AWS Outpost

• AWS Outposts is a fully managed service that extends same AWS infrastructure, AWS services, APIs, and tools to virtually any datacenter or on-premises facility for a consistent hybrid experience.
• Ideal for workloads that require low latency access to on-premises systems, local data processing, or local data storage.
• AWS compute, storage, database, and other services run locally on Outposts, and you can access the full range of AWS services available in the Region to build, manage, and scale your on-premises applications using familiar AWS services and tools.
• Outposts are connected to the nearest AWS Region.
• We can run following AWS Resources on AWS Outposts on premises:
  • Amazon EC2 instances
  • Amazon EBS volumes
  • Amazon EKS nodes
  • Amazon ECS clusters (container-based services)
  • Amazon RDS DB instances (database services)
  • Amazon EMR clusters (analytics services)
  • Amazon S3 for AWS Outposts will be available in 2020 for local object storage on Outposts.
• AWS Outposts allows you to securely store and process customer data that needs to remain on premises or in countries where there is no AWS region.
• With AWS Outposts, we do not need to manage different APIs, manual software updates, and purchase of third-party hardware and support.
• AWS Outposts is fully managed and supported by AWS. Outpost is delivered, installed, monitored, patched, and updated by AWS.
• AWS Outposts address low latency application requirements and local data processing requirements.

AWS Outposts Compute & Storage

• Choose from pre-validated configurations with mix of EC2, EBS, S3 capacity.
• Or contact AWS to customize configurations to meet your needs.

Compute

• General purpose (M5/M5d):
  • a balance of compute, memory, and network resources
  • can be used for general-purpose workloads, web and application servers, *backend servers for enterprise applications, gaming servers, and caching fleets.
• Compute optimized (C5/C5d):
  • suited for compute intensive applications such as batch processing, media transcoding, high performance web servers, high performance computing (HPC), scientific modeling, dedicated gaming servers and ad server engines, machine learning inference.
• Memory optimized (R5/R5d):
  • to deliver fast performance for workloads that process large data sets in memory.
  • suited for memory intensive applications such as high-performance databases, distributed web scale in-memory caches, mid-size in-memory databases, real- time big data analytics.
• Graphics optimized (G4dn):
  • To accelerate machine learning inference.
    • For machine learning inference for applications like adding metadata to an image, object detection, recommender systems, automated speech recognition, and language translation.
  • graphics-intensive workloads:
    • For building and running graphics-intensive applications, such as remote graphics workstations, video transcoding, photo-realistic design, and game streaming in the cloud.
• I/O optimized (I3en):
  • Non-Volatile Memory Express (NVMe) SSD instance storage optimized for low latency, high random I/O performance, high sequential disk throughput, and offers the lowest price per GB of SSD instance storage on Amazon EC2.
  • Suited for NoSQL databases (Cassandra, MongoDB, Redis), in-memory databases (Aerospike), scale-out transactional databases, distributed file systems, data warehousing, Elasticsearch, analytics workloads.

Storage

• Amazon EBS:
  • local instance storage - that gets vanished when EC2 instance is stopped.
  • Elastic Block Store (EBS) gp2 volumes for persistent block storage.
  • snapshot and restore capabilities
  • lets you increase volume size without any performance impact.
  • All EBS volumes and snapshots on Outposts are fully encrypted by default.
  • EBS is offered in tiers of 11 TB, 33 TB, and 55 TB.
• Amazon S3:
  • Store, Retrieve Data on Outpost
  • Secure Data
  • Control Access
  • Tags, Reports
  • S3 APIs
  • Add 26 TB, 48 TB, 96 TB, 240 TB, or 380 TB of S3 storage capacity
  • Create up to 100 buckets per AWS account on each Outpost
• Amazon EBS Snapshot:
  • a point-in-time copy of your EBS volumes.
  • Snapshots of EBS volumes on your Outpost are stored on Amazon S3 in the Region
    • in the region means in nearest cloud region? and not on local Outpost S3 storage?
      • If you have S3 provisioned on your Outpost, then you can store EBS snapshot on Outpost S3 itself, it’s called EBS Local Snapshot.
  • use EBS Local Snapshots on Outposts for disaster recovery and back up.
  • Secure and protect data on EBS storage using resource-level IAM policies.

Migration

• CloudEndure Migration:
  • allows customers to migrate workloads onto AWS Outposts from physical, virtual, or cloud-based sources, from on-premises locations, public AWS Regions, and other clouds to Outposts.
• using EBS Local Snapshots on Outposts:
  • migrate workloads from any source directly onto Outposts, or from one Outpost to another, without requiring the EBS snapshot data to go through the region.
• CloudEndure Disaster Recovery:
  • business continuity solution for physical, virtual, and cloud-based workloads onto AWS Outposts.
  • you can replicate and recover:
    • from on-premises to Outposts
    • from AWS Regions onto Outposts
    • from Outposts into AWS Regions
    • and between two Outposts.
  • CloudEndure Disaster Recovery improves resilience, enabling recovery point objectives (RPOs) of seconds and recovery time objectives (RTOs) of minutes.

Networking

Extended VPC

• Extend your existing Amazon VPC to your Outpost in your on premises location.
• Create a subnet in your regional VPC and associate it with an Outpost just as you associate subnets with an Availability Zone in an AWS Region.
• Instances in Outpost subnets communicate with other instances in the AWS Region using private IP addresses, all within the same VPC.

Local Gateway

• Each Outpost provides a new local gateway (LGW) that allows you to connect your Outpost resources with your on premises networks.
• LGW enables low latency connectivity between the Outpost and any local data sources, end users, local machinery and equipment, or local databases.

Load Balancer

• You can provision an Application Load Balancer (ALB) to automatically distribute incoming HTTP(S) traffic across multiple targets on your Outposts, such as Amazon EC2 instances, containers, and IP addresses.
• ALB on Outposts is fully managed, operates in a single subnet, and scales automatically up to the capacity available on the Outposts rack to meet varying levels of application load without manual intervention.

Private Connection to AWS Cloud

• With AWS Outposts Private Connectivity, you can establish a service link VPN connection </u>from your Outposts to the AWS Region over</u> AWS Direct Connect.
• Minimizes public internet exposure
• Removes the need for special firewall configurations.

AWS Services on Outposts:

Containers

• Amazon ECS:
  • Scalable, High-performance container orchestration service, supports Docker containers
  • run and scale containerized applications.
  • ECS eliminates the need for:
    • Install and Operate your own container orchestration software
    • Manage and Scale a cluster of virtual machines
    • Schedule containers on those virtual machines
  • With simple API calls, you can launch and stop Docker-enabled applications and query the complete state of your application.
• Amazon EKS:
  • Managed Service to run Kubernetes.
  • Used to run Containerized applications.
• AWS ECS vs AWS EKS:
  • Amazon ECS vs Amazon EKS: making sense of AWS container services

Databases

• Amazon RDS (Relational Database Service) :
  • supports Microsoft SQL Server, MySQL, and PostgreSQL database engines.
  • Amazon RDS provides cost-efficient and resizable capacity while automating time-consuming administration tasks including infrastructure provisioning, database setup, patching, and backups.
  • fully managed databases on premises
  • Amazon RDS can be managed using AWS Management Console, APIs, and CLI as if in cloud.
  • Amazon RDS enables low-cost, high-availability hybrid deployments, with disaster recovery back to the AWS Region, read replica bursting to Amazon RDS in the cloud, and long-term archival in Amazon Simple Storage Service (Amazon S3) in the cloud.
• Amazon ElastiCache:
  • Fully managed in-memory data store, compatible with Redis or Memcached
  • Optimized for real-time applications with sub-millisecond latency.
  • Amazon ElastiCache on Outposts enables real-time use cases like Caching, Session Stores, Gaming, Geospatial Services, Real-Time Analytics, and Queuing.

Data Analytics

• Amazon EMR:
  • Deploys secure and managed EMR clusters.
  • Deploys latest versions of Apache Spark, Apache Hive, and Presto to access critical on premises data sources and systems for big data analytics.
  • Use the EMR console, SDK, or CLI to specify the subnet associated with your Outpost to launch EMR clusters.

Upgrades to Outpost Services

• AWS services running locally on Outposts will be upgraded automatically to the latest version as and when available.
• Amazon RDS like services also patch both OS and database engines within scheduled maintenance windows with minimum downtime.

Access to Cloud hosted Regional Services

• We can extend our Amazon Virtual Private Cloud(VPC) on premises and run some AWS services locally on Outposts and also connect to a broad range of services available in the local AWS Region.
• We can access all regional AWS services in your private VPC environment, for example, through Interface Endpoints, Gateway Endpoints, or their regional public endpoints.

AWS Tools:

• With AWS Outposts, customers can access AWS tools running in the region such as, AWS CloudFormation, Amazon CloudWatch, AWS CloudTrail, Elastic BeanStalk, Cloud 9, and others to run and manage workloads on AWS Outposts the same way they do in the cloud.

AWS Resource Access Manager

• AWS Resource Access Manager (RAM) lets customers share access to Outposts resources – EC2 instances, EBS volumes, S3 capacity, subnets, and local gateways (LGWs) – across multiple accounts under the same AWS organization.

Further Readings

• AWS Outpost with AWS Greengrass Sample Architecture
• AWS Outpost Healthcare Sample Architecture
• Cloud at the Edge for Healthcare and Life Sciences
• Yet To Read:
• Deploying Containerized Application on AWS Outposts with Amazon EKS
• Building Modern Applications with Amazon EKS on Amazon Outposts
• Configuring an Application Load Balancer on AWS Outposts
• Managing your AWS Outposts capacity using Amazon CloudWatch and AWS Lambda
• Run applications on premises and access Amazon S3 objects from AWS Outposts
• Introducing AWS Outposts private connectivity