/Glacier/Whatever

Three different types of Storage Gateways:

File Gateway (NSF) - for flat files: pdfs, images, etc

Volumes Gateway (iSCSI) - block based storage for operating systems: virtual operating system, virtual hard disk, ect
  - Virtual hard disks

## AWS-S3-Security-and-Encryption.txt
S3 Security and Encryption Overview
Security
  - By default, all newly created buckets are PRIVATE
  - Access control is done with Bucket Policies (entire bucket) or Access Control Lists (specific object)
  - Can log all access requests to S3 Bucket

Encryption
In Transit - sending information to and from bucket via SSL/TLS (https)
At Rest - four types of encryption: SSE-S3, SSE-KMS, SSE-C, and Client Side Encryption
  - Server Side Encryption

## AWS-CloudFront-CDN-Overview.txt
CloudFront CDN Overview
  - Content Delivery Network (CDN)
  - Consists of Distribution servers (network of Edge Locations)
  - Delivers content based on geographical location of user and the origin of the delivery server
  - Optimised to work with delivery of website, dynamic, static, streaming, and interactive content
    - Simple Storage (S3), Elastic Compute Cloud (EC2), Elastic Load Balancing, and Route53.
    - Can Also work with non-AWS origin server.

Edge Location - Location where content will be cached that is separate to an AWS Region/Avalibility Zone (AZ)
              - Not for Just READ only, you can write to them too.

## AWS-S3-Notes.txt
S3 - Object based storage spread across multiple devices and facilities.
  - It's meant for files, not databases.
  - Files are stored in Buckets
  - Files can be up to 5TB
  - Unlimited storage
  - Universal Namespaced (uniquely global)
  - When you upload, you get a 200 for sucess
  - Objects consist of Key ( file name ) and value (data of file)
    - Optional versioning
    - Metadata

## AWS-IAM-Notes.txt
IAM - Identity Access Management
Used to manage users, groups, roles, and polices.
IAM is universal which means that all users, groups, roles, permissions are not region specific ( at this time 2019 ).
You can setup password rotation policies, MultiFactor Authentication

Root Account
  - the initial account used to create the aws account
  - this should be the companies email account
  - has complete admin access (god mode)

## gist:65ba30e4fac9490cb7ba3af4bd746a6e
open -a Google\ Chrome\ Canary --args --disable-web-security
	AWS Storage Gateway - A service that connects to a software appliance, that is on location, to supply cloud based storage seamlessly and securely as a cost scalable cost effective storage.

	Your Data Center => AWS Storage Gateway => AWS S3/Glacier/Whatever

	Three different types of Storage Gateways:

	File Gateway (NSF) - for flat files: pdfs, images, etc

	Volumes Gateway (iSCSI) - block based storage for operating systems: virtual operating system, virtual hard disk, ect
	- Virtual hard disks
	S3 Security and Encryption Overview
	Security
	- By default, all newly created buckets are PRIVATE
	- Access control is done with Bucket Policies (entire bucket) or Access Control Lists (specific object)
	- Can log all access requests to S3 Bucket

	Encryption
	In Transit - sending information to and from bucket via SSL/TLS (https)
	At Rest - four types of encryption: SSE-S3, SSE-KMS, SSE-C, and Client Side Encryption
	- Server Side Encryption
	CloudFront CDN Overview
	- Content Delivery Network (CDN)
	- Consists of Distribution servers (network of Edge Locations)
	- Delivers content based on geographical location of user and the origin of the delivery server
	- Optimised to work with delivery of website, dynamic, static, streaming, and interactive content
	- Simple Storage (S3), Elastic Compute Cloud (EC2), Elastic Load Balancing, and Route53.
	- Can Also work with non-AWS origin server.

	Edge Location - Location where content will be cached that is separate to an AWS Region/Avalibility Zone (AZ)
	- Not for Just READ only, you can write to them too.
	S3 - Object based storage spread across multiple devices and facilities.
	- It's meant for files, not databases.
	- Files are stored in Buckets
	- Files can be up to 5TB
	- Unlimited storage
	- Universal Namespaced (uniquely global)
	- When you upload, you get a 200 for sucess
	- Objects consist of Key ( file name ) and value (data of file)
	- Optional versioning
	- Metadata
	IAM - Identity Access Management
	Used to manage users, groups, roles, and polices.
	IAM is universal which means that all users, groups, roles, permissions are not region specific ( at this time 2019 ).
	You can setup password rotation policies, MultiFactor Authentication

	Root Account
	- the initial account used to create the aws account
	- this should be the companies email account
	- has complete admin access (god mode)