CloudFront Flashcards

1
Q

If you create a CloudFront distribution, push out data, update isn’t showing up correctly, how to fix it?

A

Create an invalidation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Possible CloudFront origins

A

S3
EC2
ELB
Route53

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

In CloudFront how to restrict an individual file?

A

Use Signed URL

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

In CloudFront how to give users certain permissions to access multiple files?

A

Signed Cookie

Ex. A Cloud Guru (premium and basic accounts can access different files)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

How to use Signed URLs and Cookies in CloudFront?

A

Attach a policy (can have URL expiration, IP Ranges, Trusted signers (which AWS accounts can create signed URLs))

Then can use CloudFront SDk in app to generate signed URL which is returned back to client

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is used between CloudFront and S3 or Signed URLs and Cookies?

A

OAI

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Where are signed URl key pairs managed CloudFront?

A

Root Account

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Can you clear the cache yourself in CloudFront?

A

Yes, but you will be charged

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

2 types of edge location collections for CloudFront

A

1) Web Distribution
2) RTMP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Max TTL for CloudFront

A

365 days

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What does it mean if you receive a 5XX error?

A

server-side error

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What does it mean when you receive a 4XX error

A

client-side error

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

How to customize content CloudFront delivers, or use signed URLs or signed cookies

A

Lambda@Edge

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

How to restrict certain countries from accessing content from CloudFront?

A

Whitelist for countries that can access content.

Blacklist for countries that are not allowed to access content.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

How to set up HTTPS communication with viewers using ELB and CloudFront

A
  • Set up Viewer Protocol Policy to use Redirect HTTP to HTTPS
  • Set Viewer Protocol Policy to use HTTPS Only
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How to setup HTTPS communication with origin and CloudFront?

A

SSL certificates

17
Q

How to establish secure end-to-end SSL connection between orgin and end users using CloudFront?

A

Configure Origin Protocol Policy

Configure Viewer Protocol Policy (for cache behavior)

18
Q

What should you do if you get 504 errors from CloudFront?

A

Origin Failover

or

Use Lambda@Edge

19
Q

What can you use distribute paid content (such as images through S3) through dynamically through CloudFront

A

CloudFront Signed URLs