CloudFront Flashcards

1
Q

This is the location where content will be cached. This is separate to an AWS Region/AZ

A

Edge Location

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

This is the origin of all the files that the CDN will distribute. This can be an S3 bucket, an EC2 Instance, an ELB, or Route53

A

Origin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

This is the name given the CDN which consists of a collection of Edge Locations.

A

Distribution

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Types of cloudfront distributions:

___ used for websites

____ - used for media streaming

A

web distribution

RTMP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

T or F

Edge locations are not just Read Only - you can write to them too

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

T or F

Edge locations objects are cached forever

A

False

They are cached for life of TTL

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Can you clear cached objects in CF?

A

yes, but you will be charged

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Can you restirct access using signed URLS or signed cookies?

A

yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Use CloudFront Signed URLs or Signed Cookies

  1. A signed URL is for individual files.

1 file = ___ URL

  1. A signed cookie is for multiple files.

1 cookies = ____ files(s).

A

1, multiple

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

When we create a signed URL or signed cookie, we attach a policy.

The policy can include which of the below?

URL expiration

cookie expiration

IP ranges

Subnet masks

Trusted Signers ( Which AWS Accounts can create signed URLs)

Encryption keys

A

URL expiration

IP ranges

Trusted signers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Cloudfront signed URL key-pair is aaccount wide and manaaged by ___ user

A

root

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

CF signed URL can filter by date, path, IP address, exiration, etc.

T or F

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

S3 Signed URL

Issues a request as the ___ ___ who creates the presigned URL

A

IAM user

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

S3 signed URL has limited ___

A

lifetime

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Cloudfront ___ ___ ____ is a special user which can be used to control access to content in a S3 bucket.

A

Origin Access Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly