CloudFront Flashcards
This is the location where content will be cached. This is separate to an AWS Region/AZ
Edge Location
This is the origin of all the files that the CDN will distribute. This can be an S3 bucket, an EC2 Instance, an ELB, or Route53
Origin
This is the name given the CDN which consists of a collection of Edge Locations.
Distribution
Types of cloudfront distributions:
___ used for websites
____ - used for media streaming
web distribution
RTMP
T or F
Edge locations are not just Read Only - you can write to them too
True
T or F
Edge locations objects are cached forever
False
They are cached for life of TTL
Can you clear cached objects in CF?
yes, but you will be charged
Can you restirct access using signed URLS or signed cookies?
yes
Use CloudFront Signed URLs or Signed Cookies
- A signed URL is for individual files.
1 file = ___ URL
- A signed cookie is for multiple files.
1 cookies = ____ files(s).
1, multiple
When we create a signed URL or signed cookie, we attach a policy.
The policy can include which of the below?
URL expiration
cookie expiration
IP ranges
Subnet masks
Trusted Signers ( Which AWS Accounts can create signed URLs)
Encryption keys
URL expiration
IP ranges
Trusted signers
Cloudfront signed URL key-pair is aaccount wide and manaaged by ___ user
root
CF signed URL can filter by date, path, IP address, exiration, etc.
T or F
True
S3 Signed URL
Issues a request as the ___ ___ who creates the presigned URL
IAM user
S3 signed URL has limited ___
lifetime
Cloudfront ___ ___ ____ is a special user which can be used to control access to content in a S3 bucket.
Origin Access Identity