CloudFront Flashcards

1
Q

CloudFront

CloudFront

A

CDN provider service

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Security options (2)

CloudFront

A
  • DDoS protection
  • Firewall features

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

how CloudFront improves performance

CloudFront

A

caches content at edge locations

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

use case

CloudFront

A

static content to be available everywhere

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

types of origins (2)

CloudFront

A
  • S3 Bucket
  • other HTTP

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

S3 bucket origin

CloudFront

A

distributes and caches S3 objects at edge

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

how content is secured

S3 bucket origin

A

Origin Access Control (OAC)

S3 bucket origin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

file ingress

S3 bucket origin

A

can also be used for file uploads

S3 bucket origin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

other HTTP origins (4)

CloudFront

A
  • ALB
  • EC2 Instnace
  • S3 bucket set as static website
  • any other HTTP backend

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

requirement for ALB to be an Origin

CloudFront other HTTP origins

A

ALB must be public

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

what needs to be in SG for ALB to work as origin

CloudFront other HTTP origins

A

access must be allowed for public IPs of edge locations

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

requirement for EC2 instance to be an origin

CloudFront other HTTP origins

A

EC2 instance must be public

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

what needs to be in SG for EC2 instance to work as origin

CloudFront other HTTP origins

A

access must be allowed for public IPs of edge locations

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Geo Restriction

CloudFront

A

client IPs compared to 3rd party Geo-IP database

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Allowlist

Geo Restriction

A

only allow user IPs in allowed countries

Geo Restriction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Blocklist

Geo Restriction

A

block user IPs in blocked countries

Geo Restriction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Use case

Geo Restriction

A

copyright restrictions

Geo Restriction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Price classes (3)

CloudFront

A
  • Price Class All
  • Price Class 200
  • Price Class 100

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Price Class All

Price classes

A

all regions for the best performance

Price classes

20
Q

Price Class 200

Price classes

A

Excludes most expensive regions

Price classes

21
Q

Price Class 100

Price classes

A

includes only least expensive regions

Price classes

22
Q

Cache invalidation

CloudFront

A

may force partial or entire cache refresh

CloudFront

23
Q

how to specify what is invalidated (2)

Cache invalidation

A

use * wildcard
use specific path with wildcard

Cache invalidation

24
Q

CDN provider service

CloudFront

A

CloudFront

CloudFront

25
Q
  • DDoS protection
  • Firewall features

CloudFront

A

Security options (2)

CloudFront

26
Q

caches content at edge locations

CloudFront

A

how CloudFront improves performance

CloudFront

27
Q

static content to be available everywhere

CloudFront

A

use case

CloudFront

28
Q
  • S3 Bucket
  • other HTTP

CloudFront

A

types of origins (2)

CloudFront

29
Q

distributes and caches S3 objects at edge

CloudFront

A

S3 bucket origin

CloudFront

30
Q

Origin Access Control (OAC)

S3 bucket origin

A

how content is secured

S3 bucket origin

31
Q

can also be used for file uploads

S3 bucket origin

A

file ingress

S3 bucket origin

32
Q
  • ALB
  • EC2 Instnace
  • S3 bucket set as static website
  • any other HTTP backend

CloudFront

A

other HTTP origins (4)

CloudFront

33
Q

ALB must be public

CloudFront other HTTP origins

A

requirement for ALB to be an Origin

CloudFront other HTTP origins

34
Q

access must be allowed for public IPs of edge locations

CloudFront other HTTP origins

A

what needs to be in SG for ALB to work as origin

CloudFront other HTTP origins

35
Q

EC2 instance must be public

CloudFront other HTTP origins

A

requirement for EC2 instance to be an origin

CloudFront other HTTP origins

36
Q

access must be allowed for public IPs of edge locations

CloudFront other HTTP origins

A

what needs to be in SG for EC2 instance to work as origin

CloudFront other HTTP origins

37
Q

client IPs compared to 3rd party Geo-IP database

CloudFront

A

Geo Restriction

CloudFront

38
Q

only allow user IPs in allowed countries

Geo Restriction

A

Allowlist

Geo Restriction

39
Q

block user IPs in blocked countries

Geo Restriction

A

Blocklist

Geo Restriction

40
Q

copyright restrictions

Geo Restriction

A

Use case

Geo Restriction

41
Q
  • Price Class All
  • Price Class 200
  • Price Class 100

CloudFront

A

Price classes (3)

CloudFront

42
Q

all regions for the best performance

Price classes

A

Price Class All

Price classes

43
Q

Excludes most expensive regions

Price classes

A

Price Class 200

Price classes

44
Q

includes only least expensive regions

Price classes

A

Price Class 100

Price classes

45
Q

may force partial or entire cache refresh

CloudFront

A

Cache invalidation

CloudFront

46
Q

use * wildcard
use specific path with wildcard

Cache invalidation

A

how to specify what is invalidated (2)

Cache invalidation