AWS Service Definitions Quiz

Question 1

What is a comprehensive cloud platform delivering on demand, online technology services?

Answer 1

AWS Amazon Web Services

Question 2

What is a building or space dedicated to housing many computers called?

Answer 2

datacenter

Question 3

What AWS service manages the physical hardware;
you control everything else?
You have the most control. All you get is the space and an Operating System.

Answer 3

Infrastructure as a Service (IaaS)

Question 4

What type of cloud computing is when STANDARD software is provided and configured as needed?
The software is ready to go, and you don’t have access to the infrastructure. Examples: Elastic Beanstalk, Cloud Formation, Lambda, RDS, S3.

Answer 4

Platform as a Service (PaaS)

Question 5

What type of Cloud computing is where pre-packaged software is provided “as-is” by the vendor?
Email, chat clients, apps, etc… Some examples are: WhatsApp, Google Maps, DocuSign, Slack.

Answer 5

Software as a Service (SaaS)

Question 6

What Cloud is your home unit?

You own the hardware and the software, you do the updates, you maintain security.

Answer 6

On-Premise cloud

Question 7

What Cloud service is where you rent space on a cloud? You continue to maintain your on-premise equipment and software, but now you have, for example, a storage locker to help your on-premise capacity.

Answer 7

Hybrid Cloud

Question 8

What Amazon service is where the host handles most of your needs?
Like a maid service that handles all of your needs, but you still own and run the web application.

Answer 8

Amazon Cloud

Question 9

What is defined as a separate geographical area?

Answer 9

Region

Question 10

What are multiple isolated locations within each Region?

Answer 10

Availability Zones

Question 11

What is defined as areas that provide you the ability to place resources, such as compute and storage, in multiple locations closer to your end users?
These are often located near large population centers.

Answer 11

Local Zones

Question 12

What is defined as locations between regions that serve as a content delivery network (CDN), or caches, so that content is closer to users in areas that are far from regions?

Answer 12

Edge Locations

Question 13

What zones enable developers to build applications that deliver ultra-low latencies to mobile devices and end users? It also deploys standard AWS compute and storage to the edge of telecommunication carriers’ 5G networks.

Answer 13

Wavelength Zones

Question 14

What is defined as a fully managed service that extends AWS infrastructure, services, APIs, and tools to customer premises?
It is a pool of AWS compute and storage capacity deployed at a customer site. AWS operates, monitors, and manages this capacity as part of an AWS Region.

Answer 14

AWS Outposts

Question 15

What is defined as a telecommunications cable owned by a company?

Answer 15

Network Line

Question 16

What is defined as “When an object is updated in S3 by many users across the availability zones, the object that is wrote last will be the one that all other copies become”?

Answer 16

Eventual Consistency

Question 17

What are the Five Pillars of the Framework?

Answer 17

1. Operational Excellence
2. Security
3. Reliability
4. Performance Efficiency
5. Cost Optimization

Question 18

What user is defined as a single sign-in identity that has complete access to all AWS services and resources in an account?

Answer 18

Root User

Question 19

What is a 20 digit alphanumeric key?

Answer 19

Access Key

Question 20

What kind of policies are standalone policies that are created and administered by AWS, and are designed to provide permissions for many common use cases?

Answer 20

AWS Managed Policies

Question 21

What kind of POLICY is stuck to, or embedded into, an IAM identity?

Answer 21

Inline Policy

Question 22

What is defined as a job identifier in terms of Identity and Access Management?

Answer 22

a Role

Question 23

What is defined as the creation of a trust relationship between an external identity provider and AWS, like Facebook?

Answer 23

Federation

Question 24

What kind of account do you use to create the organization, can issue an Invitation, and is responsible for paying all charges that are accrued by the member accounts?

Answer 24

Management Account

Question 25

What is it called when you ask a stranger’s account to join your organization’s account?

Answer 25

Invitation

Question 26

What policy specifies the services and actions that users and roles can use within accounts?

Answer 26

Service Control Policies (SCP)

Question 27

What list type assumes that all actions are denied?

Answer 27

Allow List

Question 28

What list type assumes that all actions are accepted?

Answer 28

Deny list

Question 29

What policy do you use to configure and deploy backup plans for your resources?
What policies automate backup management?

Answer 29

Backup Policy

Question 30

What type of policy helps you standardize tags across resources across all of the accounts in your organization?

Answer 30

Tag Policy

Question 31

What has an easy-to-use interface that lets you visualize, understand, and manage your AWS costs and usage over time explorer?

Answer 31

AWS Cost Explorer

Question 32

Which BUDGET monitors your COSTs against a specified dollar amount and sends alerts when your user-defined thresholds are met?

Answer 32

Cost budget

Question 33

Which BUDGET plans how much you want to USE on one or more services?

Answer 33

Usage budget

Question 34

Which BUDGET lets you define a USAGE threshold and receive alerts when the usage falls below that threshold?

Answer 34

Reserved Instance (RI) Utilization Budgets or
Savings Plans Utilization Budgets

Question 35

Which BUDGET lets you receive alerts when the number of instance hours falls below a certain threshold coverage?

Answer 35

Reserved Instance (RI) Coverage Budgets or
Savings Plans Coverage Budgets

Question 36

What is the name of a fully managed messaging service for both application-to-application (A2A) and application-to-person (A2P) communication?

Answer 36

Amazon Simple Notification Service (SNS)

Question 37

What can you use to explore AWS services and calculate the cost of your use cases on AWS?

Answer 37

AWS Pricing Calculator

Question 38

What storage class is general purpose storage?

Answer 38

S3 Standard storage

Question 39

What stores objects in different storage tiers depending on the objects’ usage?

Answer 39

S3 Intelligent-Tiering storage

Question 40

What service is for storage of data that is accessed less frequently, but requires rapid access when needed?

Answer 40

S3 Standard-Infrequent Access storage

Question 41

What service is for storage of data that is accessed less frequently, but requires rapid access when needed, but it is stored only in one AZ?

Answer 41

S3 One Zone-Infrequent Access storage

Question 42

What service is for secure, durable, low-cost storage for data archiving?

Answer 42

S3 Glacier storage

Question 43

What service is for low-cost storage and long-term retention and digital preservation for data that may be accessed once or twice in a year?

Answer 43

S3 Glacier Deep Archive storage

Question 44

What is defined as a set of rules that define actions that Amazon S3 applies to a group of objects, so that you can either transition to another storage class or delete expired objects?

Answer 44

S3 Lifecycle management

Question 45

What can you use to monitor access patterns in order to help you decide when to transition the right data to the right storage class?

Answer 45

S3 Storage Class Analysis

Question 46

What tool will help you to make a cost estimate that fits your unique business needs?

Answer 46

Pricing Calculator

Question 47

What feature allows you to add your own code to S3 GET requests to modify and process data as it is returned to an application?

Answer 47

Amazon S3 Object Lambda

Question 48

What do you use to easily preserve, retrieve, and restore every version of an object stored in S3, allowing you to recover from unintended user actions and application failures?

Answer 48

S3 Versioning

Question 49

What can you use to prevent accidental deletions?

Answer 49

Multi-Factor Authentication (MFA) Delete

Question 50

What can be used to replicate objects to one or more destination buckets into the same or different AWS Regions?

Answer 50

S3 Replication

Question 51

What can be used to replicate from a source S3 bucket to one or more destination buckets in different AWS Regions?

Answer 51

S3 Cross-Region Replication (CRR)

Question 52

What can replicate objects between buckets in the same AWS Region?

Answer 52

S3 Same-Region Replication (SRR)

Question 53

What can help you meet compliance requirements for data replication by providing a Service Level Agreement (SLA) and visibility into replication times?

Answer 53

S3 Replication Time Control

Question 54

What can you use to ensure data is not deleted for a specified time period?

Answer 54

S3 Object Lock

Question 55

What Reports show usage and Costs aggregated by your buckets?
x
x
x
x
x
x
x
x
x
x
x
C   A   R

Answer 55

AWS Cost Allocation Reports

Question 56

What can you use to track the operational health of your AWS resources?

Answer 56

Amazon CloudWatch

Question 57

What tracks and reports on buckets-level and object-level activities?

Answer 57

AWS CloudTrail

Question 58

What can you configure to trigger workflows, alerts, and invoke AWS Lambda when a specific change is made to your S3 resources?

Answer 58

S3 Event Notification

Question 59

What provides a single view of object storage usage and activity across all accounts in an organization, with drill-downs to generate insights at all levels?

Answer 59

S3 Storage Lens

Question 60

What can observe and analyze data access patterns to help you determine when to transition less frequently accessed storage to a lower-cost STORAGE CLASS?

Answer 60

S3 Storage Class Analysis

Question 61

What controls access to individual objects to individual users?

Answer 61

ACL Access Control List

Question 62

What configures permissions for all objects within a single S3 bucket?

Answer 62

Bucket Policies

Question 63

What grants time-limited access to others with temporary URLs?

Answer 63

Query String Authentication

Question 64

What can you use to check the encryption status of your S3 objects?

Answer 64

S3 Inventory

Question 65

What can you use to protect your buckets from the public?

Answer 65

S3 Block Public Access

Question 66

What S3 service alerts you to S3 buckets that are configured to allow access to anyone on the internet or other AWS accounts, including accounts outside of your organization?

Answer 66

Access Analyzer for S3

Question 67

What Amazon tool uses machine learning and pattern matching in order to discover and protect sensitive data stored in Amazon S3?

Answer 67

Amazon Macie

Question 68

What provides private connectivity between Amazon S3 and on-premises?

Answer 68

AWS PrivateLink for S3

Question 69

What can you use to query your data in S3 without needing to extract and load it into a separate service or platform?

Answer 69

Amazon Athena

Question 70

What can you use to query more data than Amazon Athena?

Answer 70

Amazon Redshift Spectrum

Question 71

What data transfer method can be used for hybrid cloud storage?

Answer 71

AWS Storage Gateway

Question 72

What do you use to transfer data online to AWS?

Answer 72

AWS DataSync

Question 73

What family of tools provide fully managed, simple and seamless file transfer to Amazon S3 using SFTP, FTPS, and FTP?

Answer 73

AWS Transfer Family

Question 74

What can you use to enable fast transfers of files over long distances between your client and your Amazon S3 bucket?

Answer 74

Amazon S3 Transfer Acceleration

Question 75

What can you use to transfer 8 TB of data offline to S3?

Answer 75

AWS Snowcone

Question 76

What can you use to transfer 80 TB of data offline to S3?

Answer 76

AWS Snowball

Question 77

What can you use to transfer 100 PB of data offline to S3?

Answer 77

AWS Snowmobile

Question 78

What allows you to upload a single object as a set of parts? (a single object is broken into many parts, stored, and then assembled in the correct order to recreate the object)

Answer 78

Multipart upload

Question 79

What can you use for faster transfers?

Answer 79

Amazon S3 Transfer Acceleration

Question 80

Which service can a Cloud Practitioner use to configure custom cost and usage limits and enable alerts for when defined thresholds are exceeded?

Answer 80

AWS Budgets

Question 81

What is a type of database that stores information where a significant amount of the value is the relationship between the data points?

Answer 81

graph database

Question 82

What is a service that allows you to assess, audit, and evaluate the configuration of individual resources?

Answer 82

AWS Config

Question 83

Which AWS support plan comes with a Technical Account Manager (TAM)?

Answer 83

Enterprise

Question 84

What is an easy to use, high-performance, block-storage service designed for use with Amazon Elastic Compute Cloud (EC2) for both throughput and transaction intensive workloads at any scale?

Answer 84

EBS Ephemeral Storage

Question 85

Which routing policy is used when you want to route traffic based on the location of your resources and, optionally, shift traffic from resources in one location to resources in another?

Answer 85

Geoproximity routing

Question 86

What is an interactive query service used to analyze data within S3?

Answer 86

Amazon Athena

Question 87

What policies are standalone policies that you administer in your own AWS account?

Answer 87

Custom Managed Policies

Question 88

What role is a role that a service assumes to perform actions in your account on your behalf?

Answer 88

AWS Service Role

Question 89

What allows you to grant additional roles for up to one hour at a time?

Answer 89

Role Chaining

Question 90

What is defined as the creation of a trust relationship between an external identity provider and AWS?

Answer 90

Federation

Question 91

What is defined as an entity that you create to consolidate your AWS accounts so that you can administer them as a single unit?

Answer 91

Organization

Question 92

What is the parent container for all the accounts for your organization?

Answer 92

Root

Question 93

What is a container for accounts within a root?

Answer 93

Organization Unit (OU)

Question 94

What is defined as a standard AWS account that contains your AWS resources and the identities that can access those resources?

Answer 94

Account

Question 95

What is defined as a policy that specifies the services and actions that users and roles can use within accounts?

Answer 95

Service Control Policy (SCP)

Question 96

What list assumes denial of everything?

Answer 96

Allow List

Question 97

What list assumes allowance of everything?

Answer 97

Deny List

Question 98

What is a policy that let’s you opt-out of AI services?

Answer 98

Artificial Intelligence (AI) services opt-out policy

Question 99

What policy allows you to configure and deploy backup plans for your resources?

Answer 99

Backup Policy

Question 100

What kind of policy helps you standardize tags across resources across all of the accounts in your organization?

Answer 100

Tag Policy

Question 101

What is an easy-to-use interface that lets you explore, visualize, understand, and manage your AWS costs and usage over time?
it includes reports, 
time periods can be set,
filters are provided to look deeper, 
you can use the forecasting tool, 
and save reports as records?
x
x
x
x
x
Cost Explorer

Answer 101

Cost Explorer

Question 102

What allows you to:
Set usage limits to stay on budget
Set limits to stay within the free tier
Allow monthly budget increases in increments that you set
Receive an alert when your budget has reached its limit through Amazon Simple Notification Service (SNS)

Answer 102

AWS Budgets

Question 103

What can you use to monitor your estimated AWS charges?

Answer 103

Amazon CloudWatch

Question 104

What is triggered when your account billing exceeds the threshold you specify?

Answer 104

Billing Alarm

Question 105

What service do you use to pay your AWS BILL, monitor your usage, and analyze and control your COSTs?

Answer 105

AWS Billing and Cost Management

Question 106

What is a fully managed messaging service for both application-to-application and application-to-person communication?

Answer 106

Amazon Simple Notification Service (Amazon SNS)

Question 107

What allows you to calculate cost by month or year?

Answer 107

TCO Total Cost of Ownership

Question 108

What tool shows you how much you pay
for a la carte services
over a specified time period?

P C

Answer 108

AWS Pricing Calculator

Question 109

What is the AWS solution for Object storage?

Answer 109

Simple Storage Service (S3)

Question 110

What exists in a datacenter, and is copied to 2 other AZ’s?

Answer 110

Buckets

Question 111

What service allows you to send your files over AWS internet lines instead of the sending your files over the regular internet?

Answer 111

Transfer Acceleration

Question 112

What service allows you to copy your files and replicate the files in a different Amazon region?

Answer 112

Cross Region Replication

Question 113

What kicks in if your storage and services didn’t meet certain minimums for a charging period?

Answer 113

Service Level Agreement (SLA)

Question 114

What is defined as moving files from one storage class to another? Files are moved from the more expensive storage to the less expensive storage.

Answer 114

Life Cycle Management

Question 115

What service preserves previous versions of files after overwrites? This allows you to recall earlier versions of files.

Answer 115

File Versioning

Question 116

What service prevents files from being deleted?

Answer 116

Object Lock

Question 117

What is the smallest member of the snow family and provides offline transfer of data? Fits in your mailbox. 2 CPUs, 4 GB Ram, 8 TB storage.

Answer 117

Snowcone

Question 118

What is the second size of the snow family and provides offline transfer of data?

Answer 118

Snowball

Question 119

What is the largest size of the snow family and provides offline transfer of data?

Answer 119

Snowmobile

Question 120

What is Amazon’s Content Delivery Network service for S3, and caches data in Edge Locations?

Answer 120

AWS CloudFront

Question 121

What is defined as the amount of time a cached file gets to exist until it is reevaluated against the origin, and if there is a difference in the files, the cached files are updated from the origin?

Answer 121

Time to Live

Question 122

What is defined as a collection of data items with relationships between them?

Answer 122

Relational Database

Question 123

What database is made by Amazon and is their fastest?

Answer 123

Aurora

Question 124

What are three open source databases on AWS?

Answer 124

PostgreSQL
MySQL
MariaDB

Question 125

What is a key-value and document database that delivers single-digit millisecond performance at any scale?

Answer 125

DynamoDB

Question 126

What query service allows you to combine exabytes of structured and semi-structured data across your warehouse, operational database, and data lake using standard SQL?

Answer 126

Redshift

Question 127

What service is a purpose-built, high-performance graph database engine optimized for storing billions of relationships and querying the graph with milliseconds latency?

Answer 127

Neptune

Question 128

What is a language for Application Programming Interfaces (APIs) that enables you to query and manipulate data easily through an intuitive and flexible syntax? It also makes it possible for you to access many sources in a single request, reducing the number of network calls and bandwidth requirements, therefore saving battery life and CPU cycles consumed by your applications.

Answer 128

GraphQL

Question 129

What type of database features entries and values that can all be distinct?

Answer 129

Key Value Database

Question 130

What type of database features a hierarchy of documents?

Answer 130

Document database

Question 131

What type of database features data that is organized by the relationships of the data within graphs?

Answer 131

Graph database

Question 132

What is defined as a central repository of information that can be analyzed to make more informed decisions?

Answer 132

Data warehouse

Question 133

What are the three tiers of data warehouse architecture?

Answer 133

Top tier
Middle tier
Bottom tier

Question 134

What data warehouse tier is the front-end client that presents results through reporting, analysis, and data mining tools?

Answer 134

Top Tier

Question 135

What data warehouse tier holds the analytics engine that is used to access and analyze the data?

Answer 135

Middle Tier

Question 136

What data warehouse tier is the database server, where data is loaded and stored?

Answer 136

Bottom Tier

Question 137

What Amazon service serves as a read only copy of your relational database?

Answer 137

Amazon Relational Database Service (RDS) Read Replica

Question 138

What Amazon service helps deploy, maintain and scale Redis and Memcache HD database caching engines?

Answer 138

AWS Elasticache

Question 139

What are the two cache service options within AWS ElastiCache?

Answer 139

Redis

Memcache HD

Question 140

What is defined as a high-speed data storage layer which stores a subset of data, typically transient in nature, so that future requests for that data are served up faster than is possible by accessing the data’s primary storage location?

Answer 140

Caching

Question 141

What Amazon service provides resizable compute capacity in the cloud?

Answer 141

Elastic Cloud Compute (EC2)

Question 142

What is defined as hardware with power connectors and cables for networking?

Answer 142

Servers

Question 143

What Amazon service is a:

1. core Infrastructure as a Service (IaaS) Amazon service.
2. Can be used on demand with no commitments
3. Can be resized and customized as needed.
4. Barebones, no other software is involved.

Answer 143

Electronic Compute Cloud (EC2)

Question 144

What Amazon service is defined as an easy-to-use, scalable, high-performance block-storage service designed for Amazon Elastic Compute Cloud (EC2).

Answer 144

Amazon Elastic Block Store

Question 145

What is the default storage type in EC2? (they work hand-in-hand)

Answer 145

Elastic Block Storage (EBS)

Question 146

What storage type (type of drive) is best for relational databases?

Answer 146

Solid State Drive (SSD)

Question 147

What storage type is best for streaming Input/Output?

Answer 147

Hard Drive (HDD)

Question 148

What type of storage is fast, temporary storage? It is physically attached to the host computer. It is ephemeral, like RAM. It works as long as the instance is running, and the stored data disappears when the instance is terminated.

Answer 148

Instance Store

Question 149

What is defined as a case or occurrence of anything? In computer technology, this could be an animal, but not the class of animal.

Answer 149

an Instance

Question 150

What Amazon service is defined as a web service that provides secure, resizable compute capacity in the cloud? It is designed to make web-scale cloud computing easier for developers.

Answer 150

Elastic Compute Cloud

Question 151

What Amazon service is defined as an easy to use, high-performance, block-storage service designed for use with Amazon Elastic Compute Cloud (EC2) for both throughput and transaction intensive workloads at any scale?

Answer 151

Elastic Block Store

Question 152

What Amazon service provides temporary block-level storage for your instance? This storage is located on disks that are physically attached to the host computer.

Answer 152

Amazon EC2 Instance Store

Question 153

What Amazon service will scale your instances based on demand or conditions that you define?

Answer 153

Elastic Cloud Compute (EC2) Auto Scaling

Question 154

What are three types of scaling?

Answer 154

Dynamic Scaling
Predictive scaling
Scheduled scaling

Question 155

What Amazon service will get your projects up and running quickly and will get all the resources you need?

Answer 155

Elastic Beanstalk

Question 156

What Amazon service gives you Servers, storage, databases, and networking and is best used for Simple web applications, Websites, and Dev/test environments?

Answer 156

Amazon Lightsail

Question 157

What Amazon service gives you an easy way to model a collection of related AWS and third-party resources, provision them quickly and consistently, and manage them throughout their lifecycles, by treating infrastructure as code?
x
x
x
x
x
x
x
x
Like forming a cloud

Answer 157

AWS CloudFormation

Question 158

What Amazon service is a solution that helps customers quickly set up a secure, multi-account AWS environment based on AWS best practices?

quickly set up an environment

Answer 158

Amazon Landing Zone

Question 159

What Amazon service offers automated reference deployments built by AWS solutions architects and AWS Partners?
x
x
x
x
x
x
x
x
x
x
x
Amazon Q S

Answer 159

Amazon Quick Starts

Question 160

What AWS service is a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on AWS?

Answer 160

AWS Marketplace

Question 161

What AWS service is a serverless compute service that lets you run code without provisioning or managing servers, creating workload-aware cluster scaling logic, maintaining event integrations, or managing runtimes?

Answer 161

AWS Lambda

Question 162

Name 5 AWS services that run serverless

DASSL

Answer 162

DynamoDB
Aurora
Simple Notification Service (SNS)
Simple Queue Service (SQS)
Lambda

Question 163

What AWS service is a MySQL and PostgreSQL-compatible relational database built for the cloud, that combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases?

Answer 163

Amazon Aurora

Question 164

Which AWS service is a highly available and scalable cloud Domain Name System web service? It is designed to give developers and businesses an extremely reliable and cost-effective way to route end users to Internet application by translating names like www.example.com into the number IP addresses like 192.0.2.1, that computers use to connect to each other?

Answer 164

Amazon Route 53

Question 165

Which routing policy is for a single source?

Answer 165

Simple Routing Policy

Question 166

What routing policy do you use when you want to configure active-passive failover?

Answer 166

Failover Routing Policy

Question 167

What routing policy do you use when you want to route traffic based on the location of your users?

Answer 167

Geolocation routing policy

Question 168

What routing policy do you use when you want to route traffic based on the location of your resources and, optionally, shift traffic from resources in one location to resources in another?

Answer 168

Geoproximity routing policy

Question 169

What routing policy do you use when you have resources in multiple AWS Regions and you want to route traffic to the Region that provides the best latency with less round-trip time?

Answer 169

Latency routing policy

Question 170

What routing policy do you use when you want Route 53 to respond to DNS queries with up to eight healthy records selected at random?

Answer 170

Multivalue answer routing policy

Question 171

What routing policy do you use to route traffic to multiple resources in proportions that you specify?

Answer 171

Weighted routing policy

Question 172

What do you create when you do these:

1. Provide an IP address or domain name that you want Route 53 to check.
2. Provide the protocol that you want Route 53 to use to perform the check: HTTP, HTTPS, or TCP.
3. Provide a request interval (how often do you want this check to happen?)
4. How many failures in a row must occur before Route 53 considers the website unhealthy?
5. Do you want to be notified?

Answer 172

Health Check

Question 173

What Amazon service automatically distributes incoming application traffic across multiple targets, such as Amazon ECs instances, containers, IP addresses, Lambda functions, and virtual appliances?

Answer 173

Elastic Load Balancing

Question 174

Name the 4 types of AWS Load Balancers.
x
x
x
x
x
x
x
x
x
x
x
x
GANC

Answer 174

Gateway Load Balancer
Application Load Balancer
Network Load Balancer
Classic Load Balancer

Question 175

What Load Balancer is:

1. Best suited for HTTP and HTTPS
2. Provides advanced request routing targeted at the delivery of modern apps
3. Routes traffic to targets within Amazon Virtual Private Cloud (VPC) based on the content of the request

Answer 175

Application Load Balancer

Question 176

What Load Balancer is:

1. Best suited for Transmission Control Protocol (TCP), User Datagram Protocol (UDP), and Transport Layer Security (TLP) traffic where extreme performance is required.
2. Capable of handling millions of requests per second while maintaining ultra-low latencies.

Answer 176

Network Load Balancer

Question 177

What Load Balancer:

1. receives traffic.
2. sends traffic to a healthy and available virtual appliance.
3. Traffic is inspected and either forwarded back to GWLB or dropped.
4. sends traffic to the destination appearing unchanged.
5. The process goes exactly in reverse back to the source.

Answer 177

Gateway Load Balancer

Question 178

What Load Balancer provides basic load balancing across multiple Amazon EC2 instances and operates at both the request level and connection level?

Answer 178

Classic Load Balancer

Question 179

What AWS service does this describe:
A service that lets you launch AWS resources in a logically isolated virtual network that you define. You have complete control over your virtual networking environment, including selection of your own IP address range, creation of subnets, and configuration of route tables and network gateways.

Answer 179

Virtual Private Cloud

Question 180

What is defined as a system that tells VPC how to route packets?

Answer 180

Route Table

Question 181

What is a service that provides a block to outside sources to enter your AWS VPC and will let you request information from the internet and let responses come in? BUT, no other traffic comes in to your VPC.

Answer 181

NAT Gateway

Network Address Translation

Question 182

What is defined as a range of IP addresses in your VPC?

Answer 182

Subnet

Question 183

What is defined as a set of rules, called routes, that are used to determine where network traffic is directed?

Answer 183

Route Table

Question 184

What is defined as a gateway that you attach to your VPC to enable communication between resources in your VPC and the internet?

Answer 184

Internet Gateway

Question 185

What enables you to privately connect your VPC to supported AWS services and VPC ENDPOINT services powered by PrivateLink without requiring an internet gateway?

Answer 185

VPC Endpoint

Question 186

What is defined as an internet protocol address allocation and route aggregation methodology?

Answer 186

Classless Inter-Domain Routing Block

CIDR Block

Question 187

What is defined as an optional layer of security for your VPC that acts as a firewall for controlling traffic in and out of one or more subnets.
You might set these up with rules similar to your security groups in order to add an additional layer of security to your VPC?

Answer 187

Network Access Control List (NACL)

Question 188

What is defined as a set of rules, called routes, that are used to determine where network traffic from your subnet or gateway is directed?

Answer 188

Route Table

Question 189

What is defined as the route table that automatically comes with your VPC? It controls the routing for all subnets that are not explicitly associated with any other route table?

Answer 189

Main Route Table

Question 190

What is defined as a route table that you create for your VPC?

Answer 190

Custom Route Table

Question 191

What is defined as a route that’s associated with a subnet?

Answer 191

Subnet route table

Question 192

What is defined as a route that’s associated with an internet gateway or virtual private gateway?

Answer 192

Gateway route table

Question 193

What is defined as a route table that’s associated with an Outposts local gateway?

Answer 193

Local gateway route table

Question 194

What allows a virtual private gateway to automatically propagate routes to the route tables?

Answer 194

Propagation

Question 195

What is defined as a default route for communication within the VPC?

Answer 195

Local Route

Question 196

What is defined as a networking connection between two VPCs that enables you to route traffic between them using private IPv4 addresses or IPv6 addresses?

Answer 196

VPC peering connection

Question 197

What is defined as a monitoring tool that let’s us see how we are running and what the metrics are?

Answer 197

CloudWatch

Question 198

What is defined as an auditing tool, and it let’s you see what everyone has done within our system?

Answer 198

CloudTrail

Question 199

What Amazon service is:

1. a monitoring and observability service built for DevOps engineers, developers, site reliability engineers (SREs), and IT manager,
2. provides you with data and actionable insights to monitor your applications, respond to system-wide performance changes, optimize resource utilization, and get a unified view of operational health,
3. collects monitoring and operational data in the form of logs, metrics, and events, providing you with a unified view of AWS resources, applications, and services that run on AWS and om-premises servers,
4. enables you to set alarms and automate actions based on either predefined thresholds, or on machine learning algorithms that identify anomalous behavior in your metrics

Answer 199

CloudWatch

Question 200

What Amazon service provides the metrics of:
Disk Read Ops
Disk Write Ops
Disk Read Bytes
Disk Write Bytes
Metadata No Token
Network In
Network Out
Network Packets In
Network Packets Out

Answer 200

CloudWatch

Question 201

What Amazon service provides event history of your AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services?

Answer 201

CloudTrail

Question 202

What Amazon service is defined as an interactive query service that makes it easy to analyze data in Amazon S3 using standard SQL?

Answer 202

Athena

Question 203

What Amazon service is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS?

Answer 203

Macie

Question 204

What Amazon service helps protect your web applications or APIs against common web exploits and bots that may affect availability, compromise security, or consume excessive resources and gives you control over how traffic reaches your applications by enabling you to create security rules that control bot traffic and block common attack patterns, such as SQL injection or cross-site scripting?

Answer 204

AWS Web Application Firewall

Question 205

What Amazon service is a defense against common, frequently occurring network and transport layer DDoS attacks that target your website or applications?

Answer 205

AWS Shield

Question 206

What are the two tiers of AWS Shield?

Answer 206

Standard

Advanced

Question 207

What Amazon security service gives you fine-grained control over the web requests that your protected resource responds to?

Answer 207

Web Access Control List

Question 208

What firewall is a false front that acts as the face of the application?

Answer 208

Proxy Firewall

Question 209

What firewall allows or blocks traffic based on state, port or protocol? It monitors all activity from the opening of a connection until it is closed.

Answer 209

Stateful Inspection Firewall

Question 210

What firewall combines a Stateful Inspection Firewall with intrusion prevention and antivirus? It may also include additional services and often Cloud management.

Answer 210

Unified Threat Management Firewall

Question 211

What firewall includes:
• Standard firewall capabilities
• Integrated intrusion prevention
• Application awareness and control to see and block risky apps
• Upgraded paths to include future information feeds
• Techniques to address evolving security threats

Answer 211

Next-Generation Firewall (NGFW)

Question 212

What firewall includes: all of NGFW and:
• Know which assets are most at risk
• Quickly react to attacks with intelligent security automation that sets policies and hardens your defense dynamically
• Better detect evasive or suspicious activity with network and endpoint event correlation
• Greatly decrease the time from detection to cleanup with retrospective security that continuously monitors for suspicious activity and behavior even after initial inspection
• Ease administration and reduce complexity with unified policies that protect across the entire attack continuum

Answer 212

Threat-Focused NGFW

Question 213

What firewall is typically deployed as a virtual appliance in a private cloud or public cloud to monitor and secure traffic across physical and virtual networks?

Answer 213

Virtual Firewall

Question 214

What Amazon resource provides on-demand access to past AWS’ security and compliance reports and select online agreements, and includes:
• Service Organization Control (SOC) reports,
• Payment Card Industry (PCI) reports
• Certifications from accreditation bodies that validate AWS security controls

Answer 214

AWS Artifact

Question 215

What Amazon service is:
• A threat detection service that continuously monitors for malicious activity and unauthorized behavior to protect your AWS accounts, workloads, and data stored in Amazon S3.
• Uses machine learning, anomaly detection, and integrated threat intelligence to identify and prioritize potential threats
• Integrate with Amazon CloudWatch Events for alerts that are actionable, easy to aggregate across multiple accounts, and straightforward to push into existing event management and workflow systems

Answer 215

Amazon GuardDuty

Question 216

What Amazon service provides recommendations that help you follow AWS best practices by identifying ways to optimize your AWS infrastructure, improve security and performance, reduce costs, and monitor service quotas?

Answer 216

AWS Trusted Advisor

Question 217

What Amazon service is:
• An automated security assessment service that helps improve the security and compliance of applications deployed on AWS
• Automatically assesses applications for exposure, vulnerabilities, and deviations from best practices
• After an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity.

Answer 217

Amazon Inspector

Question 218

What Amazon service is:
• A service that enables you to assess, audit, and evaluate the configurations of your AWS resources
• Continuously monitors and records your AWS resource configurations and allows you to automate the evaluation of recorded configurations against desired configurations
• Enables you to inventory your AWS resources, the configurations of your AWS resources, as well as software configurations within EC2 instances
• Amazon Simple Notification System can be set to send you a notification when changes to configurations are made

Answer 218

AWS Config

Question 219

What Amazon service is:
intended for sending messages to subscribers who subscribe to and receive notifications,
notifications can be sent over http, texts, and can also be emails,
doesn’t support multimedia content?

Answer 219

Simple Notification Service

Question 220

What Amazon service is:
intended for applications that need to send communications via email,
supports custom email headers,
supports multimedia content?

Answer 220

Simple Email Service

Question 221

What are the Five Pillars of the Framework?

Answer 221

1. Operational Excellence
2. Security
3. Reliability
4. Performance Efficiency
5. Cost Optimization

Question 222

What Pillar includes the ability to support development and run workloads effectively, gain insight into their operations, and to continuously improve supporting processes and procedures to deliver business value?

Answer 222

Operational Excellence Pillar

Question 223

What Pillar involves the ability to protect data, systems, and assets to take advantage of cloud technologies to improve your security?

Answer 223

Security Pillar

Question 224

What Pillar involves:
• The ability of a workload to perform its intended function correctly and consistently when it’s expected to.
• The ability to operate and test the workload through its total lifecycle

Answer 224

Reliability Pillar

Question 225

What Pillar involves:
• The ability to use computing resources efficiently to meet system requirements
• To maintain that efficiency as demand changes and technologies evolve

Answer 225

Performance Efficiency Pillar

Question 226

What Pillar involves the ability to run systems to deliver business value at the lowest price point?

Answer 226

Cost Optimization Pillar

Question 227

What Model involves security of the infrastructure and security of the customer’s systems?

Answer 227

Shared Responsibility Model

Question 228

What are three premium AWS support plans?

Answer 228

Developer
Business
Enterprise

Question 229

What service is a workflow service for building scalable, resilient applications?

Answer 229

Simple Workflow Service

Question 230

What is defined as a secure and resilient service that uses hardware security modules to protect your keys?
It is integrated with AWS CloudTrail to provide you with logs of all key usage.

Answer 230

Key Management Service

Question 231

What AWS network feature can establish a private network connection between AWS and your datacenter?

Answer 231

AWS Direct Connect

Question 232

What tool can you use to control multiple AWS services from the COMMAND LINE and automate them through scripts?

Answer 232

Command Line Interface (CLI)

Question 233

What service is a flexible and scalable outbound and inbound marketing communications service?

Answer 233

Amazon Pinpoint

Question 234

What service helps enterprise customers plan migration projects by gathering information about their on-premises data centers?

Answer 234

AWS Application Discovery Service

Question 235

How do I report abuse of AWS resources?

Answer 235

AWS Trust and Safety Team

AWS Abuse Team

Question 236

What provides the information required to launch an instance?

Answer 236

Amazon Machine Images

AMI

Question 237

What is defined as a fully managed, petabyte-scale data warehouse service in the cloud?

Answer 237

Amazon Redshift

Question 238

What service is a networking service that improves the performance of your users’ traffic by up to 60% using Amazon Web Services’ global network infrastructure?

Answer 238

AWS Global Accelerator

Question 239

What is defined as a label that you assign to an AWS resource?
Each one consists of a key and an optional value, both of which you define.

Answer 239

Tag

Question 240

What can you use as a common file system for multiple EC2 instances?

Answer 240

Amazon Elastic File System

Question 241

What Network is the global community of Partners who leverage Amazon Web Services to build solutions and services for customers?

Answer 241

AWS Partner Network

Question 242

What program supports companies that want to provide solutions to common AWS problems?

Answer 242

APN Consulting Partners

Question 243

What should an IAM user provide to interact with AWS services using the AWS CLI?

Answer 243

Access Keys