CloudFormation

Question 1

What is the Infrastructure as Code in AWS?

IaC

Answer 1

AWS CloudFormation

Question 2

What does infrastructure as code mean?

Answer 2

Managing and provisioning data centers through machine readable definition files

Question 3

Does CloudFormation cost anything to use?

Answer 3

No, The services it provisions does cost money.

Question 4

Which 2 formats are supported for creating CloudFormation templates?

Answer 4

JSON

YAML

Question 5

The section of a Cloudformation template that contains the AWS components being created

Answer 5

Resources

Question 6

What is the minimum number of resources you can define in a CloudFormation template?

Answer 6

1

CloudFormation Templates requires you to at least list one resource.

Question 7

Values that should be returned after deploying a CloudFormation template should be defined in what section?

Answer 7

Outputs

Values that returned eg. an ip-address of new server created.

Question 8

Values that should be returned after deploying a CloudFormation template should be defined in what section?

Answer 8

Outputs

Values that returned eg. an ip-address of new server created.

Question 9

A collection of CloudFormation templates ready to launch on AWS

Answer 9

AWS QuickStart

Question 10

Who creates and provides AWS Quickstarts?

Answer 10

AWS solutions architects and 3rd party partners

Question 11

The 3 types of Cloud Formation stack updates

Answer 11

Update with no interruption
Update with some interruption
Replacement

Question 12

The 3 types of Cloud Formation stack updates

Answer 12

Update with no interruption (Without change resource’s physical ID)

Update with some interruption (Retain resource’s physical ID)

Replacement (It changes the resource’s physical ID)

Question 13

What are 2 reasons that you might want to prevent stack updates?

Answer 13

Prevent data loss

Prevent interruption to service

Question 14

What are 2 benefits of using NestedStacks?

Answer 14

Reduces complexity of larger templates

Makes templates more re-usable

Question 15

When using NestedStacks where must you store the nested template files?

Answer 15

S3 Bucket

It’s a .template

Question 16

This CloudFormation feature allows you to reference other templates inside your own template

Answer 16

Nested Stacks

ˈnɛstəd stæks

Question 17

When creating a stack via the CLI which option would you provide to disable the automatic rollback feature?

Answer 17

–ignore-rollback

Question 18

When you ___, ___ or ___, a stack, you can encounter and error and CloudFormation will attempt to rollback your stack to its previous state.

Eg.
Template Syntax Error
Try deleting a Resource which No longer exists

Answer 18

Create
Destroy
Update

Question 19

In CloudFormation “Drift” is considered when this occurs

Answer 19

The current stacks configuration differs from what CloudFormation expects it to be

Question 20

When detecting drift with NestedStacks where do you need to run the drift detection?

Answer 20

On each nested stack

Question 21

What are common causes of drift in CloudFormation?

Two common causes

Answer 21

Deleting resources

Developers modifying resources directly

Question 22

In Cloud Formation, What is when your stack’s actual configuration differs by what CloudFormation Expects.

Answer 22

Drift

It Has drifted

Question 23

In CloudFormation you can use Pseudo Parameters, if you want to have the value “us-east-1” in your Template, what do you have to write?

Answer 23

!REF “ASW::Region”

Question 24

Resource Attributes In CloudFormation allows you to add policies, what are some policies you can set?

There are 5

Answer 24

• CreationPolicy (Success signals)
• DeletionPolicy (If you delete an RDS, delete, retain, snapshot)
• UpdatePolicy (ASG, ECache, Lambda Alias)
• UpdateReplacePolicy (If you update an RDS, delete, retain…)
• DependsOn (Resources that depends on others)

CreationPolicy
Use this attribute when you want to wait on resource configuration actions before stack creation proceeds. For example, if you install and configure software applications on an EC2 instance, you might want those applications to be running before proceeding. In such cases, you can add a CreationPolicy attribute to the instance, and then send a success signal to the instance after the applications are installed and configured

DeletionPolicy
With this attribute you can preserve or (in some cases) backup a resource when its stack is deleted. You specify a DeletionPolicy attribute for each resource that you want to control. If a resource has no DeletionPolicy attribute, AWS CloudFormation deletes the resource by default.

UpdatePolicy
Use the UpdatePolicy attribute to specify how AWS CloudFormation handles updates to the

UpdateReplacePolicy
Use the UpdateReplacePolicy attribute to retain or (in some cases) backup the existing physical instance of a resource when it is replaced during a stack update operation.

DependsOn
With this attribute you can specify that the creation of a specific resource follows another. When you add a DependsOn attribute to a resource, that resource is created only after the creation of the resource specified in the DependsOn attribute.

Question 25

This CloudFormation feature lets you assign values to properties that are not available until runtime

Answer 25

Intrinsic Functions

AWS CloudFormation provides several built-in functions that help you manage your stacks. Use intrinsic functions in your templates to assign values to properties that are not available until runtime.

Question 26

In CloudFormation Fn:GetAtt and Fn:Sub are common examples of these

And also:
    Fn::Base64
    Fn::Cidr
    Condition functions
    Fn::FindInMap
    Fn::GetAtt
    Fn::GetAZs
    Fn::ImportValue
    Fn::Join
    Fn::Select
    Fn::Split
    Fn::Sub
    Fn::Transform
    Ref

Answer 26

Intrinsic Functions

AWS CloudFormation provides several built-in functions that help you manage your stacks. Use intrinsic functions in your templates to assign values to properties that are not available until runtime.

You can use intrinsic functions only in specific parts of a template. Currently, you can use intrinsic functions in resource properties, outputs, metadata attributes, and update policy attributes. You can also use intrinsic functions to conditionally create stack resources.

Question 27

This common Cloud Formation intrinsic function lets you select various attributes from a specific AWS resource

Answer 27

Fn:GetAtt

{ “Fn::GetAtt” : [ “logicalNameOfResource”, “attributeName” ] }

Question 28

What is CDK

Answer 28

Cloud Development Kit

Its an open source software development framework to define your cloud application resources using familiar programming languages.

Imperative Infrastructure

• More Flexible
• Less certain
• Write Less

Question 29

You can write IaC using your favorite language with this

Answer 29

CDK
Cloud Development Kit
Imperative Infrastructure

• More Flexible
• Less certain
• Write Less

Question 30

In CloudFormation, Stack Updates can be performed two different ways

Answer 30

• Direct Update (Submit and it deploys)

- Executing changes set (Preview and decide if deploy)

Question 31

What are the 8 sections you cand find in a CloudFormation template?

Answer 31

• Metadata (Additional information)
• Description (What this template is supposed to do)
• Parameters (Values to pass at runtime)
• Mapping (Key-values to use in the template)
• Conditions (It’s true it creates the resource or output)
• Transform (Macros, SAM)
• Resources (EC2, Lambda, RDS, Lambda)
• Outputs (Values returned)

Question 32

What is CloudFormation?

What are its 9 components?

Answer 32

• CloudFormation is the Infrastructure as Code (IaC) powered by AWS and it automates the provisioning of resources
• NestedStacks (Break up the template)
• Template Sections (Metadata, description, parameters..)
• Stack Updates (Direct updates, Change sets)
• Update circumstances (With no interruption…)
• Intrinsic functions (Ref for pseudo…, Fn:…)
• Pseudo parameters (!Ref “AWS::Region”…)
• Drift detection (Differences)
• Resource attributes (Creation policy, Deletion policy…)
• SAM

Question 33

In CloudFormation CLI
The command uploads local artifacts, such as source code for an AWS Lambda function or a Swagger file for an AWS API Gateway REST API, to an S3 bucket.

Answer 33

aws cloudformation package –template-file /path_to_template/template.json –s3-bucket bucket-name –output-template-file packaged-template.json