AWS Fundamentals

Question 1

AWS Public Service

Answer 1

Accessed using public endpoints

Question 2

AWS Private Service

Answer 2

runs within a VPC only things in the VPC or what is connected to the VPC can access the service

Question 3

AWS Regions Capabilities

Answer 3

full compute , storage Data base , AI and Analytics

Question 4

Aws Edge Location

Answer 4

local distribution point storing data is main use

mainly for fast data transfer closer= faster

Question 5

AWS Region

Answer 5

• geographic separation - isolated fault domain
• Geopolitical separation - Different governance
• Location control - Performance
• services can be placed in multiple availability zones to make them resilient

Question 6

Globally Resilient

Answer 6

service operates globally it’s one single product and it’s data is replicated across multiple regions(IAM & Route53)

Question 7

Region Resilient

Answer 7

operates in a single region with one set of data per region. replicates data in multiple AZs in that region

Question 8

AZ resilient

Answer 8

services that are run in a single availability zone prodded to failure if there are problems in that AZ

Question 9

How many Default VPC can you have per region?

Answer 9

one per region - can be removed and re-created

Question 10

Default VPC CIDR for AWS

Answer 10

default VPC CIDR is always 172.31.0.0/16

Question 11

How is the network default VPC divided between the regions?

Answer 11

/20 subnet in each AZ in the region

subnet assign public IPv4 addresses

Question 12

How is traffic control in the Default VPC?

Answer 12

• Internet Gateway(IGW), security group(SG) and NACL
• subnet assign public IPv4 addresses

Question 13

Elastic Compute Cloud (EC2)

Answer 13

• IAAS -provides Virtual machines → instances
• private service by default - use VPC networking
• AZ resilient - instance fail if AZ fails
• Different instance sizes and capabilities
• on-Demand Billing - per second
• Local on-host storage or Elastic block store (EBS)

Question 14

Virtual Private Clouds(VPC)

Answer 14

• Virtual network inside AWS
• A VPC is within account 1 and 1 region
• Private and isolated unless you decide otherwise
• you can only have 1 default VPC per region (configured by AWS by default)
• you can have many custom VPC per region

Question 15

Virtual Private Clouds(VPC)

Answer 15

• Virtual network inside AWS
• A VPC is within account 1 and 1 region
• Private and isolated unless you decide otherwise
• you can only have 1 default VPC per region (configured by AWS by default)
• you can have many custom VPC per region

Question 16

Virtual Private Clouds(VPC)

Answer 16

• Virtual network inside AWS
• A VPC is within account 1 and 1 region
• Private and isolated unless you decide otherwise
• you can only have 1 default VPC per region (configured by AWS by default)
• you can have many custom VPC per region

Question 17

Running EC2 instance Charges

Answer 17

1. CPU
2. Memory
3. Disk
4. Networking

Question 18

Stopped EC2 instance Charge

Answer 18

1. disk (via EBS storage)

Question 19

Terminated EC2 instance

Answer 19

your not charged for anying

Question 20

Amazon Machines Image (AMI)

Answer 20

Ami’s can be create from an EC2 instance or can be user to create a EC2 instance

Question 21

What are the 3 things that make up an AMI ?

Answer 21

1. permissions
2. Root volume
3. Block Device Mapping

Question 22

EC2 Block Device mapping

Answer 22

Links the volumes to determine if it’s a boot volume and which is a data volume

Question 23

Root Volume

Answer 23

Drives the OS

Question 24

What comprises a status check?

Answer 24

System check

checks if the ec2 instance is reachable by traffic

Instance check

The instance operating system is health and ready for traffic

Question 25

What's considered a heathy EC2 instance ?

Answer 25

An instance that passes 2/2 checks

Question 26

S3 Basics

Answer 26

* global storage platform - reginal based/resilient * public service, unlimited data &multi-user * Moves, Audio, Photos, Text, and Large data sets * economically and accessed via UI/CLI/API/HTTP *

Question 27

Buckets

Answer 27

containers for objects in s3

Question 28

Bucket Naming

Answer 28

names have to be unique across All Aws regions(globally unique)

Question 29

S3 Structure

Answer 29

storage is at the root it has a flat structure not like a file system folder structures are emulated using prefixes

Question 30

What are some limitations of s3 ?

Answer 30

you can't mount an s3 bucket as (k:\ or /images) S3 is an object store not a file or block storage

Question 31

What are some advantages of S3?

Answer 31

Great for large scale data storage, distribution or upload great for “offload” input and or output to many AWS products

Question 32

S3 Objects

Answer 32

key : value pair

Question 33

What does an S3 object contain ?

Answer 33

version ID Meta data access control sub resources

Question 34

Aws shared responsibility Model

Answer 34

customer responsible for security in the cloud AWS responsible for security of the cloud

Question 35

High Availability (HA)

Answer 35

aims to ensure an agreed level of operation performance usually uptime for a higher than normal period all about maximizing system online time

Question 36

Fault Tolerance (FT)

Answer 36

a property that enables a system to continue operating properly in the even of failure of some of it's components

Question 37

Disaster Recovery (DR)

Answer 37

as set of policies, tool and procedures to enable the recovery of continuation of vital technologies infrastructure and systems following a natural or human-induced disaster

Question 38

Cloud Formation

Answer 38

Tool that lets you create update and delete infrastructure in AWS using templates

Question 39

Cloud Formation Resources

Answer 39

tell the template what to do if resources are add and then cloud formation create resources if resources are removed then the cloud formation removes resources

Question 40

What happens if you delete a Cloud formation stack ?

Answer 40

The resources associated with the stack are also deleted

Question 41

What is DNS?

Answer 41

* DNS is a discovery service * Translates machines into human readable addresses and vice-versa * it is huge so it has to be distributed * has to accommodate IPv4 and IPv6 address space

Question 42

DNS Client

Answer 42

your laptop, phone, or PC

Question 43

Resolver

Answer 43

software on your device or a server which queries DNS on your behalf

Question 44

Zone

Answer 44

a part of the DNS database(e.g.amazon.com)

Question 45

Zonefile

Answer 45

physical database for a zone

Question 46

NameServer

Answer 46

where zonefiles are hosted

Question 47

Root Hints

Answer 47

configuration that points at the root server IPs and addresses

Question 48

Root Server

Answer 48

Hosts the DNS root Zone

Question 49

Root Zone

Answer 49

points at top level domain authoritative servers

Question 50

GTLD

Answer 50

generic top level domain(.com.org)

Question 51

CCTLD

Answer 51

Country-code top level domain( .uk .eu etc.)

Question 52

Route53 and key features

Answer 52

* register domains * Host Zones managed nameservers * global service single database * Globally resilience

Question 53

What's the process like for registering a domain ?

Answer 53

1. creates a zone file ex: animals4life.org 2. creating a number of managed name serves ex: usually a cluster of 4 servers per/ns 3. put zone files on servers 4. lesion with top level domains to get names address to the top level domain zone that point back at servers

Question 54

AWS Hosted Zones

Answer 54

zone files in AWS are host on 4 managed name server. Can be public or private linked to VPC(s). Stores records.

Question 55

What are Text Records used for ?

Answer 55

prove domain ownership and fight spam

Question 56

DNS TTL(Time to Live)

Answer 56

a numeric value telling others how long records can be cached for.

Question 57

Virtual Private Clouds(VPC)

Answer 57

* Virtual network inside AWS * A VPC is within account 1 and 1 region * Private and isolated unless you decide otherwise * you can only have 1 default VPC per region (configured by AWS by default) * you can have many custom VPC per region