AWS-Tech Concepts

Question 1

What is an AWS Availability Zone?

Answer 1

1 or more An Availability Zones may exist within a region.
1 or more discreet data centres
Redundant power, networking and connectivity

Question 2

What is Cloud Computing?

Answer 2

Refers to the on-demand delivery of IT resources and applications via the internet with pay as you go pricing.

Question 3

What is Cloud Formation

Answer 3

Cloud Formation enabled the templated envrionments.

Question 4

What are characteristics of Elasticity ?

Answer 4

• scale resources up or down easily.
• quick deployment
• instantly scale up
• instantly shut down resources that are no longer required.

Question 5

What are characteristics of Fault Tolerance?

Answer 5

• Built-in redundancy of components to ensure uptime.

Question 6

What are characteristics of High Availability?

Answer 6

• Minimised downtime.
• systems always functioning and accessible.
• No human intervention required.

Question 7

What is an AWS Region?

Answer 7

A physical location in the world, it can contain 1 or more availability zones.

Question 8

What is CloudFront?

Answer 8

This is Amazon’s CDN and is deployed in highly populated areas, also called Edge Locations.

Question 9

What are Edge Locations?

Answer 9

Edge locations are highly populated areas where Amazon deploys it’s CDN - Cloud front and DNS service.

Question 10

What services are run at the edge locations?

Answer 10

Amazon Route 53
Cloudfront
AWS WAF
AWS Shield

Question 11

What are reserved instances ?

Answer 11

Purchased instances with a 1-3 year term at a significant discount.

Question 12

What are Scheduled Instances ?

Answer 12

Purchased instances that are always available on the specified recurring schedule. 1 year term only.

Question 13

What are spot instances?

Answer 13

Bid on unused instances, i.e unused technology in an amazon data centre. Your instance runs as long as possible provided it is above the spot price.

Question 14

What are dedicate instances ?

Answer 14

paid by the hour ? single tenant hardware.

Question 15

What are dedicated hosts?

Answer 15

pay for a physical host, single tenant.

Question 16

What is a VPC ?

Answer 16

a virtual private network. You can define VPNs, private subnets, configure gateways.
Each subnet must reside entirely within 1 availability
zone.

Question 17

VPN options ?

Answer 17

1) Hardware VPN (IPSec)
2) AWS Direct Connect (purchase a direct connection 1-10Gb personal connection)
3) AWS VPN Cloudhub (dedicated private (up to 10 routers))
4) Software VPN (VPN that terminates on an EC2 instance)

Question 18

What is AWS Artifact ?

Answer 18

It allows the end user to download compliance and audit reports for your auditor. (PCI, FFIEC, ISO, GDPR, SOC1,2,3 etc etc)
(AWS > Services > Artifact)

Question 19

What is Cloud trail?

Answer 19

1) It is on by default.
2) It logs API calls
3) It can log to an S3 bucket

Question 20

Amazon DBs

Answer 20

RDS
Amazon DynamoDB
Amazon elasticache
Amazon RedShift
AWS DB Migration service

Question 21

What is RDS ?

Answer 21

Cost-efficient and resizable
manages time consuming DBs
Fast to deploy
isolated DB environment in the cloud
Example: MySql, PostgreSQL, MS SQL, MariaDB, Oracle, Amazon Aurora.

Question 22

What is Amazon DynamoDB ?

Answer 22

Similar to MongoDB / Cassandra NoSQL.
No limit on storage
fully managed.
need to spec the Read and Write throughput.

Question 23

What is cloud watch?

Answer 23

A big dispersed metrics gathering service, can you cannot opt our.
CPU utilisation, I/O, Network throughput.
You can create alarms based on statistics.
alarms can send notifications and perform functions.

Question 24

What is an Elastic Load Balancer ?

Answer 24

A network or application layer load balancer that allows you to spread network or application load.

Question 25

What is the VPC?

Answer 25

Amazon Virtual Private Cloud.

1) Allow you to created virtual networks in the AWS cloud.
2) Allows complete control network configuration
3) Offers several layers of security controls
4) Other AWS services deploy into VPC.
5) Lives in a specific region
6) Can span multiple Availability Zones

Question 26

What is a VPC subnet ?

Answer 26

It is used to separate and divide multiple Amazon VPCs.
It allows amazon VPCs to span multiple Availability Zones. (AZ)
You can create as many as you want.
Fewer is recommended.

Question 27

What are VPC route tables?

Answer 27

They control traffic going out of a subnet.

Question 28

What is the role of an IGW?

Answer 28

Allows access to the internet from the VPC.

Question 29

What is the role of the NACL?

Answer 29

It controls access to subnets. (stateless)

Question 30

what is a public subnet ?

Answer 30

A VPC subnet can communicate directly with the internet. *requires a IGW)

Question 31

what is a private subnet ?

Answer 31

A VPC subnet that cannot communicate directly with the internet.

Question 32

What is the AWS Security Group?

Answer 32

It is built into AWS.
It is essentially a virtual firewall.
controls accessibility
basically, it filters traffic to your instances