AWS re:Invent recap 2020

Containers & Serverless

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS container services landscape
APPLICATION NETWORKING
AWS Cloud Map AWS App Mesh
Service discovery and service mesh

MANAGEMENT Amazon Elastic Amazon Elastic

Deployment, scheduling, Container Service Kubernetes Service
scaling, and management (Amazon ECS) (Amazon EKS)
of containerized applications

HOSTING Amazon Elastic

Compute Cloud AWS Fargate
Where the containers run (Amazon EC2)

IMAGE REGISTRY Amazon Elastic

Container Registry
Container image repository (Amazon ECR)
Amazon ECS Anywhere

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Use ECS to run containers where you like
Customers have container workloads, workflows, and application
portfolios that span AWS, on-premises, and other clouds

AWS is pushing the boundaries with AWS Outposts, AWS Wavelength,

AWS Local Zones, and now on-premises, edge, and hybrid capabilities

Customer AWS AWS AWS AWS

infrastructure Outposts Wavelength Local Zones Regions
 Preview
Amazon ECS Anywhere—how it works SG/ 1H2021

AWS Fargate

AWS Regions

AWS Local Zones

AWS Wavelength

AWS Outposts
Amazon Elastic Amazon Elastic Define your Manage
Container Registry Container Service application NEW containers
Build images and Select container images
ECS Anywhere Amazon ECS scales your
store using ECR or any and resources needed application and manages your
other repository for your application containers for availability
Compute options
Launch containers on
supporting compute services
Key architectural tenets of ECS Anywhere
The ECS control plane
remains in the AWS cloud
To continue to benefit from a fully managed
experience

Only information for managing

tasks is sent to the ECS control plane
This includes host health, container activity (launched,
stopped), and container health checks (if configured)

ECS Anywhere is infrastructure

agnostic
Works via compatible operating system on VMs, bare
metal, Raspberry Pi, etc.

In disconnected scenarios ECS

Anywhere tasks will continue to run
Tasks update and scaling operations or
communication to other in-region services require
cloud connectivity
Amazon EKS Anywhere

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon EKS
AWS does not modify Kubernetes. EKS is an upstream and certified
conformant version of Kubernetes (with backported security fixes)

AWS supports 4 versions of Kubernetes. This gives customers time

to test and roll out upgrades.

Provide a managed Kubernetes experience for performant,

Amazon EKS reliable, and secure Kubernetes clusters.

Makes Kubernetes operations, administration, and management

simple and boring.

Deploy a fully managed Kubernetes control plane based on open standards

Running Kubernetes clusters outside of AWS

EKS Distro provides customers version,

patching, and security alignment with Amazon
EKS
EKS Distro
Available today

EKS Anywhere provides cluster creation and

lifecycle with a set of management tools for EKS
Distro
EKS Anywhere
Coming soon
 2021
Announcing EKS Anywhere Coming

Create and operate Kubernetes in your data center and on your

existing hardware using the same consistent EKS experience

Built on open source Bundled with

Helps customers run Bring your existing bare
standards cluster components to
with secure, stable, and metal/self managed
lifecycle management accelerate readiness of
tested components compute
tooling production clusters
used to run Amazon EKS

Deploy and manage the lifecycle of EKS Distro clusters on-premises

Amazon EKS Dashboard in the AWS console
The EKS Dashboard provides you a unified view and operational visibility across
all your Kubernetes environments.
Summary
On-premises Cloud

Amazon EKS Distro Amazon EKS Anywhere Amazon EKS + AWS Amazon EKS + Amazon EC2 Amazon EKS +AWS Fargate
Outposts

Control Plane Customer Customer

Compute Customer Customer

Data Plane Customer Customer Customer Customer

Support Community
RedHat OpenShift Service On AWS

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
 NEW
Overview of Deployment Models Limited Preview

OpenShift OpenShift Red Hat OpenShift

Container Platform Dedicated Service on AWS
Build and manage in house Consume as service Consume as service

Customers with skills to

Customers who want to avoid managing the
Key Uses manage their own
environment and focus on the application
environment
Customizable Consistency, managed,
Consistency across
installation, integration purchased, supported
Customer Value environments and is
points, tooling, and and pay-as-you-go
fully managed
management pricing through AWS
Customers who want an
Customers who need to Customers with a large
AWS OpenShift
self manage and have a Red Hat footprint and
Best For experience with close
requirement for a high want a fully managed
integration to AWS
degree of customization service from Red Hat
services
ROSA differentiation

Console service Unified bill Joint support Integration with AWS

• Create OpenShift • Leverage your existing • Integrated support • Build containerized

clusters from the AWS AWS commitment to systems applications that
console or CLI use OpenShift • Contact Red Hat or integrate natively
• AWS integrated • Get a single unified AWS support with the more than
experience for cluster bill from AWS for both 170 AWS cloud-
• Built on Red Hat
creation and OpenShift and AWS native services
and AWS’ decades
management consumption of enterprise IT
• Foundation based on knowledge and
RHEL experience
Amazon Elastic Container Registry
(ECR)

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
Amazon ECR
FULLY-MANAGED, HIGHLY AVAILABLE CONTAINER ARTIFACT REGISTRY, INTEGRATED WITH AWS SERVICES

AWS Cloud
Amazon ECR

Push
Docker and OCI compliant
to pull anywhere
Pull

Managed and scalable

infrastructure On premises and
other clouds
Highly available, high Amazon EKS Amazon ECS AWS Fargate
performance
VPC
Security with
encrypted images and Availability Zone Availability Zone Availability Zone

vulnerability scanning
Authenticated access, Compute Container images, Helm
centralized IAM control charts, OCI artifacts

Native integration to AWS orchestrators and compute

 GA
A new public container registry from AWS SG

MEETING CUSTOMER NEED, LEVERAGING OUR EXPERIENCE OPERATING AMAZON ECR AT SCALE

Amazon ECR Public Gallery

Amazon ECR Public

Geo-replicated image storage Search for public container artifacts

Amazon CloudFront cache Image detail pages
Single, global URL Custom aliases
Essentially free to use Verified accounts
No AWS account needed to pull Free for anyone to browse

https://gallery.ecr.aws
Amazon ECR Public Pricing
FRICTIONLESS GETTING STARTED, ESSENTIALLY FREE, OPTIMIZED FOR OUR CUSTOMERS
Public image storage
Image owner
Use your AWS account to share images
50 GB each month always free
$0.10 per GB-month after
Not billed for geo-replicated images
Not billed when anyone pulls
https://aws.amazon.com/ecr/pricing
Data transferred on pulls
Image requester
Pulls without AWS authentication
(anonymous) limited to 500 GB each
month per source IP
Pulls with AWS authentication get 5 TB
free data transfer each month per AWS
account
Pulls from AWS compute with AWS
authentication get unlimited free data
transfer, regardless of region
 GA

Container Image Support for AWS Lambda

SG

PACKAGE AND DEPLOY FUNCTIONS AS CONTAINER IMAGES

Use a consistent set of tools for containers and

Lambda-based applications

Deploy large applications with AWS provided or

third party images of up to 10GB (ML, data
analytics, large dependencies)
 GA
1 millisecond billing granularity SG

AWS LAMBDA

Reduced the billing granularity for function

duration from 100ms to 1ms

Functions with short duration will see largest cost

benefits – interactive web calls, data streaming,
and more
Amazon MQ for RabbitMQ

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
 GA
Why use Amazon MQ for RabbitMQ? SG

Setup Scaling Security Upgrades Maintenance

Automatic Vertically scale Encryption in Managed Customized

provisioning of between transit over TLS administrative maintenance
single-node and Amazon MQ and encryption tasks, such as window
clustered broker instance at rest using software schedule
brokers with types KMS keys upgrades
best practices by
default
AWS re:Invent recap 2020
Front-End Web & Mobile

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS Amplify: Benefits across the entire app lifecycle

DEVELOP DELIVER MANAGE

MANAGE with AWS Amplify:
Manage app content and users with the admin UI NEW!

MANAGE Features
• Accessible outside AWS console
• Share access with non-developers (QA
testers, Product Managers)
• Content management functionality with
rich text support
• User and group management

Admin UI
MANAGE with AWS Amplify:
Manage app content and users with the admin UI NEW!
Amazon Location Services

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
 Preview
Amazon Location Service N. Virginia,
Ohio, Oregon,
Ireland, Tokyo

• Easy access to high-quality data

Maps
• Cost-effective
Places
Tracking
• Privacy and security Your
application

• Shorter time to production

Routing
Geofencing (coming)
Location-based engagement: Geomarketing

Amazon Location

Location
Tracking Amazon S3

Client
app
(SDK) Amazon Pinpoint
Marketer

Geofencing Amazon EventBridge

Offer
AWS re:Invent recap 2020
Developer Tools

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
AWS CloudShell

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
What is AWS CloudShell?

CLI Try out Explore Persist 1 Click

Interact with Quickly try out Explore new Save up to1GB One click to
your AWS documentation AWS services of data in your open a
Resources examples easily home folder command line
through the
AWS CLI
What’s in the box?
Everything installed on Amazon Linux 2 and …

CLIs Tools/Utilities/Shells Runtimes

AWS CLI (v2) Git Node

AWS SAM CLI Vim, Nano Python

AWS Elastic Beanstalk CLI PowerShell

AWS ECS CLI bash, zsh

AWS Fault Injection

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.
 S TRESS
O BSERVE
I MPROVE

Improve resilience and performance

Uncover hidden issues
Chaos engineering Expose blind spots
Monitoring, observability, and alarm

And more
Fully managed chaos engineering service
PREVIEW

Easy to Real-world Safeguards

get started conditions
 Server error (EC2)

Stop, reboot, and terminate instance(s) (EC2)

API throttling

Increased memory or CPU load (EC2)

Supported fault Kill process (EC2)

injections Latency injection (EC2)

Container instance termination (ECS)

Increase memory or CPU consumption per task (ECS)

Terminate nodes (EKS)

Database stop, reboot, and failover (RDS)

And more to come in 2021

Thank you!

© 2020, Amazon Web Services, Inc. or its affiliates. All rights reserved.