Chapter One

Compute

Eight services on the spectrum from full infrastructure control to fully managed execution. The right choice depends on your workload, your team's expertise, and how much operational overhead you are prepared to take on.

EC2

Raw virtual machines. You pick the AMI, instance type, disk, and network.

EKS / ECS

Managed orchestration. You manage tasks, services, and deployments.

Fargate

Serverless containers. No nodes to patch — you still build the image.

Beanstalk

Managed PaaS. Push code; AWS provisions and scales the stack.

Lambda

Event-driven functions. AWS runs your code per request; nothing when idle.

More controlLess ops

You manage the OS, patches, scaling.AWS manages everything except your code.

Core Terminology

A handful of terms appear throughout this guide. Defining them here keeps the service-level chapters focused on what matters.

Region

A geographic location such as us-east-1 or eu-west-1. Each Region is fully isolated; it affects latency, data-residency compliance, service availability, and pricing.

Availability Zone

One or more isolated data centers within a Region, with independent power and networking. Spreading across AZs is how you survive a single-facility failure.

Instance Type

A named hardware profile (such as m5.large) defining vCPUs, memory, and network capacity. Families target general-purpose, compute, memory, or accelerated workloads.

AMI

Amazon Machine Image — the template (OS, packages, configuration) an EC2 instance boots from.

IAM Role

An identity with permissions that workloads assume to call AWS APIs — the alternative to embedding long-lived access keys.

Security Group

A stateful virtual firewall attached to an instance or network interface, controlling inbound and outbound traffic by port, protocol, and source.

Services in This Chapter

Service 01

Amazon EC2

Virtual machines with full OS control. The foundation of AWS compute — used for legacy migration, stateful workloads, GPU jobs, and anything that needs the whole machine.

ComputeIaaS

Service 02

AWS Lambda

Function-as-a-service. Upload code, pick a trigger, pay per millisecond of execution. The glue of AWS-native and event-driven systems.

ServerlessFaaS

Service 03

Amazon ECS

AWS-native container orchestration. Simpler than Kubernetes, deeply integrated with the rest of AWS, and the pragmatic default for teams that do not need Kubernetes portability.

ContainersManaged

Service 04

Amazon EKS

Managed Kubernetes. The choice when you want the Kubernetes API and ecosystem — portability, Helm, operators — and can absorb the operational complexity.

ContainersKubernetes

Service 05

AWS Fargate

Serverless compute for containers, under both ECS and EKS. Removes the node fleet — no instances to patch, scale, or right-size. You pay per task.

ServerlessContainers

Service 06

AWS Elastic Beanstalk

Platform-as-a-service over EC2. Push code in a supported runtime; Beanstalk provisions the load balancer, instances, and scaling. The simplest path for a conventional web app.

PaaSManaged

Service 07

AWS Batch

Managed batch computing. Submit jobs; Batch provisions and scales the compute to run them, then scales back to zero. Built for queued, parallel, throughput-bound work.

ComputeBatch

Service 08

Amazon Lightsail

Simplified VMs with flat monthly pricing. A friendlier on-ramp than EC2 for small sites and simple apps — at the cost of the deep configurability EC2 provides.

ComputeVPS