CG - Practice Test 1 Flashcards
AWS Config
continuously record configurations changes to Amazon RDS DB Instances, DB Subnet Groups, DB Snapshots, DB Security Groups, and Event Subscriptions and receive notification of changes through Amazon Simple Notification Service (SNS)
All EC2 operating systems are supported by CloudWatch. - T or F
True
When can you encrypt an EBS volume
time of creation
The NLB does not uses a Round-Robin strategy - T or F
true
The Classic uses a Round-Robin strategy for
TCP listeners only
How does ALB do round robin?
1st selects a target based on the routing rule, then uses a Round-Robin strategy to select a node.
CRR replicates? associated with the object as part of the replication.
metadata and ACLs
Which of the following will happen when an EC2 instance with an associated Elastic IP is stopped and restarted?
- All data on instance-store devices will be lost
2. The underlying host for the instance will be changed
Which of the following database engines support read replicas?
PostgreSQL
Oracle
MySQL
What is the ‘first-byte’ latency when retrieving data from Glacier?
3-5 hours
What is the maximum size of a general-purpose SSD EBS volume?
16TiB
AWS Services were introduced at re:Invent 2016
Lex
Polly
Lambda - Version numbers are never reused, even for a function that has been deleted and recreated. - true or false
true
Bucket names can contain underscores. - true or false
false; Bucket names must not contain underscores.
Service control policies (SCPs)
type of policy that you can use to manage your organization
SQS vs Kinesis streams
SQS - hosted queue for storing messages as they travel between applications or microservices while Kinesis streams allows real-time processing of streaming big data and the ability to read and replay records to multiple Amazon Kinesis Applications.
Amazon SQS with other AWS services
Amazon EC2, Amazon EC2 Container Service (Amazon ECS), and AWS Lambda, as well as with storage and database services such as Amazon Simple Storage Service (Amazon S3) and Amazon DynamoDB
With Application Load Balancers and Network Load Balancers, you register targets in
target groups, and route traffic to the target groups
With Classic Load Balancers, you register
instances with the load balancer.
Classic Load Balancers uses ? for HTTP and HTTPS listeners
least outstanding requests routing algorithm
2 types of DB instances that make up an Aurora DB Cluster
- Primary DB instance - read/write
2. Aurora Replica - read only
What gets replicated when doing a CRR?
- objects created after adding the replication
- uncrypted object and encrypted ones (SSE-S3 and SSE - KMS)
- Object metadata
- Objects in the source bucket for which the bucket owner has permissions to read objects and ACLS
- Object tags
- S3 object lock retention information
SGS evaluate all rules before deciding whether to allow traffic - T or F
true
snow ball and edge capacity diff
snowball: 50 (42 usable); 80 (72 usable)
edge: 100 (83 usable); 100 clustered (45 TB per node usable)
egress-only Internet gateway
horizontally scaled, redundant, and highly available VPC component that allows outbound communication over IPv6 from instances in your VPC to the Internet, and prevents the Internet from initiating an IPv6 connection with your instances
types of scaling policies
- Target tracking scaling—Increase or decrease the current capacity of the group based on a target value for a specific metric. This is similar to the way that your thermostat maintains the temperature of your home – you select a temperature and the thermostat does the rest.
- Step scaling—Increase or decrease the current capacity of the group based on a set of scaling adjustments, known asstep adjustments, that vary based on the size of the alarm breach.
- Simple scaling—Increase or decrease the current capacity of the group based on a single scaling adjustment.
Multiple Scaling Policies - if both are met, what will happen
Amazon EC2 Auto Scaling chooses the policy that provides the largest capacity for both scale out and scale in
S3 Static Website Hosting
On a static website, individual webpages include static content
Operational Excellence
- Perform operations as code
- Annotated documentation
- Make frequent, small, reversible changes
- Refine operations procedures frequently
- Anticipate failure
- Learn from all operational failures
AWS Trusted Advisor is a tool that
provides real time guidance to help you provision your resources following AWS best practices
AWS Cloud compliance
enables you to understand the robust controls in place at AWS To maintain security and data protection in the cloud
Business support
provides access to the full set of Trusted Advisor checks and guidance to provision your resources following the AWS best practices
Enterprise support
customers also receive support from TAM who as designated technical points of contact, provide guidance to help you plan and build solutions using best practices and proactively keep your AWS env operationally healthy
AWS Developer Tools
a set of services enabling rapid and safe delivery of software
AWS Systems Manager
collection of capabilities that help you automate management tasks on your Amazon EC2 instances and systems in hybrid environments
Personal Health Dashboard
provides alerts and remediation guidance when AWS is experiencing events that may impact you
Service Health Dashboard
provides up to the minute information on AWS service availability
Amazon QuickSight
a business analytics service that makes it easy to build visualizations, perform ad-hoc analysis and quickly get insights from your data
AWS CodeCommit
provides a version controlled repository for your operations as code that can be shared through IAM
Dedicated instances Tenancy attributes
- default - shared
- dedicated - single - tenant hardware
- host - runs on a dedicated host, which is an isolated server with configurations that you can control
Limitations in changing tenancy attributes for dedicated instances
default -> dedicated/host (not allowed)
dedicated/host -> default
allowed tenancy change
host -> dedicated
dedicated -> host
