DonGamers DevOps Project
Project title |
DonGamers NodeJS Final project poster |
Team |
CLOUDOPS24 |
Status |
IN REVIEW |
Last date updated |
25 Nov 2021 |
On this page |
Pillars of the AWS Well-Architected Framework
Name |
Description |
Operational Excellence |
The ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures. |
Security |
The ability to protect information, systems, and assets while delivering business value through risk assessments and mitigation strategies. |
Reliability |
The ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues. |
Performance Efficiency |
The ability to use computing resources efficiently to meet system requirements, and to maintain that efficiency as demand changes and technologies evolve |
Cost Optimization |
The ability to run systems to deliver business value at the lowest price point. |
AWS Well Architected Framework PDF
Problem Space
- Scalable and elastic platform for hosting NodeJS application on AWS
- MongoDB cluster on MongoDB cloud (Hosted on AWS)
- CI/CD pipelines
- DevOps Strategies
- Security and IAM policies
- DDoS protection
- Cost and infrastructure performance monitoring and optimization
- Backup and Redundancy Solutions
Goals
- Scalable and Elastic NodeJS application Architecture on AWS BeanStalk
- MongoDB Cluster on MongoDb cloud in same region peered with application cloud
- Amazon CodePipeline for CI/CD
- Blue-Green Deployment DevOps Strategy to ensure continuous development and zero downtime surety
- AWS IAM and SG policies to ensure authentication and security
- AWS WAF for DDoS protection
- AWS CloudWatch for cost and performance monitoring
- Snapshot service for daily backups and rollover features to latest stable versions
Deployment strategy
Application VPC
Deployment Scheme |
Deployment Strategy |
Description |
Region |
us-east-2 (Ohio) |
|
Availability Zone |
us-east-2a |
Single AZ Deployment |
DNS Resolving |
Route 53 |
|
NodeJS Hosting platform |
Elastic BeanStalk |
Application Hosting PaaS with AutoScaling |
Workload Engine |
EC2 |
Logical Virtualized Machines |
EC2 family |
t3.xlarge |
Ideal for Microservices and application hosting ( 4cores vCPU, 16GB RAM) |
Scalability |
AWS EC2 Auto Scaling |
AutoScales EC2 to meet current load requirements |
Load Balancing |
Application Load Balancer |
Managing incoming traffic to multiple targets |
Backups and Failover |
AWS Snapshots Elastic BS rollover feature |
Interval backup and retention policy and rollover in case of disaster |
CI/CD Pipelines |
AWS CodePipeline (AWS CodeBuild, AWS CodeDeploy) |
To manage CI/CD pipelines. Makes, builds and deploy codes on required targets |
Object Storage |
AWS S3 |
For object storage and link with MongoDB Atlas |
DevOps Strategy 1. Staging Environment 2. Production Environment |
Elastic Beanstalk’s Blue-Green Deployment Strategy with URL swapping techniques |
Blue Green Deployment to continuous code testing and deployments on production environment with zero downtime |
Authentication |
AWS IAM |
For authentication to access AWS resources and services |
Infrastructure Security & Firewall |
AWS EC2 SGs & VPC Subnet ACL |
SG as Firewall to underlying infrastructure and ACL for subnet route Table Enteries |
Security Audit |
AWS inspector |
To Audit and optimize infrastructure and architecture security policies |
DDoS protection |
AWS WAF |
Web Application Firewall for DDoS protection |
Performance and Cost Monitoring |
Amazon CloudWatch |
Amazon CloudWatch for resources, cost and performance monitoring |
Database VPC (MongoDB Atlas – hosted on AWS)
Deployment Scheme |
Deployment Strategy (MongoDB Atlas Services) |
Decription |
Region |
us-east-2 (Ohio) |
|
Performance Optimization |
1. Elastic Scalability 2. Native Sharding 3. Capacity AutoScaling |
on-demand scaling |
Secure Foundation |
1. High Availability 2. Built in Security 3. Automated Backups 4. Cluster Services |
Fully managed DB Service |
Peering with Application VPC |
AWS VPC Peer |
for peer to peer connection with Application cloud |