What I have learned about EC2 on AWS

This is the third post of content for preparing yourself for becoming an AWS Solutions Architect Associate.

In this post, we are going to focus on Elastic Cloud Compute, EC2, on AWS.

As I have done previously let’s look at the similarities and differences to the closest equivalent in Azure. EC2 is the Infrastructure as a Service (IaaS) compute service within AWS. It is the same as Azure Virtual Machines.

AWS has similar pricing options as Azure:

EC2 instances have families of instances similar to Azure. T3 is the lowest cost general purpose EC2 family. M5 are general purpose typically used for Application servers. Full list can be found at this link: https://aws.amazon.com/ec2/instance-types/.

Subnet availability zones for EC2 assignments are randomly assigned and may be different from one instance to another, or you can choose manually.

Security group rules for VPC can be created when configuring an EC2 instance.

Reserved instances can be purchased within the console under instances. This allows you to purchase the term and determine the upfront amount that you want to pay. This is much more flexible to accomplish than within Azure.

Encryption - Defined when configuring the EC2 instance and can encrypt the root device volumes and EBS volumes during configuration. Additional process to encrypt after the EC2 instance has been created.

When terminating (deleting) the EC2 instance, the default is that the root EBS volume is deleted and any additional EBS volumes remain unassigned, unless they are selected for deletion at termination.

EC2 root device EBS volumes can be encrypted at creation. If you create the instance without encrypted volumes, you can create an encrypted snapshot and then launch the EC2 from the snapshot AMI.

Only un-encrypted snapshots can be shared.

EC2 hibernate - saves the in-memory RAM to the EBS root volume to increase the time to resume the instance. Previous state is retained along with the instance ID. Hibernation needs to be enabled on the EC2 instance to use and root volume must be encrypted. Cannot be hibernated for more than 60 days.

Security groups

I hope that you are enjoying this information so far. It is helping me to continue to comprehend these services as I prepare for the exam myself. Thank you very much.

EC2 Placement groups

Three types:

Placement groups are similar to Azure Availability groups with update domains and fault domains to maintain uptime and availability of instances when there is a potential hardware or software failure within a data center or the data center racks.

High Performance Compute (HPC) on AWS

Ingesting and moving data into AWS:

Compute and Networking:

Storage services

Orchestration and Automation


WAF views into the query string parameter and can allow or block the traffic.

Block IP addresses, country of origin, strings that match attacks, malicious SQL code or scripts (XSS).

Reference links:

What I’ve Learned about IAM on AWS


What I’ve Learned about S3 on AWS


What I’ve Learned about EC2 on AWS


What I’ve Learned about EBS on AWS


What I’ve Learned about Cloudwatch on AWS


What I’ve Learned about RDS on AWS


What I’ve Learned about Route 53 on AWS


What I’ve Learned about VPC on AWS


What I’ve Learned about High Availability on AWS


What I’ve Learned about Applications on AWS


What I’ve Learned about Security on AWS


What I’ve Learned about Lambda and serverless on AWS