CloudFront Flashcards

1
Q

CloudFront

CloudFront

A

CDN provider service

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Security options (2)

CloudFront

A
  • DDoS protection
  • Firewall features

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

how CloudFront improves performance

CloudFront

A

caches content at edge locations

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

use case

CloudFront

A

static content to be available everywhere

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

types of origins (2)

CloudFront

A
  • S3 Bucket
  • other HTTP

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

S3 bucket origin

CloudFront

A

distributes and caches S3 objects at edge

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

how content is secured

S3 bucket origin

A

Origin Access Control (OAC)

S3 bucket origin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

file ingress

S3 bucket origin

A

can also be used for file uploads

S3 bucket origin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

other HTTP origins (4)

CloudFront

A
  • ALB
  • EC2 Instnace
  • S3 bucket set as static website
  • any other HTTP backend

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

requirement for ALB to be an Origin

CloudFront other HTTP origins

A

ALB must be public

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

what needs to be in SG for ALB to work as origin

CloudFront other HTTP origins

A

access must be allowed for public IPs of edge locations

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

requirement for EC2 instance to be an origin

CloudFront other HTTP origins

A

EC2 instance must be public

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

what needs to be in SG for EC2 instance to work as origin

CloudFront other HTTP origins

A

access must be allowed for public IPs of edge locations

CloudFront other HTTP origins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Geo Restriction

CloudFront

A

client IPs compared to 3rd party Geo-IP database

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Allowlist

Geo Restriction

A

only allow user IPs in allowed countries

Geo Restriction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Blocklist

Geo Restriction

A

block user IPs in blocked countries

Geo Restriction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Use case

Geo Restriction

A

copyright restrictions

Geo Restriction

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Price classes (3)

CloudFront

A
  • Price Class All
  • Price Class 200
  • Price Class 100

CloudFront

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Price Class All

Price classes

A

all regions for the best performance

Price classes

20
Q

Price Class 200

Price classes

A

Excludes most expensive regions

Price classes

21
Q

Price Class 100

Price classes

A

includes only least expensive regions

Price classes

22
Q

Cache invalidation

CloudFront

A

may force partial or entire cache refresh

CloudFront

23
Q

how to specify what is invalidated (2)

Cache invalidation

A

use * wildcard
use specific path with wildcard

Cache invalidation

24
Q

CDN provider service

CloudFront

A

CloudFront

CloudFront

25
* DDoS protection * Firewall features | CloudFront
Security options (2) | CloudFront
26
caches content at edge locations | CloudFront
how CloudFront improves performance | CloudFront
27
static content to be available everywhere | CloudFront
use case | CloudFront
28
* S3 Bucket * other HTTP | CloudFront
types of origins (2) | CloudFront
29
distributes and caches S3 objects at edge | CloudFront
S3 bucket origin | CloudFront
30
Origin Access Control (OAC) | S3 bucket origin
how content is secured | S3 bucket origin
31
can also be used for file uploads | S3 bucket origin
file ingress | S3 bucket origin
32
* ALB * EC2 Instnace * S3 bucket set as static website * any other HTTP backend | CloudFront
other HTTP origins (4) | CloudFront
33
ALB must be public | CloudFront other HTTP origins
requirement for ALB to be an Origin | CloudFront other HTTP origins
34
access must be allowed for public IPs of edge locations | CloudFront other HTTP origins
what needs to be in SG for ALB to work as origin | CloudFront other HTTP origins
35
EC2 instance must be public | CloudFront other HTTP origins
requirement for EC2 instance to be an origin | CloudFront other HTTP origins
36
access must be allowed for public IPs of edge locations | CloudFront other HTTP origins
what needs to be in SG for EC2 instance to work as origin | CloudFront other HTTP origins
37
client IPs compared to 3rd party Geo-IP database | CloudFront
Geo Restriction | CloudFront
38
only allow user IPs in allowed countries | Geo Restriction
Allowlist | Geo Restriction
39
block user IPs in blocked countries | Geo Restriction
Blocklist | Geo Restriction
40
copyright restrictions | Geo Restriction
Use case | Geo Restriction
41
* Price Class All * Price Class 200 * Price Class 100 | CloudFront
Price classes (3) | CloudFront
42
all regions for the best performance | Price classes
Price Class All | Price classes
43
Excludes most expensive regions | Price classes
Price Class 200 | Price classes
44
includes only least expensive regions | Price classes
Price Class 100 | Price classes
45
may force partial or entire cache refresh | CloudFront
Cache invalidation | CloudFront
46
use * wildcard use specific path with wildcard | Cache invalidation
how to specify what is invalidated (2) | Cache invalidation