06 Monitoring Flashcards
Describe the structure of metrics in CloudWatch.
Metrics in CloudWatch are a time-ordered set of data points organized based on their name, namespace, and dimensions.
How does CloudWatch handle high-resolution metrics?
CloudWatch offers 1 second high-resolution metrics for an additional charge, while the default resolution is 60 seconds.
What triggers alarms in CloudWatch?
Alarms in CloudWatch are triggered when a metric crosses a specific threshold.
Define the two key features of CloudWatch Logs.
The two key features of CloudWatch Logs are ingestion and subscription.
How do metric filters work in CloudWatch Logs?
Metric filters in CloudWatch Logs count how often a specific pattern is observed and can be used to generate alarms.
What is the purpose of subscriptions in CloudWatch Logs?
Subscriptions in CloudWatch Logs automatically send log events, or a subset based on a filter, to another AWS service.
Describe the role of Kinesis Firehose in CloudWatch Logs.
Kinesis Firehose is used for delivering log events to services like S3 from CloudWatch Logs.
How long are CloudTrail events stored by default?
CloudTrail events are stored by default for 90 days.
What options are available for storing CloudTrail events beyond the default period?
CloudTrail events can be sent to S3 or CloudWatch for indefinite storage.
Define the purpose of trails in CloudTrail.
Trails in CloudTrail record events across all regions and can capture events from global services.
How are organisation trails created in CloudTrail?
Organisation trails are created from the management account of an AWS organisation and capture all events in member accounts.
What are cost allocation tags in AWS?
Cost allocation tags allow billing to be correlated with resources, helping to track costs.
What types of tags are available for cost allocation in AWS?
Several autogenerated tags are available for cost allocation in AWS.
Describe the tags automatically added to resources after cost allocation is enabled.
The tags aws:createdBy and aws:cloudformation:stack-name are automatically added to resources created after cost allocation was enabled.
Do user-created tags have any significance in AWS resources?
Yes, user-created tags can also be used to categorize and manage AWS resources.
Define Trusted Advisor in the context of AWS.
Trusted Advisor is a service that provides automated advice on resources in an AWS account.
How many checks do accounts with Basic or Developer support have access to in Trusted Advisor?
Accounts with Basic or Developer support have access to seven checks.
List some of the checks available to Basic or Developer support accounts in Trusted Advisor.
Checks include S3 Bucket Permissions, Security Groups for specific ports, MFA on Root Account, EBS Public Snapshots, RDS Public Snapshots, and checks for common service limits.
What additional checks do Business and Enterprise support accounts receive in Trusted Advisor?
Business and Enterprise support accounts receive additional checks for cost optimization, performance, security, fault tolerance, service limits, and operational excellence.
How can one access programmatic features of Trusted Advisor?
Programmatic access to Trusted Advisor requires a Business or Enterprise support plan.
