A Cantrill - High Availability and Scaling

Question 1

True or False: Internet facing LB nodes can access only public EC2 Instances, NOT private.

Answer 1

False. Internet-Facing LB nodes can access BOTH public and private EC2s that are behind them

Question 2

Which ELB is faster? NLB or ALB

Answer 2

NLB is faster than ALB because they dont inspect incoming requests.

Allowing them to foward incoming requests more quickly, reducing latency.

Question 3

How can ALB rules help handle large specific Enterprise customers?

Answer 3

Filter traffic based on the Source IP.

Question 4

What protocols does NLB support?

Answer 4

Layer 4 - TCP, TLS, UDP, TCP_UDP

Question 5

What are some specific use cases for NLB over ALB?

Answer 5

SMTP, SSH, Game servers, Financial apps (not http/s)

Question 6

If you need unbroken E2E encryption support for your LB which should you choose?

Answer 6

NLB using TCP listeners. This will maintain the encryption after it passes through the LB.

Question 7

If your ALB needs to be able to provide static IP whitelisting what LB should you choose?

Answer 7

NLB provides the ability to whitelist Static IPs.

Question 8

What ALB can be integrated with Privatelink?

Answer 8

NLBs can support Privatelink

Question 9

Can you edit / update Launch configurations and Launch templates?

Answer 9

Launch Configs and templates are NOT editable.

Launch templates do have version capabilities.

Question 10

What is simple scaling policy?

Question 11

What is a GWLB?

Answer 11

Gateway Load Balancers enable you to deploy, scale, and manage virtual appliances, such as firewalls, intrusion detection and prevention systems, and deep packet inspection systems.

It combines a transparent network gateway (that is, a single entry and exit point for all traffic) and distributes traffic while scaling your virtual appliances with the demand.

Question 12

What is SSL Offload?

Answer 12

HTTPS to the LB, HTTP to the instance

Question 13

Which load balancer is allocated with a static IP?

Answer 13

Network Load Balancer

Question 14

How do you ensure EC2s in an ASG across multiple AZs receives equal % of traffic?

Answer 14

cross-zone load balancing - distributes traffic across the registered targets in all enabled Availability Zones

Question 15

Does ELB have a feature that allows you to view information such as requests, client IP address, latencies, request paths, and server responses? And if so what is this feature called?

Answer 15

Yes, ELB provides access logs that capture detailed information about requests sent to your load balancer. This is called Access Logs.

Question 16

What is Amazon CloudWatch Application Insights used for?

Answer 16

A feature that allows CloudWatch to scan resources you specify (RDS, EC2, ECS Anywhere, SQL) and will recommend and configure logs and metrics in CW for these applications.

Question 17

What layer of OSI model is gRPC and which ELB supports this protocol?

Answer 17

gRPC is a layer 7 protocol, therefore ALB is suitable to support this.

Question 18

What layer is SQL injection attempts and cross-site scripting?

Answer 18

Layer 7.