CloudFront Flashcards

1
Q

Which 3 things determine how CloudFront delivers content to users

A

Content delivery server (EG. The server where is the copy of the web site)

Geographical location

Origin of the webpage

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is a CDN?

A

Content Delivery Network

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

How does CloudFront work?

It…

A

Creates cashed copies of your website at various Edge locations around the world

You have a S3 and CloudFront is going to distribute a copy of your website nerby the users

User in toronto -> Edge location in Canada
User in wellingtong -> Edge location in New Zeland

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

With CloudFront requests are served by…

A

The nearest Edge location to the user

ˈnɪrəst

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the three components of CloudFront?

A

Origin: The location where all of original files are located. For example an S3 Bucket, EC2 Instance, ELB, or Route53

Edge Location: The location where web content will be cached. This is different than an AWS Region or AZ

Distribution: A collection of Edge locations which defines how cached content should behave

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

The CloudFront location containing the original files for distribution is called?

A

Origin

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

In CloudFront a collection of Edge locations is called?

A

A Distribution

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

The CloudFront location where web content is cached

A

Edge Location

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

In CloudFront you can blacklist or whitelist specific countries using what?

A

Geo Restriction

Also known as geo blocking, to prevent users in specific geographic locations from accessing content that you’re distributing through a CloudFront web distribution. To use geo restriction, you have two options:

Use the CloudFront geo restriction feature. Use this option to restrict access to all of the files that are associated with a distribution and to restrict access at the country level.

Use a third-party geolocation service. Use this option to restrict access to a subset of the files that are associated with a distribution or to restrict access at a finer granularity than the country level.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Distributions replicate copies of your data based on what?

CloudFront edge locations are grouped into geographic regions, and we’ve grouped regions into … ___

  • All regions
  • US, CA, EU, PH, HK, SK, TW, SP
  • Only the most expensive (US, CA, EU)

Related to money

A

Price Class

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What are the two types of distribution in Cloud Front?

A
  • WEB
  • RTMP
    (Real-Time Messaging Protocol)
    (For Streaming media)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

You clear a CloudFront cache by creating one of these

A

Invalidation

If you have an image in your S3 and CloudFront has the same image, but you updated it In your S3, you have to invalidate the old cache because CloudFront is going to show the old image

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which Lambda Edge function is ran when CloudFront receives a request from a viewer?

A

Viewer Request

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which Lambda Edge function is ran before CloudFront returns a response to the viewer?

A

Viewer Response

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

In Cloud Front,

The 4 available Lambda Edge functions

A

Viewer Request
Viewer Response
Origin Request
Origin Response

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

In CloudFront, you use these functions to override the behaviour of request and responses, what’s the name of the functionality?

A

Lambda@Edge

Lambda@Edge allows you to pass each request through a Lambda to change the behaviour of the request or response.

17
Q

A CloudFront URL that provides temporary access to resources is called?

A
Signed URL
(Presigned URL is a S3 Feature)
18
Q

True or False, by default CloudFront distributions will allow everyone to have access

A

True

19
Q

Before using Signed URLS or Cookies in CloudFront you must have one of these

ju ɑrɛls

A

Origin Access identity (OAI)

20
Q

In CloudFront, What do you use If you want to access private S3 Buckets?

A

Origin Access Identity (OAI)

To restrict access to content that you serve from Amazon S3 buckets, follow these steps:

  1. Create a special CloudFront user called an origin access identity (OAI) and associate it with your distribution.
  2. Configure your S3 bucket permissions so that CloudFront can use the OAI to access the files in your bucket and serve them to your users. Make sure that users can’t use a direct URL to the S3 bucket to access a file there.
21
Q

What is CloudFront?

What are its 5 Elements?

A
  • It’s a web service that speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users
  • TTL feature
  • Components (Origin, distribution, Edge locations)
  • Distribution types (Web, RTMP)
  • Origin Access (OAI) (Signed URLs, Signed Cookies)
  • Lambda@Edge