AWS SNS

-

 AWS SNS




AWS SNS - 
  • Used to broadcast messages
  • Pub-sub model (publisher publishes messages to a topic, subscribers listen to the topic)
  • Instant message delivery (does not queue messages)


Encryption - 
  • In-flight encyption by default using HTTPS API
  • At-rest encyption using KMS keys
  • Client-side encryption


Access Management - 
  • IAM policies to regulate access to the SNS API
  • SNS Access Policies (resource based policies)
  • Used for cross-account access to SNS topic
  • Used for allowing other AWS services to publish to an SNS topic 

Standard Topics
  • Highest throughput 
  • At least once message delivery 
  • Best effort ordering 
  • Subscibers can be -
  • SQS queues
  • HTTP/HTTPS endpoints
  • Lamda function
  • Emails (using SNS)
  • SMS and mobile notification
  • Kinesis Data Firehouse to send the data into S3 or Redshift

Fifo Topics - 
  • Guaranteed  ordering of messages in that topic 
  • Publishing messages to a fifo topic reqiures - 
  • Group ID - messages will be ordered and grouped for each group ID
  • Message De-duplication ID - for de-deuplication of messages 
  • Can only have SQS FIFO queues as subscribers
  • Limited throughput (same as SQS FIFO) because only SQS FIFO queues can read from FIFO topics 
  • The topic name must end with .fifo

SNS + SQS Fanout Pattern - 
  • Fully decoupled, no data loss
  • SQS allows for - data persistence, delayed processing and retries of work
  • Make sure your SQS queues access policy allows for SNS to write






Message Filtering - 
  • JSON policy used to filter messages sent to SNS topics subscriptions
  • Each subscriber will have its own filter policy (if a subscriber doesn't have a filter policy, it recieves every message )
  • Ex. filter messages sent to each queue by the order status 

SNS + Lamda + DLQ - 
  • Lamda retries each failed message 3 times after which it is sent to the DLQ by Lamda 






Comments

Post a Comment

Popular posts from this blog

Introduction to Virtualization and Cloud Computing

-
Introduction to Virtualization and Cloud Computing Welcome to the session! This document provides an overview of the topics we'll cover today, along with helpful resources and instructions for hands-on practice. 1. Introduction to Virtualization What is Virtualization? Virtualization is the creation of a virtual version of hardware, allowing multiple operating systems to run on a single physical machine. Types of Virtualization Server Virtualization : Multiple virtual servers on one physical machine. Storage Virtualization : Combining multiple physical storage devices into a single virtual unit. Network Virtualization : Abstracting network resources into a manageable virtual framework. Key Benefits Efficient resource utilization Cost savings Scalability Simplified management Deep Dive Knowledge Virtualization uses a hypervisor (like VMware or VirtualBox) to manage VMs. Popular tools include KVM , Xen , and Microsoft Hyper-V . Real-tim...
Read more

Elastic Block Storage (EBS)

-
Image
 Elastic Block Storage (EBS) Elastic Block Storage (EBS) -  AWS Elastic Block Storage is a web service that provides block level storage volumes for use with amazon EC2 instances Amazon EBS volumes are highly available and reliable storage volumes that can be attached to any running instance and used like hard drive Amazon EBS allows you to create storage volumes and attach them to EC2 instances   It is used for various databses (both relational and non relational) as well as a wide range of application such as software testing and development  EBS provides a high performance option for many use cases it is directly attached to the instance Features of EBS  -  Amazon Elastic Block Storage  Region and availability zones are multiple physical location for your resources such as instances and EBS volumes Using security groups, you can specify the protocols, ports and source IP ranges that can reach your instances Elastic IP addresses are static IPv4 ...
Read more

AWS S3 (Simple Sorage Service)

-
Image
  S3 (Simple Sorage Service) S3 Bucket -  AWS S3 allows people to store objects in buckets Buckets must have globally unique (across all regions all account) Buckets are defined at a region level S3 looks like a global service but buckets are created in region Naming Convention -  No uppercase , No underscore 3-63 character long Not an IP Must start with lowercase letter or number  Must not start with prefix xn-- Must not end with suffix -s3alias S3 Object -  Object have a key  The key is th full path S3://my-bucket/myfile.txt S3://my-bucket/myfolder1/another_folder/myfile.txt/ There is no concept of directories within buckets Just keys with very long names that contains slashes ("/") AWS S3 Security -  User based IAM Policies - which calls should be allowed for a specific user from IAM  Resource-based -  Bucket Policies - Bucket wide rules from S3 consol-allows cross account  Object Access Control List (ACL) - finer grain (can...
Read more