Summary and Quiz

Get a refresher on what you’ve learned in the CloudFormation chapter, and take a short quiz to validate your knowledge.

We'll cover the following

Summary
Test your knowledge

In this lesson, we’ll summarize what we’ve learned in this section and test our knowledge of the AWS CloudFormation service with a short quiz.

Summary

Here’s a summary of the key takeaways from this section:

AWS CloudFormation service: The AWS CloudFormation manages the AWS cloud infrastructure as code. CloudFormation allows us to provision and manage AWS cloud resources as a collection, also known as a stack.
Benefits of CloudFormation: AWS CloudFormation offers the following benefits:
- Automation: We can automate the management of our AWS cloud infrastructure, reducing any manual overhead.
- Easier resource management: We can leverage the AWS CloudFormation service to improve the scalability and consistency of our AWS cloud infrastructure.
- Reusability across regions: We can reuse CloudFormation templates for deployment in different AWS regions and AZs.
- Tracking changes: We can easily track modifications to our cloud infrastructure.
- Cost management: We can tag resources in CloudFormation stacks for easier cost tracking.
Cost considerations: While CloudFormation itself is free, users can still incur costs for the AWS resources provisioned through CloudFormation. AWS follows the pay-as-you-go model without upfront commitments.

Press + to interact

CloudFormation templates: CloudFormation templates are declarative files, written in either JSON or YAML, specifying AWS resources for CloudFormation to provision with the required configurations.
Creating CloudFormation templates: Templates can be manually written, modified from existing ones, or visually designed using AWS tools like the CloudFormation Designer. Templates can also be generated by importing existing AWS resources into CloudFormation.
Anatomy of CloudFormation templates: A CloudFormation Template includes the following sections: AWSTemplateFormatVersion, Description, Metadata, Parameters, Mappings, Conditions, Resources, and Outputs.
Change sets: A change set is a summary of proposed changes to a CloudFormation stack generated when updating or creating a stack. It allows previewing and validating modifications, additions, or removals of AWS resources before implementing them into the stack.

Press + to interact

Using change sets: Change sets are generated automatically when updating a stack or creating a new one, providing a preview of changes. They can be viewed, modified, and validated before execution, ensuring the stack is updated as intended.
Drifts in a stack: Drifts are unintended changes made directly to AWS resources outside of CloudFormation, which can cause discrepancies between the stack’s actual state and the proposed state in the template.
Stack policies: These are JSON documents defining permissible actions on CloudFormation stack resources. When updating a stack, they safeguard critical resources from unintended or unauthorized modifications or deletions.

Press + to interact

CloudFormation helper scripts: These helper scripts facilitate the initialization and configuration of runtime-based AWS resources like EC2 instances. These helper scripts are as follows:
- cfn-init: We use the cfn-init helper script to install packages, create files, and configure services based on configuration in the metadata.
- cfn-signal: We use the cfn-signal helper script to signal CloudFormation that the EC2 instance has initialized.
- cfn-hup: We use the cfn-hup helper script to detect metadata changes and execute any required commands accordingly.
- cfn-get-metadata: We use the cfn-get-metadata helper script to retrieve metadata of any requested AWS resources provisioned with CloudFormation.

Test your knowledge

Take a short quiz to validate that knowledge and to make sure you’ve not missed out on anything:

Get hands-on with 1300+ tech skills courses.

Introduction

AWS Fundamentals

Understanding Cloud Computing Essentials— From Zero to Hero

Identity and Access Management

Securing AWS Resources: Managing Access with IAM

AWS IAM Permission Boundaries

Using AWS IAM Access Analyzer

Compute Services

Understanding AWS Compute Services — From Zero to Hero

Amazon EC2: Elastic Compute Cloud

Working with Instances: An Amazon EC2 Walkthrough

Managing Instance Volumes Using EBS

Networking

Understanding Networking Services in AWS—From Zero to Hero

Controlling VPC Traffic Using Network ACLs

Managing Peer Connections between Amazon Virtual Private Clouds

Accessing AWS Services over AWS PrivateLink Using VPC Endpoints

Monitoring IP Traffic Using VPC Flow Logs

Route 53

Serverless Computing

Getting to Know AWS Lambda

Building and Deploying Serverless Applications with AWS SAM

Developing RESTful Microservices with API Gateway and DynamoDB

Building a WebSocket-Based Chat Application Using API Gateway

Mastering AWS AppSync Lambda Resolvers

Application Integration

Getting Started with Amazon Simple Queue Service (SQS)

Handling Amazon SNS Notifications with AWS Lambda

Build a Fanout Serverless Architecture using SNS, SQS, and Lambda

Decoupling Serverless Applications with Amazon EventBridge

Getting Started with AWS Step Functions

Containers

Getting Started with Amazon ECS

Create an EKS Cluster and Deploy an Application

High Availability and Scalability

Managing Application Traffic Using Elastic Load Balancers

Understanding Auto Scaling Group (ASG) in AWS

Mastering Amazon EC2 Dynamic Scaling Policies

Storage

Understanding AWS Storage Options—From Zero to Hero

Simple Storage Service (S3)

Working with AWS S3 Cross-Region Replication

Resizing Images with S3 Batch Operations and AWS Lambda

Managing Data Access with Amazon S3 Access Points

File Storage and Transfer

Getting Started with Amazon FSx for Windows File Server

Databases

Working with Relational Databases: A Beginner's Guide to AWS RDS

Getting Started with Amazon Aurora Database Engine

Working with NoSQL Databases: A Beginner's Guide to AWS DynamoDB

Exploring Graphs with Amazon Neptune

Getting Started with Amazon Keyspaces

Achieving Ultra-Fast Performance Using Amazon MemoryDB for Redis

Improving Database Performance with Amazon ElastiCache for Redis

Migration and Transfer

Use of AWS Database Migration Service from Aurora MySQL to S3

Security and Compliance

Getting Started with AWS Key Management Service (KMS)

Encrypting S3 Buckets and EBS Volumes Using KMS

Protecting Web Applications Using AWS WAF

Managing Aurora DB Credentials and API Keys Using Secrets Manager

Finding Vulnerabilities on EC2 Instances Using AWS Inspector

Deployment Services

Mastering AWS Deployment Services—From Zero to Hero

CloudFormation

Getting to Know AWS CloudFormation

AWS CloudFormation Updates: Change Sets and Stack Policies

Mastering AWS CloudFormation Helper Scripts

Machine Learning

Understanding Machine Learning Services on AWS—From Zero to Hero

Deploying a Machine Learning Model with Amazon SageMaker

Getting Started with Amazon Fraud Detector

Build an Educative Chatbot with Conversational AI Using AWS Lex

Content Delivery and Optimization

Analytics

Analyzing S3 Data and CloudTrail Logs Using Amazon Athena

Getting Started with Amazon EMR

Getting Started with Amazon Redshift

Building ETL Pipelines on AWS

Create a Data Lake with Lake Formation and Analyze It with Athena