Amazon EFS Documentation

Amazon Elastic File System (Amazon EFS) is designed to provide a simple, serverless, elastic file system that lets you share file data without provisioning or managing storage. It can be used with AWS Cloud services and on-premises resources, and is designed to scale without disrupting applications.

Fully managed

Amazon EFS is a fully managed service that is designed to provide NFS shared file system storage for Linux workloads. Amazon EFS helps you simplify creating and configuring file systems. It is designed to handle tasks like managing file servers and storage, updating hardware, configuring software, and performing backups. You can create a fully managed file system by using the AWS Management Console, the AWS CLI, or an AWS SDK.

Availability & durability

Amazon EFS is designed to be highly available. By default, Amazon EFS is designed to redundantly store file system objects (i.e. directory, file, and link) across multiple Availability Zones (AZs) for file systems using Standard storage classes. If you select Amazon EFS One Zone storage classes, Amazon EFS is designed to redundantly store your data within a single AZ. Amazon EFS is designed to sustain concurrent device failures by quickly detecting and repairing lost redundancy. In addition, Amazon EFS is designed to enable a file system using Standard storage classes to be accessed concurrently from all AZs in the region where it is located, which means that you can architect your application to failover from one AZ to other AZs in the region. Mount targets are designed to be highly available within an AZ for all Amazon EFS storage classes.

Storage classes & lifecycle management

Amazon EFS offers Standard and One Zone storage classes for both frequently accessed and infrequently accessed files. The Standard and One Zone storage classes are both designed to deliver consistent low latencies. The Amazon EFS Standard-Infrequent Access (EFS Standard-IA) and Amazon EFS One Zone-Infrequent Access (EFS One Zone-IA) storage classes are intended for files accessed less frequently. You can help reduce your storage costs by enabling EFS Lifecycle Management for your file system and choosing an age-off policy (7, 14, 30, 60, or 90 days). You can also set a policy to move files from the infrequent access storage classes to the performance-oriented storage classes if files are accessed.

Security & compliance

You can manage network access to your file systems using Amazon Virtual Private Cloud (Amazon VPC) security group rules, and you can manage application access to your file systems using AWS Identity and Access Management (IAM) policies and EFS Access Points.

Scalable performance

Amazon EFS is designed to provide the throughput, IOPS, and low latency needed for a broad range of workloads. Throughput and IOPS can scale as a file system grows and can burst to higher throughput levels for short periods of time to help support the unpredictable performance needs of file workloads.

Shared file system with NFS support

Amazon EFS is designed to provide access for thousands of connections for Amazon EC2 instances, AWS container and serverless compute services, and on-premises servers simultaneously using a traditional file permissions model, file locking, and hierarchical directory structure via the NFS protocol. Amazon EC2 instances can access your file system across AZs and regions while on-premises servers can access via AWS Direct Connect or AWS VPN.

Elastic & scalable

With Amazon EFS, storage capacity is designed to grow and shrink as you add and remove files, dynamically providing the storage capacity to applications as they need it. Amazon EFS is designed to be highly scalable both in storage capacity and throughput performance. It is designed to allow parallel access from Amazon EC2 instances to your data. Amazon EFS is also designed to deliver file operations with consistent, low latencies.

Encryption

Amazon EFS offers you the ability to encrypt data at rest and in transit. Data at rest can be transparently encrypted using encryption keys managed by the AWS Key Management Service (KMS). Encryption of data in transit uses Transport Layer Security (TLS).

Containers & serverless file storage

Amazon EFS is integrated with containers and serverless compute services from AWS that may require shared storage for latency-sensitive, and IOPS-heavy workloads. Amazon EFS is designed to provide applications running on Amazon Elastic Container Service (ECS), Amazon Elastic Kubernetes Service (EKS), AWS Fargate, and AWS Lambda, access to shared file systems for stateful workloads.

Additional Information

For additional information about service controls, security features and functionalities, including, as applicable, information about storing, retrieving, modifying, restricting, and deleting data, please see https://docs.aws.amazon.com/index.html. This additional information does not form part of the Documentation for purposes of the AWS Customer Agreement available at http://aws.amazon.com/agreement, or other agreement between you and AWS governing your use of AWS’s services.