Cloud Concepts and Technology

Question 1

Name the 6 advantages of cloud computing

Answer 1

1. Trade capitalist expense for variant expense- you pay for what you need.
2. Benefit from massive economies of scale
3. Stop guessing about capacity
4. Increase speed and capacity
5. Stop spending money running and managing data centers
6. Go global in minutes (deploy web apps all around the world)

Question 2

What are the 3 types of cloud computing?

Answer 2

1. IAAS- Infastrucutre as a service- EC2
2. PAAS- Platform as a service- Elastic Beanstalk
3. SAAS- Software as a service- Gmail

Question 3

What are the 3 types of cloud computing deployments?

Answer 3

1. Public cloud- e.g. Azure, AWS
2. Hybrid cloud- e.g. Hybrid cloud
3. Private cloud- e.g. VMware

Question 4

What is a region?

Answer 4

A region is a physical location in the world that consists of 2 or more AZs

Question 5

What is a AZ?

Answer 5

Availability zone- One or more discrete data centers, each with redundant power, networking, and connectivity housed in separate facilities.

Question 6

What is an edge location?

Answer 6

End points for AWS which are used for caching content. Typically consists of CloudFront- AWS’s content delivery network (CDN)

Question 7

What the3 factors you must considered when deciding which region to use?

Answer 7

1. Data sovereignty
2. Latency to end users
3. AWS services you need- May not be available in every region

Question 8

What are the different support packages?

Answer 8

1. Basic- Free
2. Developer- $29/Month
3. Business- $100/Month
4. Enterprise- $15,000/Month

Question 9

Which support packages offers a TAM?

Answer 9

Enterprise

Question 10

What is a TAM?

Answer 10

TAM- Technical Account Manager

Dedicated AWS expert

Question 11

What is a Billing alert/alarm?

Answer 11

An alert when a defined level of spending has been reached

Question 12

What is IAM?

Answer 12

IAM= Identity Access Management

It is GLOBAL. When you create a user of group it is GLOBAL

Question 13

Name the 3 ways you can access the AWS platform

Answer 13

1. Via the console
2. Programmatically (via command line)
3. Using a Software Development Kit (SDK)

Question 14

What is your root account? (3 points)

Answer 14

1. The email you used to create your account.
   Root always has full admin access.
2. You should never give out root credentials away to anyone. Instead you should create a user for each individual within your organisation.
3. You should always secure your root account with an MFA

Question 15

What is a group?

Answer 15

A group is a place to store your users. Your users will inherit all permissions that that group has. e.g. devs, sysop, admin….

Question 16

How do you set permissions in a group?

Answer 16

To set permissions in a group you attach a policy to that group.

Question 17

What is a policy?

Answer 17

A policy is in the JavaScript Object Notation (JSON) format containing key-value pairs.

Question 18

What is S3? (5 points)

Answer 18

1. S3 is object based storage.
2. Files can be from 0 to 5TB
3. Unlimited storage
4. Files are stored in buckets
5. The S3 name space is GLOBALLY unique

Question 19

What is the format of a S3 bucket URL?

Question 20

What can you not store on S3?

Answer 20

OS or programs.. It must be flat files e.g. images, videos e.t.c.

Question 21

What HTTP code will be received when an upload to S3 is successful?

Answer 21

200

Question 22

How are objects stored in S3?

Answer 22

Key- (name of object)

Value- (Data made up of a sequence of bytes)

Question 23

What is the consistency model of S3? (2 points)

Answer 23

1. S3 has read after write for puts of new objects

2. S3 has eventual consistency for overwrite PUTS and DELETES (can take a while to propagate)

Question 24

Can you have S3 buckets in specific regions ?

Answer 24

Yes

Question 25

What is S3 cross replication?

Answer 25

Automatic replication contents of one bucket across 2 regions

Question 26

What is S3 TA?

Answer 26

Transfer Acceleration

Objects are transferred around the world using amazons backbone network using dedicated cables.

User upload > edge location > AWS network cables > S3 bucket

Question 27

What are the 6 types of S3 storage classes

Answer 27

1. S3 standard- 99.99% avail 99.^11 durability, Multi facility
2. S3- IA Infrequently accessed- IA, but required instantly- costs high for retrieval
3. S3- one zone IA- Loss cost for IA data, not multi AZ
4. S3- Intelligent tiering- ML based- auto moving data to optimize cost
5. S3 Glacier- Low cost storage, retrieval mins to hours
6. S3 Deep archive- Lowest cost where retrieval time of 12 hours is acceptable- lowest cost available

Question 28

Can S3 be used to host a website?

Answer 28

Yes, S3 can host a static website, this will scale to meet the demand of requests e.g. movie release website

Question 29

What is CloudFront?

Answer 29

CloudFront is AWS’s CDN- content delivery network. CloudFront caches content at Edge locations. This improves the access speed for customers.

Question 30

What is an origin (CloudFront)?

Answer 30

An origin is any file that the CDN will distribute. This can be an S3 bucket, an EC2 instance, ELB e.t.c

Question 31

What is a distribution (CloudFront)?

Answer 31

The name given to the CDN and consists of a collection of edge locations

Question 32

What are web and RTMP distributions used for?

Answer 32

Website and media streaming

Question 33

Are edge locations read only?

Answer 33

No, you can PUT object to edge locations

Question 34

How long are objects cached at edge locations?

Answer 34

They are cached for the TTL (Time To Live). This is always in seconds.

Question 35

What is EC2?

Answer 35

EC2 Elastic Compute Cloud

A web service that provides resizable compute capacity in the cloud (i.e. VMs).

Question 36

What is the main advantage of using EC2 over physical servers? (2 points)

Answer 36

Reduces the time required to obtain and boot new server instances to minutes.

Allows you to scale capacity up and down- when computing requirements change.

Question 37

What are the 4 pricing models for EC2?

Answer 37

1. On demand- pay as you go
2. Reserved instances- Provides you with defined capacity, get a significant discount on hours charge, contract terms 1 or 3 years
3. Spot- Enables you to bid what price you want to pay. Greater savings for compute where you have flex start and stop times
4. Dedicated hosts- Physical servers- useful for server bound licensing or regulatory issues

Question 38

What are the 11 classes of EC2 instances? (FIGHTDRMCPX)

Answer 38

1. F- for FPGA
2. I- for IOPS
3. G - Graphics
4. H- High disc throughput
5. T- Cheap genera purpose (micro)
6. D- For density
7. R- For RAM
8. M- Main choice for general purpose apps
9. C- for compute
10. X- Extreme memory
11. Z- Extreme memory and CPU

Question 39

What is EBS?

Answer 39

Elastic Block Storage- Virtual discs in the cloud

Question 40

What are the 2 main types of EBS?

Answer 40

SSD- a) GP2- General storage b) IO1- Provisioned IOPS SSD

Magnetic- a) ST1 - Throughput optimized, b) SC1- cold HDD

Question 41

What do you need to connect to an EC2 instance?

Answer 41

Private key

Question 42

Name 4 common ports

Answer 42

Linux = SSH (port 22)
Microsoft = RDP (port 3389) 
HTTP = port 80
HTTPS = port 443

Question 43

What traffic will the following IP addresses allow:

1. 0.0.0.0/0
2. X.X.X.X/32

Answer 43

1. all traffic

2. Only traffic from X.X.X.X IP address

Question 44

What is a security group?

Answer 44

Virtual firewalls in the cloud. You can open ports to allow traffic

Question 45

What should you always design for?

Answer 45

Failure! Always spread EC2 instances across AZs in a given region

Question 46

What is an IAM user?

Answer 46

IAM user is an entity that you create in AWS. Represents a person who uses IAM to interact with AWS. When creating a user you grant it permission by making it a member of a group that has an appropriate policy attached.

Question 47

What is a IAM group?

Answer 47

A collection of IAM users. Allows you to specify permissions easily.

Question 48

What is an IAM role?

Answer 48

Very similar to a user, in that it has an identity and permission policies attached. But its DOES NOT have any credentials (password or access keys) associated with it. Instead of being uniquely associated with one person. A role is intended to be assumable by anyone who needs it. i.e. temporary permissions for a specific task.

Question 49

Why use a role over a user?

Answer 49

Much more secure than using access key and secret keys and are easier to manage.

Question 50

Are users and roles GLOBAL?

Answer 50

Yes

Question 51

Name 3 types of load balancers

Answer 51

1. Application load balancers- layer 7- intelligent
2. Network balancer- Extreme performance- static IP
3. Classic load balancers

Question 52

What is RDS?

Answer 52

Relational Database Service

Question 53

How many engines are included in RDS?

Answer 53

6- Microsoft SQL, MySQL, PostgreSQL, Oracle, ,Aurora and MariaDB

Question 54

What is DynamoDB

Answer 54

NoSQL database

Question 55

What is Redshift used for? (3 points)

Answer 55

Business inteligence or data warehousing
OLAP- Online analytics processing
Querying large data

Question 56

what is Elasticache?

Answer 56

Service used to cache frequently used queries to improve performance of existing databases:

a) Memcache
b) Redis

Question 57

Name a graph database

Answer 57

Amazon Neptune

Question 58

What are the 2 key features of RDS?

Answer 58

Multi AZs- Disaster recovery

Read replicas- For performance

Question 59

What is autoscaling?

Answer 59

The process of automatically provisioning multiple EC2 instances behind a load balancer depending on demand

Question 60

What is DNS?

Answer 60

Domain Name System

Like a phonebook –> process computer use to resolve domain names to IP addresses

Question 61

What is Route53? and what do you use it for?

Answer 61

Route53- Global, can be used to direct traffic and to register domain names.

Question 62

What is Elastic Beanstalk?

Answer 62

Upload code > automatically handles details of capacity provisioning, load balancing and scaling

Question 63

What is CloudFormation? (2 points)

Answer 63

A service to model and set up AWS resources

Create JSON templates to define environment.

Question 64

Are Elastic Beanstalk and CloudFormation free?

Answer 64

Yes, but the resources they provision are not!

Question 65

What is the difference between Elastic Beanstalk and CloudFormation?

Answer 65

Elastic beanstalk is not programmable where as CloudFormation is!

Also EB is limited in what it can provision

Question 66

Name 5 GLOBAL services

Answer 66

1. IAM
2. Route53
3. CloudFront
4. SNS- simple notification service
5. SES- Simple email service

Question 67

Name 6 AWS services that can be used on premise…

Answer 67

1. Snowball
2. Snowball edge
3. Storage gateway
4. CodeDeploy
5. Ops works
6. IOT Greengrass- allows devices to use lambda functions

Question 68

Which 2 on premise services can be used for deployment?

Answer 68

1. CodeDeploy- Automates configuration of servers

2. Opswords- Allows you to configure servers on premise automatically

Question 69

What is AWS storage gateway?

Answer 69

A hybrid storage service that gives you on premise access to cloud storage.

Question 70

What is CloudWatch?

Answer 70

A service to monitor performance of your AWS environment as well as your apps that run on AWS. CloudWatch with EC2 will monitor events every 5 mins by default. You can create cloud watch alarms.

Question 71

What is Amazons System Manager?

Answer 71

A service to manage fleets of EC2 instances. Install a piece of software on each EC2 instance and you can run commands on batches of EC2 instances. This service integrates with CloudWatch to give you a dashboard of the entire estate.