CloudFront

Question 1

Which 3 things determine how CloudFront delivers content to users

Answer 1

Content delivery server (EG. The server where is the copy of the web site)

Geographical location

Origin of the webpage

Question 2

What is a CDN?

Answer 2

Content Delivery Network

Question 3

How does CloudFront work?

It…

Answer 3

Creates cashed copies of your website at various Edge locations around the world

You have a S3 and CloudFront is going to distribute a copy of your website nerby the users

User in toronto -> Edge location in Canada
User in wellingtong -> Edge location in New Zeland

Question 4

With CloudFront requests are served by…

Answer 4

The nearest Edge location to the user

ˈnɪrəst

Question 5

What are the three components of CloudFront?

Answer 5

Origin: The location where all of original files are located. For example an S3 Bucket, EC2 Instance, ELB, or Route53

Edge Location: The location where web content will be cached. This is different than an AWS Region or AZ

Distribution: A collection of Edge locations which defines how cached content should behave

Question 6

The CloudFront location containing the original files for distribution is called?

Answer 6

Origin

Question 7

In CloudFront a collection of Edge locations is called?

Answer 7

A Distribution

Question 8

The CloudFront location where web content is cached

Answer 8

Edge Location

Question 9

In CloudFront you can blacklist or whitelist specific countries using what?

Answer 9

Geo Restriction

Also known as geo blocking, to prevent users in specific geographic locations from accessing content that you’re distributing through a CloudFront web distribution. To use geo restriction, you have two options:

Use the CloudFront geo restriction feature. Use this option to restrict access to all of the files that are associated with a distribution and to restrict access at the country level.

Use a third-party geolocation service. Use this option to restrict access to a subset of the files that are associated with a distribution or to restrict access at a finer granularity than the country level.

Question 10

Distributions replicate copies of your data based on what?

CloudFront edge locations are grouped into geographic regions, and we’ve grouped regions into … ___

• All regions
• US, CA, EU, PH, HK, SK, TW, SP
• Only the most expensive (US, CA, EU)

Related to money

Answer 10

Price Class

Question 11

What are the two types of distribution in Cloud Front?

Answer 11

• WEB
• RTMP
  (Real-Time Messaging Protocol)
  (For Streaming media)

Question 12

You clear a CloudFront cache by creating one of these

Answer 12

Invalidation

If you have an image in your S3 and CloudFront has the same image, but you updated it In your S3, you have to invalidate the old cache because CloudFront is going to show the old image

Question 13

Which Lambda Edge function is ran when CloudFront receives a request from a viewer?

Answer 13

Viewer Request

Question 14

Which Lambda Edge function is ran before CloudFront returns a response to the viewer?

Answer 14

Viewer Response

Question 15

In Cloud Front,

The 4 available Lambda Edge functions

Answer 15

Viewer Request
Viewer Response
Origin Request
Origin Response

Question 16

In CloudFront, you use these functions to override the behaviour of request and responses, what’s the name of the functionality?

Answer 16

Lambda@Edge

Lambda@Edge allows you to pass each request through a Lambda to change the behaviour of the request or response.

Question 17

A CloudFront URL that provides temporary access to resources is called?

Answer 17

Signed URL
(Presigned URL is a S3 Feature)

Question 18

True or False, by default CloudFront distributions will allow everyone to have access

Answer 18

True

Question 19

Before using Signed URLS or Cookies in CloudFront you must have one of these

ju ɑrɛls

Answer 19

Origin Access identity (OAI)

Question 20

In CloudFront, What do you use If you want to access private S3 Buckets?

Answer 20

Origin Access Identity (OAI)

To restrict access to content that you serve from Amazon S3 buckets, follow these steps:

1. Create a special CloudFront user called an origin access identity (OAI) and associate it with your distribution.
2. Configure your S3 bucket permissions so that CloudFront can use the OAI to access the files in your bucket and serve them to your users. Make sure that users can’t use a direct URL to the S3 bucket to access a file there.

Question 21

What is CloudFront?

What are its 5 Elements?

Answer 21

• It’s a web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users
• TTL feature
• Components (Origin, distribution, Edge locations)
• Distribution types (Web, RTMP)
• Origin Access (OAI) (Signed URLs, Signed Cookies)
• Lambda@Edge