05 Compute Scalability

Question 1

Describe the On-demand purchase option for EC2.

Answer 1

On-demand is the default purchase option that allows immediate access to EC2 instances without any long-term commitment.

Question 2

How does the Spot purchase option work in EC2?

Answer 2

Spot offers surplus capacity at a discount, where users bid a maximum price, but are charged the actual spot price. Instances run until the spot price exceeds the maximum bid.

Question 3

What are Spot interruption notices in EC2?

Answer 3

Spot interruption notices provide a two-minute advance warning of interruptions, accessible via IMDS on the instance or EventBridge.

Question 4

Define Reserved instances in EC2.

Answer 4

Reserved instances provide discounts for long-term, consistent usage commitments, which can be tied to specific instance types and availability zones.

Question 5

How can smaller Reserved instances affect larger instances in EC2?

Answer 5

Smaller Reserved instances can partially cover the costs of larger instances, such as a reservation for an m5.xlarge partially offsetting the cost of an m5.2xlarge.

Question 6

What are Scheduled reservations in EC2?

Answer 6

Scheduled reservations are long-term commitments for usage during specific time windows, such as daily or weekly.

Question 7

Describe Dedicated hosts in EC2.

Answer 7

Dedicated hosts provide access to single-tenant hardware, with pricing based on the host, allowing instances to be launched on top of it, useful for licensing that depends on physical machines.

Question 8

What is the purpose of Dedicated instances in EC2?

Answer 8

Dedicated instances automatically assign instances to hosts, ensuring that hosts are not shared with other customers, primarily for compliance reasons.

Question 9

How do On-demand capacity reservations work in EC2?

Answer 9

On-demand capacity reservations reserve capacity for EC2 instances, but the on-demand rate is billed even if the reserved capacity is not used.

Question 10

Define Savings plans in the context of EC2.

Answer 10

Savings plans are 1 or 3 year commitments for hourly spend that offer more flexibility and can be applied to EC2, Fargate, and Lambda.

Question 11

What are ENIs in EC2?

Answer 11

ENIs, or Elastic Network Interfaces, are virtual interfaces used for networking in EC2 instances.

Question 12

How is the primary ENI related to an EC2 instance?

Answer 12

The primary ENI is tied to the lifecycle of the EC2 instance, meaning it is created and deleted with the instance.

Question 13

Describe the characteristics of Secondary ENIs in AWS.

Answer 13

Secondary ENIs can be added at any time, must be in the same Availability Zone (AZ), and can link to other subnets. Security groups are attached to ENIs, not instances.

Question 14

How does the private IP address of an ENI behave during instance restarts?

Answer 14

The private IP address of an ENI is static and does not change when the instance restarts.

Question 15

Define the SRC/DST check in relation to ENIs.

Answer 15

The SRC/DST check drops packets if the source or destination address isn’t on the ENI. It should be disabled for self-hosted NAT and similar configurations.

Question 16

What are the two methods to customize EC2 instances with software?

Answer 16

The two methods are Bootstrapping using custom user data and AMI baking, which uses a custom AMI created from an instance with the software installed.

Question 17

How does AMI baking benefit instance readiness?

Answer 17

AMI baking allows instances to be ready faster, making it ideal for scenarios like autoscaling.

Question 18

Describe the purpose of placement groups in AWS.

Answer 18

Placement groups influence where instances are physically placed to optimize performance, such as minimizing network latency or ensuring instances run on different hardware.

Question 19

What is the function of a Cluster placement group?

Answer 19

A Cluster placement group packs instances close together to minimize inter-instance network latency, ideally with the same instance type and started at the same time.

Question 20

Explain the goal of a Spread placement group.

Answer 20

A Spread placement group aims to ensure that every instance runs on different hardware, and it can span multiple Availability Zones (AZs) with a limit of 7 instances per AZ.

Question 21

Define Partition placement groups and their characteristics.

Answer 21

Partition placement groups launch instances into isolated partitions, with a maximum of 7 partitions per AZ, allowing unlimited instances to be launched per partition.

Question 22

How does the DNS name of an ALB function in AWS?

Answer 22

The DNS name of an Application Load Balancer (ALB) resolves to the nodes located in the ALB’s subnets, which have public and private IPs unless the ALB is set to internal.

Question 23

What is the minimum requirement for IPs available for a load balancer?

Answer 23

At a minimum, 8 IPs must be available for the load balancer, but more should be available for scaling.

Question 24

Describe the concept of cross-zone load balancing.

Answer 24

Cross-zone load balancing allows nodes in one Availability Zone (AZ) to direct traffic to nodes in another AZ, enhancing load distribution.

Question 25

Describe the purpose of Network Load Balancers (NLBs).

Answer 25

NLBs are used for non-HTTP(s) traffic such as UDP and SSH, and they are required when a static IP is needed.

Question 26

How does the deregistration delay function in load balancing?

Answer 26

The deregistration delay allows in-flight connections to complete for a certain period of time after a target is deregistered, with the default period being 300 seconds.

Question 27

Define the X-Forwarded-For header and its purpose.

Answer 27

The X-Forwarded-For header allows the target to see the IP of the original requestor, appending multiple hops to a list of IPs if applicable.

Question 28

Explain the PROXY protocol and its relation to NLBs.

Answer 28

The PROXY protocol is similar to X-Forwarded-For but operates at Layer 4, making it compatible with Network Load Balancers.

Question 29

What is the role of Gateway Load Balancers (GWLB)?

Answer 29

GWLBs are used for running third-party appliances that inspect traffic, such as firewalls and intrusion detection systems.

Question 30

How does the GENEVE tunneling protocol function in Gateway Load Balancers?

Answer 30

The GENEVE tunneling protocol ensures that traffic packets are not modified during transmission.

Question 31

Describe flow stickiness in the context of Gateway Load Balancers.

Answer 31

Flow stickiness ensures that traffic from one source is consistently sent to the same appliance.

Question 32

What is the function of Autoscaling Groups (ASGs)?

Answer 32

ASGs maintain the number of running instances at the desired capacity based on a single launch configuration or launch template version.

Question 33

How do scaling policies work in Autoscaling Groups?

Answer 33

Scaling policies adjust the desired capacity of ASGs to match demand, using either scheduled scaling for time-based adjustments or dynamic scaling based on metrics.

Question 34

Define simple scaling in the context of dynamic scaling.

Answer 34

Simple scaling uses straightforward rules based on CloudWatch Metrics to make scaling decisions.

Question 35

Describe stepped scaling in the context of auto-scaling groups.

Answer 35

Stepped scaling is a method that adjusts the size of the response based on how far the metric is from the expected value, allowing for more nuanced scaling actions.

Question 36

How does target tracking work in auto-scaling groups?

Answer 36

Target tracking automatically makes adjustments to maintain a specified metric at a target value, ensuring optimal performance.

Question 37

Define the cooldown period in auto-scaling.

Answer 37

The cooldown period specifies a time to wait after one scaling action before performing another, preventing rapid scaling actions that could destabilize the system.

Question 38

What are lifecycle hooks in auto-scaling groups?

Answer 38

Lifecycle hooks allow custom actions to take place when an instance launches or is terminated, enabling additional processes during these events.

Question 39

Explain how auto-scaling groups handle unhealthy instances.

Answer 39

Auto-scaling groups automatically replace unhealthy instances using EC2 health checks, ELB health checks, or custom health checks to ensure system reliability.

Question 40

What is the purpose of EC2 health checks in auto-scaling?

Answer 40

EC2 health checks ensure that the instance is ‘RUNNING’ and passes its instance status checks, helping to identify and replace unhealthy instances.

Question 41

Describe the function of ELB health checks in auto-scaling groups.

Answer 41

ELB health checks ensure that the instance is ‘RUNNING’ and passing its Elastic Load Balancer health checks, contributing to the overall health of the application.

Question 42

What are custom health checks in the context of auto-scaling?

Answer 42

Custom health checks allow an external monitoring system to label the health of instances, providing flexibility in health assessment.

Question 43

Define the grace period in auto-scaling groups.

Answer 43

The grace period, which defaults to 300 seconds, is a time during which health checks are ignored, allowing the instance time to bootstrap and become operational.

Question 44

How are Lambda versions and aliases different?

Answer 44

Lambda versions are immutable, meaning they cannot be changed once created, while aliases can be adjusted to point to different versions or perform weighted routing.

Question 45

What role does the Systems Manager Agent play in AWS?

Answer 45

The Systems Manager Agent manages AWS and on-premises infrastructure, maintaining an inventory of installed software, patching instances, and running commands.

Question 46

Explain the connection process for on-premises instances using Systems Manager.

Answer 46

On-premises instances are connected using an activation code and an IAM Anywhere role, allowing them to be managed through AWS Systems Manager.

Question 47

What is the purpose of Session Manager in AWS Systems Manager?

Answer 47

Session Manager securely connects to EC2 instances, providing a way to manage and interact with instances without needing SSH access.

Question 48

Describe the purpose of the SSM VPCe.

Answer 48

The SSM VPCe is used for instances in private VPCs.

Question 49

How does Run Command facilitate command execution?

Answer 49

Run Command allows command documents to be executed at scale, targeting single instances or groups based on tagging or resource groups.

Question 50

Define concurrency in the context of Run Command.

Answer 50

Concurrency controls how many instances are targeted in parallel during command execution.

Question 51

What is the role of the error threshold in Run Command?

Answer 51

The error threshold controls how many individual executions can fail before the overall process is stopped.

Question 52

Explain how Patch Manager utilizes Run Command.

Answer 52

Patch Manager uses the Run Command to ensure instances meet the patch baseline.

Question 53

What are maintenance windows in Patch Manager?

Answer 53

Maintenance windows can be configured to avoid business hours and are where the targets, known as patch groups, are set.

Question 54

How does inventory function in Patch Manager?

Answer 54

Inventory ensures that the patches were applied correctly to the instances.

Question 55

What is an example of a patch baseline provided by AWS?

Answer 55

An example of a patch baseline is AWS-AmazonLinux2DefaultPatchBaseline, which includes critical and security updates.

Question 56

Describe the coverage of the AWS-WindowsPredifinedPatchBaseline-OS-Applications.

Answer 56

The AWS-WindowsPredifinedPatchBaseline-OS-Applications covers both the operating system and Microsoft applications.