AWS Services and Use Cases

Question 1

Low-latency ingestion, buffering and processing of streaming data in real-time, from a 1000s of sources.

Answer 1

Amazon Kinesis Data Streams

Question 2

Prioritise work in SQS queues, based on criteria.

Answer 2

Use separate queue and configure application layer to poll fro priority queue.

Question 3

Sender-consumer model, must account for failure of message processing.

Answer 3

Amazon SQS (Simple Queue Service), with dead letter queue to collect failed messages.

Question 4

Encrypting an existing DB that is not encrypted.

Answer 4

Create snapshot of existing DB. Create an encrypted copy from the snapshot, then create a new instance of the DB from the encrypted snapshot.

Question 5

Low latency experienced on read queries to a DB.

Answer 5

Amazon Aurora Global DB, one master in primary region where data is mastered and up to 5 read only in secondary Regions.

Question 6

Content on CloudFront needs restricting depending on country.

Answer 6

Use CloudFront Geo Restriction feature. Whitelist or blacklist countries.

Question 7

Intelligently route traffic for lowest latency and provide fast regional failover.

Answer 7

AWS Global Accelerator, uses AWS global network to route TCP and UDP traffic to healthy application endpoint in the closest region to the user, reducing latency.

Question 8

Cost effectively reduce latency for content delivery in certain regions.

Answer 8

Use CloudFront price class feature to determine where in the world the content will be cached.

Question 9

Copy data from NFS (Network File System), SMB (Server Message Block), AWS Snowcone, S3, AWS EFS (Elastic File System) and Amazon FSx (Windows File Server).

Answer 9

AWS DataSync alongside AWS Direct Connect, for enhances security and reliability.

Question 10

Instances in private subnet, user requires access to the instances.

Answer 10

Create an ALB (Application Load Balancer and associate public subnets in the AZs as the private subnets. This way instances become targets for Load-Balancing and are accessible from the internet.

Question 11

Restrict access on S3 via CloudFront. Don’t want to change URL.

Answer 11

Signed Cookies on CloudFront, for providing/restricting access to multiple files and don’t want to change URL.

Question 12

Restrict access to documents in S3 to a specific VPC.

Answer 12

Create an S3 access point and configure it to only allow a specific VPC.

Question 13

Write-Once-Read-Many requirement on S3 Objects.

Answer 13

Enable S3 Object Lock. Helps prevent object from being deleted or overwritten.

Question 14

ETL use case for moving data between data stores.

Answer 14

AWS Glue

Question 15

Optimise Aurora DB workloads and redirect different types of queries to high capacity and low capacity instances.

Answer 15

Create custom endpoints, depending on traffic

Question 16

Secure execution of Redis commands

Answer 16

User Redis AUTH command so that users have to enter password to execute commands.

Question 17

Access of data required from cloud to/from on prem file system.

Answer 17

File gateway on prem and AWS Storage Gateway to provide on-prem access and management into oher storage solutions (S3)

Question 18

Fastest way to transfer data and collate from a variety of locations

Answer 18

Enable Transfer Accelerator in S3 destination bucket

Question 19

Improve performance of DynamoDB DB by distributing workload effectively

Answer 19

Partition Keys with High-Cardinality Attributes. High number of distinct value between them

Question 20

Protect backend system that receive API calls from excessive traffic

Answer 20

API throttling limit within the API gateway

Question 21

Query data from multiple AWS accounts from a central repo.

Answer 21

AWS Lake Formation

Question 22

Execute a function to allow CloudFront content closer to users

Answer 22

Lambda@Edge allows customisation of CloudFront content and execution of functions in locations closer to users.

Question 23

Share resources across AWS OU account.

Answer 23

AWS RAM (Resource Access Manager) sharing of Transit Gateway, Subnets etc

Question 24

Enable event-drive architecture, do something when an event happens.

Answer 24

AWS EventBridge to run tasks on Fargate whenever an event happens in an S3 bucket for example.

Question 25

Migrate a Windows File System to the cloud.

Answer 25

Amazon FSx for Windows File Server

Question 26

Track data compliance on PII data

Answer 26

Amazon Macie, ML powered data security service that prevents data loss. It uses ML to discover and protect sensitive data.

Question 27

Ensure an RDS DB can only be accessed via an authentication token

Answer 27

Enable IAM DB Authentication for SQL DBs

Question 28

Analyse vats amounts of data.

Answer 28

Amazon EMR - Elastic MapReduce, allows you to process data for analytics and business intelligence purposes. ETL as well and works with Apache Hadoop and Spark.

Question 29

Manage software licensing.

Answer 29

AWS License Manager