CloudFront Flashcards
Which 3 things determine how CloudFront delivers content to users
Content delivery server (EG. The server where is the copy of the web site)
Geographical location
Origin of the webpage
What is a CDN?
Content Delivery Network
How does CloudFront work?
It…
Creates cashed copies of your website at various Edge locations around the world
You have a S3 and CloudFront is going to distribute a copy of your website nerby the users
User in toronto -> Edge location in Canada
User in wellingtong -> Edge location in New Zeland
With CloudFront requests are served by…
The nearest Edge location to the user
ˈnɪrəst
What are the three components of CloudFront?
Origin: The location where all of original files are located. For example an S3 Bucket, EC2 Instance, ELB, or Route53
Edge Location: The location where web content will be cached. This is different than an AWS Region or AZ
Distribution: A collection of Edge locations which defines how cached content should behave
The CloudFront location containing the original files for distribution is called?
Origin
In CloudFront a collection of Edge locations is called?
A Distribution
The CloudFront location where web content is cached
Edge Location
In CloudFront you can blacklist or whitelist specific countries using what?
Geo Restriction
Also known as geo blocking, to prevent users in specific geographic locations from accessing content that you’re distributing through a CloudFront web distribution. To use geo restriction, you have two options:
Use the CloudFront geo restriction feature. Use this option to restrict access to all of the files that are associated with a distribution and to restrict access at the country level.
Use a third-party geolocation service. Use this option to restrict access to a subset of the files that are associated with a distribution or to restrict access at a finer granularity than the country level.
Distributions replicate copies of your data based on what?
CloudFront edge locations are grouped into geographic regions, and we’ve grouped regions into … ___
- All regions
- US, CA, EU, PH, HK, SK, TW, SP
- Only the most expensive (US, CA, EU)
Related to money
Price Class
What are the two types of distribution in Cloud Front?
- WEB
- RTMP
(Real-Time Messaging Protocol)
(For Streaming media)
You clear a CloudFront cache by creating one of these
Invalidation
If you have an image in your S3 and CloudFront has the same image, but you updated it In your S3, you have to invalidate the old cache because CloudFront is going to show the old image
Which Lambda Edge function is ran when CloudFront receives a request from a viewer?
Viewer Request
Which Lambda Edge function is ran before CloudFront returns a response to the viewer?
Viewer Response
In Cloud Front,
The 4 available Lambda Edge functions
Viewer Request
Viewer Response
Origin Request
Origin Response
In CloudFront, you use these functions to override the behaviour of request and responses, what’s the name of the functionality?
Lambda@Edge
Lambda@Edge allows you to pass each request through a Lambda to change the behaviour of the request or response.
A CloudFront URL that provides temporary access to resources is called?
Signed URL (Presigned URL is a S3 Feature)
True or False, by default CloudFront distributions will allow everyone to have access
True
Before using Signed URLS or Cookies in CloudFront you must have one of these
ju ɑrɛls
Origin Access identity (OAI)
In CloudFront, What do you use If you want to access private S3 Buckets?
Origin Access Identity (OAI)
To restrict access to content that you serve from Amazon S3 buckets, follow these steps:
- Create a special CloudFront user called an origin access identity (OAI) and associate it with your distribution.
- Configure your S3 bucket permissions so that CloudFront can use the OAI to access the files in your bucket and serve them to your users. Make sure that users can’t use a direct URL to the S3 bucket to access a file there.
What is CloudFront?
What are its 5 Elements?
- It’s a web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users
- TTL feature
- Components (Origin, distribution, Edge locations)
- Distribution types (Web, RTMP)
- Origin Access (OAI) (Signed URLs, Signed Cookies)
- Lambda@Edge