AWS Route53, ELB, Cloudwatch, Decouple Workflows

Question 1

Whats an example of a top level domain name and a second level domain name ?

Answer 1

Top Level (.com)
Second Level (.co.nz)

Question 2

What are A and AAAA records?

Answer 2

These are DNS records that live on the Nameserver and map domain names to IP address.
A is ipv4
AAAA is ipv6

Question 3

What is a DNS SOA?

Answer 3

A start of authority record is a type of resource record that contains administrative information about a zone. Every registered domain name has an associated SOA record.
1. name of the zone
2. Zone Class
3. Primary Master Name server
4. Email address of the administrator.
5. Refresh and TTL times

Question 4

What is a DNS zone?

Answer 4

A DNS zone is a mechanism for partitioning the domain namespace. DNS zones are delegated to a legal entity (person/organization) that acts as an administrator and can specify things like the authoritative name servers for the domain names in that zone.

Question 5

What is a DNS CNAME record?

Answer 5

A CNAME is a canonical name it can be used to resolve one domain name to another domain name. specific.thetest.com => thetest.com

Question 6

Whats the difference between Alias records and CNAME?

Answer 6

Alias records are strictly a AWS record. The work like a CNAME records and allow you to map one domain name to another but (usually aws resources). CNAMES cant have ‘naked ‘ domain name ‘thetest.com’ they must map to ‘something.thetest.com’ Alias records can have naked domain names.

Question 7

What are DNS NS records?

Answer 7

Name server records are used by top-level domain servers to direct traffic to the correct content DNS servers (name servers) that contain the information and records for a given domain name

Question 8

What service can you use to register a domain name?

Answer 8

Route 53

Question 9

What service can you use to create health checks on individual endpoints?

Answer 9

Route 53

Question 10

If you want to setup a routing policy that gives you back a random endpoint which route 53 policy would you use ?

Answer 10

Simple policy

Question 11

If you want to route to a specific endpoint based on the quickest response times which routing policy would you use?

Answer 11

Latency based routing

Question 12

If you want to route to a endpoint based on location which policy would you use?

Answer 12

Geolocation Routing

Question 13

If you want to automatically switch endpoint when one fails a health check which policy would you use?

Answer 13

Failover policy

Question 14

If you would like to bias the routing of traffic between multiple endpoint which policy would you use?

Answer 14

Weighted Routing

Question 15

What is route 53 traffic flow?

Answer 15

Traffic Flow is a way to make complex customized traffic routing policies in AWS

Question 16

What is a Multivalue Routing policy in Route 53?

Answer 16

It is a policy that allows you to randomly return an endpoint from a set of endpoints but only if it passes a health check

Question 17

What is an ELB?

Answer 17

A Elastic Load Balance is a service that intelligently distributes application traffic across targets possibly across multiple AZs

Question 18

What are the three types of ELBs?

Answer 18

Application Loadbalancer (standard)
Network Loadbalancer(Performance)
Classic Loadbalancer(legacy / Dev)

Question 19

What are health checks?

Answer 19

They are a mechanism that allows you to determine if a resource is in service or OutOfService and you can use them to determine if you can route traffic to that resource

Question 20

What osi layer does a application load balancer function at?

Answer 20

Application layer. Layer 7

Question 21

What is a Listener on an Application ELB?

Answer 21

A listener checks for connection requests from clients, using the protocol and port you configure. ex HTTP:80

Question 22

What are Rules on an Application ELB?

Answer 22

Rules determine how the load balancer routes requests, Each rule consists of a priority, one or more actions and one or more conditions.

Question 23

What are Target groups on an Application ELB?

Answer 23

The target group routes requests to one or more registered targets, such as EC2 instances, using the protocol and port number you specify

Question 24

What is path-based routing and how do you enable it?

Answer 24

Path-based routing is when requests are routed based on the url paths and you enable it by enabling path patterns

Question 25

What are the limitations of the Application ELB?

Answer 25

Application load balancers can only be used with HTTP and HTTPS

Question 26

What are you required to do before you can use HTTPS with ELB?

Answer 26

You must deploy at least one SSL/TLS server certificate on you load balancer

Question 27

What OSI layer does network ELB work on?

Answer 27

Layer 4 (Transport layer)

Question 28

What is the difference between a Listener on an Application ELB and a Network ELB?

Answer 28

Listeners on Network ELB’s don’t have Rules( Intelligent based routing )

Question 29

What is the best use case for Network ELB?

Answer 29

Network Load Balancers are best suited for balancing TCP traffic where extreme performance is required. TCP, TLS, UDP, TCP_UDP or applications where application load balancers arent supported

Question 30

What is a x-forwarded-for header?

Answer 30

It provides the external IP address of your user even through a ELB

Question 31

What is a GateWay 504?

Answer 31

It means the load balancer is running but the application hasn’t replied within the idle time period

Question 32

What is ELB sticky sessions?

Answer 32

Enables users to be routed to the same EC2 instance (ie. you are storing information locally to that instance) it must be disabled if you chose to move that EC2 instance

Question 33

What is ELB deregistration delay?

Answer 33

It allows load balancers to keep existing connections open if the EC2 instances are deregistered or become unhealthy. If it is disabled it will automatically close connections if the EC2 instance becomes unhealthy or deregistered

Question 34

What is CloudWatch?

Answer 34

CloudWatch is a monitoring and observability platform that was designed to give us insight into our AWS architecture.

Question 35

What is CloudWatch’s policy for default alarms?

Answer 35

There are no default alarms

Question 36

What is CloudWatch’s default monitoring intervals?

Answer 36

Standard is 5 minutes
Detailed is 1-minute

Question 37

What is CloudWatch’s policy for metrics you can monitor?

Answer 37

AWS can give you metrics below the hypervisor level. CPU usage but for custom metrics like memory monitoring you have to install and setup a cloud watch agent.
The more managed a service is the more default metrics you get

Question 38

What is CloudWatch’s policy for metrics you can monitor?

Answer 38

AWS can give you metrics below the hypervisor level. CPU usage but for custom metrics like memory monitoring you have to install and set up a cloud watch agent.
The more managed service is the more default metrics you get

Question 39

What is CloudWatch Logs?

Answer 39

It is a service on the CloudWatch platform that gives you a centralized location to monitor, store and access log files

Question 40

What is a log event?

Answer 40

Its is a single event with a timestamp

Question 41

What is a log stream?

Answer 41

Its a collection of log events from a single source

Question 42

What is a log group?

Answer 42

Its a collection of log streams

Question 43

What are the main CloudWatch logs features?

Answer 43

1. Filter patterns to look for specific terms in your logs.
2. CloudWatch Logs insights allow you to query all your logs using SQL-like ineractive solutions
3. Alarms

Question 44

What is amazon managed grafana?

Answer 44

Fully managed AWS service allowing secure data “visualizations” for instantly querying, correlating, metrics, logs and traces

Question 45

What is amazon managed service for Prometheus?

Answer 45

A serverless, Prometheus-compatible service used for securely monitoring “container” metrics at scale (EKS)

Question 46

What is a Launch Template?

Answer 46

It provides a predefined configuration for setting up a EC2 instance

Question 47

What’s the difference between a Launch template and a Launch Configuration

Answer 47

Launch Configurations are a older version of launch templates

Question 48

What is a vital thing to remember about launch templates and networking configuration?

Answer 48

Launch Templates that have network configuration defined cannot be used for auto scailing

Question 49

What are the restrictions you can set using Auto Scaling?

Answer 49

1. Minimum
2. Maximum
3. Desired (how instances do I want right now)

Question 50

Can you use spot and on demand instance with Auto Scailing?

Answer 50

Yes

Question 51

What is an Auto Scailing group?

Answer 51

A auto-scaling group contains a collection of EC2 instances that share a launch template, the EC2 instances are managed by the auto-scailing group and instances are created or terminated to meet a desired capacity

Question 52

How does Auto Scaling help with high availability?

Answer 52

You can achieve high availability with auto-scaling by spreading resources across multiple AZ and it is best practice to do so

Question 53

Where should you define networking when you are setting up auto scailing groups?

Answer 53

In the auto-scaling group not in the launch template

Question 54

How do you route traffic to your auto-scaling group?

Answer 54

It is vital to select a load balancer for the instances to live behind

Question 55

What is a warm-up period in auto-scaling ?

Answer 55

It is the period of time where the EC2 instances have been provisioned but are still setting up and aren’t online yet

Question 56

What is the cool-down period in auto-scaling?

Answer 56

Pauses auto-scaling for a set amount of time and help to avoid runaway scaling events (Scaling up and Scaling down)

Question 57

What is thrashing in auto-scaling?

Answer 57

It’s when the instance count is rapidly change to try and keep up with demand

Question 58

What are the types of scaling?

Answer 58

1. Reactive Scaling
2. Scheduled Scaling
3. Predictive Scaling (AWS builds a model that predicts the usage pattern of your usage)

Question 59

What is a steady-state auto-scaling group?

Answer 59

It’s an autoscaling group with a min, max, and desired of one that will automatically migrate or provision a single EC2 instance if it is terminated or the AZ goes down

Question 60

What are 4 strategies for effective auto scaling?

Answer 60

1. Scale Out Aggressively and Scale in conservatively
2. Bake as much as you can in your AMI to minimize provisioning time
3. Use RI’s and Spot instance to reduce costs
4. Use CloudWatch to inform you about the capacity trends of your application

Question 61

What are the four ways to scale relational databases?

Answer 61

1. Vertical Scaling
2. Storage Scaling
3. Read Replicas
4. Aurora Serverless (Fully managed)

Question 62

What is the main thing to remember about scaling storage for relational database

Answer 62

1. You can scale up but you can’t scale down.
2. Aurora Auto Scales in 10GB increments

Question 63

What are two types of capacity settings for DynamoDB?

Answer 63

1. Provisioned (you know the number of reads and writes you need)
2. On-Demand (Pay a small amount of money per read and write)

Question 64

What is poll-based messaging?

Answer 64

The consumer has to go to retrieve the message

Question 65

What is SQS?

Answer 65

Simple queue service is a messaging queue that allow you to asynchronously process message and is a great tool for decoupling workloads

Question 66

What is SQS deliver delay and what is the default?

Answer 66

It is the amount of time it takes until a message shows up on the queue. Default is zero/

Question 67

What is the maximum message size?

Answer 67

256KB

Question 68

What is SQS message retention and what is the default and maximum value?

Answer 68

Its how long the queue will keep the message and it has a default of 4 days and can be set between 1 minute and 14 days

Question 69

What is SQS queue depth?

Answer 69

It is the number of messages on the queue and it can be used to trigger auto scaling

Question 70

What is the visibility timeout?

Answer 70

It is a configurable amount of time that keeps hides but preserves a message on the queue until the service that has consumed it confirms that it has been processed correctly. If the confirmation doesn’t happen within the timeout the the message reappears on the queue.

Question 71

What is the difference between long and short polling?

Answer 71

Short polling is continually connecting and disconnecting when a message isn’t available.
Long polling is connecting waiting for a message then disconnecting (prefered)

Question 72

What is a DLQ?

Answer 72

A dead-letter is a SQS queue where you can automatically send messages that have failed to be processed a set number of times

Question 73

What is the default ordering policy for SQS?

Answer 73

Standard - (best-effort ordering) There is no Guarentee that messages will come out in order they went into the queue and messages maybe duplicated

Question 74

What are the two types of SQS queue and whats the difference?

Answer 74

Standard - Best effort ordering but no throughput limitations
FIFO - guaranteed ordering but max 300msg/sec

Question 75

What is SNS ?

Answer 75

It is simple notification service a push based message service (Alarms)

Question 76

What is a SNS subscriber?

Answer 76

A endpoint the messages will be pushed to
HTTP(S), SMS, txt only email, lambda, application endpoints

Question 77

What is the maximum size for a SNS message?

Answer 77

256KB

Question 78

What are the two types of SNS queues?

Answer 78

FIFO, Standard

Question 79

Does SNS support DLQ?

Answer 79

Yes SNS supports dead letter queues

Question 80

Which subscriber endpoints support SNS retries?

Answer 80

HTTP / HTTPS

Question 81

What is API Gateway?

Answer 81

is a fully managed service that allows you to easily create, publish, monitor and secure a API

Question 82

What are the main features of API gateway?

Answer 82

1. Security WAF - web application firewall
2. Stop Abuse Ddos
3. Ease to use and setup

Question 83

What is AWS Batch?

Answer 83

It a managed service that allows you to run long running batch computing workloads with AWS on EC2/ECS/Fargate (Compute environment)

Question 84

What is the recommended computing environment for AWS Batch?

Answer 84

Fargate

Question 85

What are the considerations when picking between AWS Batch or Lambda?

Answer 85

1. Lambda has 15minute execution limit
2. Lambda has diskspace limitiations
3. Lambda has limited native runtime support
4. Batch runtimes use docker so they can be anything

Question 86

What is Amazon MQ?

Answer 86

Is a managed message broker service allowing for easier migration of existing applications to the cloud (Apache, ActiveMQ, RabbitMQ) Protocols supported JMS, AMQP 0-9-1, AMQP 1.0, MQTT, OpenWire, STOMP

Question 87

What are AWS Step functions?

Answer 87

It is a serverless orchestration service that combine AWS services for business application i.e Lambda, SNS, Batch

Question 88

What are the key features of AWS Step functions?

Answer 88

1. Orchestration
2. Graphical Console
3. State Machines - a particular workflow
4. States - A single unit of work in the state machine

Question 89

What is AppFlow?

Answer 89

Is a fully managed integration service for exchanging data between Saas app vendors (salesforce, zendesk, slack) and AWS Services