A Cantrill - HYBRID ENVIRONMENTS AND MIGRATION

Question 1

How does BGP determine “best” path ?

Answer 1

Number of hops in a path. Path length, shortest path is best.

Question 2

What is the speed limit for AWS connected VPNs?

Answer 2

1.25Gbps

Question 3

What is a benefit of VPNs?

Answer 3

-Speed of setup is better than other private connections. All software defined
-Can be used with Direct Connect or used as a backup for DX (Direct Connect)
-Faster to setup vs DX but DX is more high performance

Question 4

What is AWS Site-to-Site VPN ?

Answer 4

AWS Site-to-Site VPN is a hardware VPN solution which creates a highly available IPSEC VPN between an AWS VPN and external network such as on-premises traditional networks.

Question 5

What is AWS DX?

Answer 5

Private, secure connection from your on prem network to private or public aws services.

Question 6

Is DX redundant or resilient by default?

Answer 6

DX is NOT redundant/resilient by default. There are multiple points of failure initially by default

Question 7

What is TGW?

Answer 7

The AWS Transit gateway is a network gateway which can be used to significantly simplify networking between VPC’s, VPN and Direct Connect.

Question 8

What AWS product supports transitive routing for VPNs across accounts and regions?

Answer 8

TGW (Transit Gateway) is the networking gateway that is used to transitive routing (eliminated full mesh setup)

Question 9

What protools does Storage GW - volume use?

Answer 9

iSCSI, NFS or SMB.

Question 10

What services does Storage GW integrate with?

Answer 10

EBS, S3 and Glacier.

Question 11

When using storage gw in “volume stored” mode is storage on prem as well?

Answer 11

in volume stored mode for storage gw, all data is stored locally.

great for server backups and DR.

Question 12

What is the difference between stored and cached mode in Storage GW ?

Answer 12

Stored mode - the data is stored locally and synced to AWS (for backup/DR purposes)

Cached mode - the data is stored straight to AWS and only frequently accessed data is cached locally ( great for extending storage to AWS if you are limited on prem)

Question 13

What is AWS Directory Service?

Answer 13

Managed directory services for AWS.

Question 14

which AWS managed file storage is best that needs to be accessible over SMB?

Answer 14

FSx uses SMB (Windows)

Question 15

What is AWS transfer Family?

Answer 15

AWS Transfer Family is a secure transfer service that enables you to transfer files into and out of AWS storage services.

Question 16

What is VTL and what AWS service should be associated with it for the exam?

Answer 16

Virtual Tape Library = VTL. Storage Gateway - Tape.

Question 17

Is Direct Connect encrypted by default?

Answer 17

No DX is not encrypted by default.

Question 18

How can a private encrypted connection be created using Direct Connect?

Answer 18

Using a S2S VPN over a public VIF

Question 19

What protocol does Site-to-SIte VPN use?

Answer 19

IPSec

Question 20

What modes does the AWS Directory Service Support?

Answer 20

-Simple AD
-Active Directory Connector
-AWS Managed Microsoft AD