AWS VPC

Question 1

A logical component that is managed independently in real-time, attached to an EC2 instance as the primary when an instance is provisioned; specified in only one AZ.

Answer 1

Elastic Network Interface (ENI)

Question 2

Bound to an ENI upon deployment of an EC2 instance and cannot be removed nor changed

Answer 2

Primary private IP address
Primary ENI

Question 3

From one of your IPs within the provisioned subnet, this address belongs to your subnet where the ENI is attached and can be changed

Answer 3

Secondary private IP addresses
Secondary ENI

Question 4

This no-cost virtual feature supports bandwidth up to 100 Gbps, exceeding traditional network interfaces.

Answer 4

Enhanced Networking

Question 5

The AWS feature provides Internet access; however, it must be specified in the routing table as the route of last resort.

Answer 5

Internet Gateways

Question 6

Manage the routes and traffic entering and exiting your VPC as subnets cannot exist without one.

Answer 6

Route Tables

Question 7

This firewall feature controls traffic to and from the ENI and must have at least one associated with the ENI, allowing only whitelisted traffic based on protocol, destination, and port in a stateful manner.

Answer 7

Security Groups

Question 8

You can direct traffic to this ENI using all resources that have this feature attached, as well as referencing resources in another AWS account that also utilizes this security feature.

Answer 8

Source Security Group

Question 9

A Subnet control efficiently manages both inbound and outbound traffic, acting as a stateless security feature.

Answer 9

Network Access Control List (NACL)

Question 10

Enhanced protection that scales across multiple VPCs and subnets, offering additional security features.

Answer 10

AWS Network Firewall

Question 11

Allocated upon request and associated with an ENI.

Answer 11

Elastic IP Addresses (EIP)

Question 12

A non-persistent address assigned when an EC2 instance is deployed.

Answer 12

Public IP Addresses

Question 13

Using an Anycast, the AWS feature routes traffic to resources to any region via TCP or UDP, proxying the connection to the fastest endpoint (endpoints can be EC2, ELB, or an IP)

Answer 13

AWS Global Accelerator

Question 14

A scalable feature that proxies connections to the internet in a specific Availability Zone residing in one subnet; upon creation, we will associate an Elastic IP with it.

Answer 14

NAT gateway

Question 15

A nonscalable resource that you manage to proxy connection to the internet, allowing for connectivity to a jump server in your VPC

Answer 15

NAT instance

Question 16

Allows instances in your VPC outbound connections over IPv6 while preventing the internet from initiating an IPv6 connection to your instances

Answer 16

Egress-only internet gateways

Question 17

Enables seamless access to VPC resources and services, while providing low-latency connectivity to on-premises systems by connecting directly to the AWS data center, bypassing the Internet.

Answer 17

AWS PrivateLink

Question 18

A point-to-point connection between only two VPCs

Answer 18

VPC Peering

Question 19

Allows you to connect to public services within a VPC without going through the public internet.

Answer 19

VPC Endpoint

Question 20

AWS service that enables connection to multiple VPCs and on-premises networks using AWS Direct Connect or a VPN.

Answer 20

AWS Transit Gateway

Question 21

Using AWS Privatelink This approach is useful when you need to transfer large data sets or real-time data or meet regulatory requirements that preclude transferring data over the Internet.

Answer 21

AWS Direct Connect

Question 22

A global resource that provides a single connection point to multiple VPCs in a region, maintaining a BGP session with your on-prem equipment

Answer 22

Direct Connect Gateways

Question 23

Enables connection to private IP addresses of resources within a VPC, including EC2 and RDS instances.

Answer 23

Private Virtual Interface (VIFs)

Question 24

Enables connection to AWS services with a public endpoint, such as S3 and DynamoDB.

Answer 24

Public Virtual Interface (VIFs)

Question 25

Offers connectivity to one or more AWS Transit Gateways.

Answer 25

Transit Virtual Interface (VIFs)

Question 26

Service supports BGP and IPv6, enabling you to connect two on-premises sites to AWS VPC.

Answer 26

Direct Connect SiteLink

Question 27

Uses multiple instances to simultaneously process intensive computational workloads in parallel. These instances comprise an in a cluster.

Answer 27

High-Performance Computing

Question 28

Workloads are broken up into smaller tasks that each instance can work independently.

Answer 28

Loosely Coupled (HPC)

Question 29

Requires massive computing power that cannot be broken up. Instances work together in concert singularly.

Answer 29

Tightly coupled (HPC)

Question 30

A particular type of enhanced network adaptor for high-performance computing that bypasses the TCP/IP stack for additional throughput and reduced latency.

Answer 30

Elastic Fabric Adapter

Question 31

Automatically manage your Linux-based HPC cluster so you don’t have to do it manually.

Answer 31

AWS ParallelCluster