Decoupling Workflows

Question 1

What is meant by tight coupling?

Answer 1

One application (or instance) talking directly to another application (or instance).

Question 2

What is meant by loose coupling?

Answer 2

Not having one application (or instance) talk directly to another. Instead you want highly available, scalable, managed service in between resources (like ELB)

Question 3

What is Simple Queue Service (SQS)?

Answer 3

SQS is a fully managed message queuing service that enables you to decouple and scale microservices, distributed systems and serverless applications

Question 4

What is Simple Notification Service (SNS)?

Answer 4

SNS is a fully managed messaging service for both application-to-application (A2A) and application-to-person (A2P) communication

Question 5

What is API Gateway?

Answer 5

API Gateway is a fully managed service that makes it easy for developers to create, publish, maintain, monitor and secure APIs at any scale

Question 6

Which is preferred: tight or loose coupling?

Answer 6

Loose coupling is ALWAYS preferred. Don’t select answers that include instance-to-instance communication.

Question 7

Where is important for applications to be loosely coupled?

Answer 7

Every layer, both internal and external

Question 8

What is poll-based messaging?

Answer 8

A producer of messages writes a message into a queue (SQS) and a consumer can retrieve the message whenever it is ready

Question 9

What is Simple Queue Service (SQS)?

Answer 9

Simple Queue Service is a messaging queue that allows asynchronous processing of work. One resource will write a message to an SQS queue, and then another resource will retrieve that message from SQS.

Question 10

What is the delivery delay in SQS?

Answer 10

The queue hides messages for this period of time before making them visible. Default is 0 and maximum is 15 minutes.

Question 11

What is the message size in SQS?

Answer 11

Messages can be up to 256KB in any format

Question 12

What encryption is provided by default in SQS?

Answer 12

Messages are encrypting in-transit by default, but you can add at-rest

Question 13

What is message retention setting in SQS?

Answer 13

The length of time that a message can be kept in SQSl. Default is 4 days; can be set between 1 minute and 14 days.

Question 14

What is the difference between long and short polling in SQS?

Answer 14

Short polling checks for messages and exits if none exists, which burns extra CPU cycles. Long polling isn’t the default in SQS, but it should be (setting the connection time window).

Question 15

What is the queue depth in SQS?

Answer 15

This is a value, not a setting. This can be a trigger for autoscaling.

Question 16

What is the visibility timeout in SQS?

Answer 16

A lock on a message (default 30 seconds) where no other consumer can receive the message while a consumer is processing it and reaches out to say it is done.

If the message is successfully processed within the visibility timeout, the message is deleted from the queue.

Question 17

If you are asked a question about what to look for if you are burning too much CPU (cash) with an SQS queue, what setting would you recommend looking at?

Answer 17

The connection time window (set it for long polling)

Question 18

What is a dead letter queue in SQS?

Answer 18

An SQS queue that you can temporarily sideline messages into when they can’t be processed successfully from the main queue.

Question 19

What is the dead letter queue setting, maximum receives, used for?

Answer 19

The maximum number of times the message can be read before it gets sidelined to the dead letter queue

Question 20

What is an important metric to monitor on a dead letter queue in SQS?

Answer 20

Queue depth

Question 21

Can you use dead letter queues with SNS?

Answer 21

Yes, on SNS topics

Question 22

What type of message ordering is guaranteed with Standard SQS queues?

Answer 22

Best effort ordering

Question 23

Is there a guarantee around not receiving duplicate messages with Standard SQS queue?

Answer 23

No

Question 24

What type of SQS queue guarantees messages are delivered in order?

Answer 24

FIFO queue (and also guarantees no duplicates)

Question 25

What is the guaranteed number of transactions per second processing in a Standard SQS queue vs a FIFO SQS queue?

Answer 25

Standard queue has nearly unlimited transactions per second where the FIFO queue guarantees 300 messages per second

Question 26

What is the message deduplication Id in FIFO SQS queues?

Answer 26

A unique value that ensures that all of your messages are unique. The deduplication interval is a five minute window, where if we see the same deduplication id multiple times, it will receive the message successfully but will not pass it along to the consumer

Question 27

If you are given a scenario where it is important that messages are processed in order, or they not be duplicates, what type of SQS queue would you recommend?

Answer 27

FIFO

Question 28

If you are given a scenario where you must have thousands and thousands of transactions per second processing in an SQS queue, what type of queue would you recommend?

Answer 28

Standard (FIFO maxes out at 300 messages per second)

Question 29

What is the message group id used for in FIFO queues in SQS?

Answer 29

It is the identifier that ensures that all messages with that same id are received and processed in order.

Question 30

Which costs more, standard for FIFO queues in SQS?

Answer 30

FIFO

Question 31

What is push-based messaging?

Answer 31

A producer of messages writes a message into a topic (SNS) and the topic delivers it to its subscribers whenever it is ready; the subscribers must be ready and waiting to receive the message

Question 32

What services can subscribe to an SNS topic?

Answer 32

Kinesis Data Firehose, SQS, Lambda, email, HTTP(S), SMS (text), platform application endpoint

Question 33

What is the maximum message size allowed in SNS?

Answer 33

256KB of text in any format

Question 34

Does SNS support a Dead Letter Queue?

Answer 34

Yes, messages that fail to be delivered can be stored in an SQS DLQ

Question 35

Does SNS offer retries of deliveries?

Answer 35

No, except for HTTP(S) option

Question 36

What are the two types of topics in SNS?

Answer 36

Standard and FIFO (only supports SQS as a subscriber)

Question 37

Is encryption offered by default for SNS?

Answer 37

Yes, messages are encrypted in-transit by default, but you can add at-rest

Question 38

Can access be restricted to an SNS topic?

Answer 38

Yes, a resource policy can be added to an SNS topic

Question 39

Can an SNS topic have multiple subscriptions?

Answer 39

Yes

Question 40

If you set up an email subscription to a topic in SNS, will it work immediately?

Answer 40

No, the email address must accept delivery before messages will be sent

Question 41

If you given a scenario relating to alerts or notifications, what service would you recommend?

Answer 41

SNS

Question 42

If you are given a scenario requiring push based notifications, what service would you recommend?

Answer 42

SNS

Question 43

If you are given a scenario about sending emails to customers or subscribers, what service would you recommend?

Answer 43

SES (based around marketing emails)

Question 44

If you are given a scenario about sending notifications from a CloudWatch alarm, what service would you recommend?

Answer 44

SNS

Question 45

What is API Gateway?

Answer 45

Amazon API Gateway is a fully managed service that allows you to easily publish, create, maintain, monitor and secure your API. It allows you to put a safe “front door” on your application.

Question 46

What are the key features of API Gateway?

Answer 46

1. Security - allows you to easily protect your endpoints by attaching a web application firewall (WAF)
2. Stop abuse - can easily implement DDoS protection and rate limiting to curb abuse of their endpoints
3. Ease of use

Question 47

What are stages used for in API Gateway?

Answer 47

They are different versions of an API

Question 48

What is the main purpose of API Gateway?

Answer 48

It is useful to front applications in AWS (aka “front door”)

Question 49

If you are given an option of whether to hardcode secret access keys or use API Gateway, which would you choose?

Answer 49

API Gateway

Question 50

How can you configure an API Gateway to prevent a DDoS attack?

Answer 50

Configure a web application firewall (WAF)

Question 51

What is the AWS Batch Service?

Answer 51

An AWS service that helps you run batch computing workloads within AWS (on EC2 or ECS/Fargate)

It automatically provisions and scales workloads, making it simple to configure and maintain

No installation is required!

Question 52

What are the four main components of AWS Batch?

Answer 52

1. Job - unit of work that is submitted to AWS batch (shell scripts, executables, Docker images, etc)
2. Job Definitions - specify how your jobs are to be run (blueprint for resources)
3. Job Queues - jobs get submitted to specific queues and reside there until scheduled to run in a compute environment
4. Compute Environment - set of managed or unmanaged compute resources used to run your jobs

Question 53

What type of compute is recommended for AWS Batch?

Answer 53

Fargate (because it launches and scales better)

Question 54

When is EC2 the best choice for a compute environment in AWS Batch?

Answer 54

1. When you need a custom AMI
2. When you have specific vCPU requirements (anything needing more than 16 vCPUs)
3. When you have memory requirements where you need more than 30GB of memory
4. If you need a GPU or an Arm-Based Graviton-based CPU
5. When you need Linux parameters
6. For large numbers of jobs

Question 55

When would you use AWS Batch of AWS Lambda?

Answer 55

1. AWS Lambda currently has a 15 minute timeout, so if your job takes longer, AWS Batch does not have this
2. AWS Lambda has limited disk space
3. AWS Lambda has limited runtimes (AWS Batch uses Docker so any runtime can be used)

Question 56

What is the difference between a managed compute environment and an unmanaged?

Answer 56

Managed

1. AWS manages capacity and instance types
2. Compute resource specs are defined when an environment is created
3. ECS instances are launched into a VPC subnet
4. Default is the most recent and approved Amazon ECS AMI
5. You can use your own AMI, but it has to meet the requirements of an Amazon ECS optimized image
6. You can leverage Fargate, Fargate Spot, and regular Spot instances

Unmanaged

1. You manage your own resources entirely
2. AMI must meet ECS AMI specs
3. Less commonly used
4. Great for complex or specific requirements

Question 57

If you are given a scenario about running a long-running, event driven workload, what service would you recommend (more than 15 minutes)?

Answer 57

AWS Batch

Question 58

What is the Amazon MQ Service?

Answer 58

A managed message broker allowing easier migration of existing application to the cloud

Question 59

What programming languages, operating systems and messaging protocols can be used in Amazon MQ Service?

Answer 59

A variety of programming languages, operating systems and messaging protocols can be used

Question 60

What engine types are available in Amazon MQ Service?

Answer 60

ApacheMQ and RabbitMQ engine types

Question 61

Why would you use Amazon MQ vs SNS/SQS?

Answer 61

Topics and queues are offered in both that allow for one-to-one or one-to-many messaging designs. Therefore, if creating new applications, look at SNS/SQS because they are simpler.

And if you need public accessibility, you might consider SNS/SQS because they are publicly accessible by default, and Amazon MQ requires private networking like VPC, Direct Connect or VPN.

Also, Amazon MQ has NO default AWS integrations.

But, if migrating existing applications with messaging systems in place, you might consider AmazonMQ.

Question 62

What are the different ways to configure brokers in Amazon MQ?

Answer 62

1. Single Broker Instance - one broker lives within one availability zone, which would be perfect for a dev environment (RabbitMQ has a network load balancer in front)
2. Highly Available Architectures - depends on the broker engine type
3. Amazon MQ for ActiveMQ - with active/standby deployments, one instance will remain available at all times (configure a network of brokers with separate maintenance windows)
4. Amazon MQ for RabbitMQ - has cluster deployments and they are logical groupings of three broker nodes across multiple AZs sitting behind a network load balancer

Question 63

If you are given a scenario where you must use JMS (or messaging protocols like AMQP 0-9-1, AMQP 1.0, MQTT, OpenWire or STOMP, what service would you recommend?

Answer 63

Amazon MQ

Question 64

What is AWS Step Functions?

Answer 64

It is a serverless orchestration service combining different AWS services for business applications

Question 65

What is a State Machine in AWS Step Functions?

Answer 65

A particular workflow with different event-driven steps

Question 66

What is a Task in AWS Step Functions?

Answer 66

Specific states within a workflow (state machine) representing a single unit of work

Question 67

What is a State in AWS Step Functions?

Answer 67

Every single step in a workflow (state machine) is considered a state

Leverage states to either make decisions based on input, perform certain actions or pass output

Elements within your state machines and they are referred to by a name

Question 68

What are the two different types of workflows in AWS Step Functions?

Answer 68

Standard

1. Have an exactly once execution
2. Can run for up to a year
3. Useful for long-running workflows that need to have an auditable history
4. Rates up to 2,000 executions per second
5. Pricing is based per state-transition

Express

1. At-least-once workflow execution
2. Can run for up to 5 minutes
3. Useful for high event-rate workloads (IoT data streaming and ingestion)
4. Pricing is based on number of executions, durations and memory consumed

Question 69

What are Executions in AWS Step Functions?

Answer 69

Instances where you run your workflow in order to perform your tasks

Question 70

What language are States and State Machines defined in Amazon Step Functions?

Answer 70

Amazon States Language (similar to JSON)

Question 71

What services integrate nicely with AWS Step Functions?

Answer 71

AWS Lambda, AWS Batch, Amazon DynamoDB, Amazon ECS/AWS Fargate, Amazon SQS, Amazon SNS, Amazon API Gateway, Amazon EventBridge, AWS Step Functions, and many more

Question 72

What are the different states in AWS Step Functions

Answer 72

1. Pass - Passes any input directly to its output- no work done
2. Task - Single unit of work
3. Choice - branching logic (yes/no, etc.)
4. Wait - creates a time delay
5. Succeed - stops execution successfully
6. Fail - stops execution and marks them as failures
7. Parallel - run parallel branches of executions within state machines
8. Map - runs a set of steps based on elements of an input array

Question 73

If you are given a scenario where you need to add a wait into a workflow, what service would you recommend?

Answer 73

AWS Step Functions

Question 74

What is Amazon AppFlow?

Answer 74

Fully managed service that allows you to exchange data between SaaS apps and AWS services (Salesforce, etc.)

Allows you to pull data from third-party SaaS vendors and stores them in S3

It is bi-directional with limited combinations

Question 75

What is a Flow in Amazon AppFlow?

Answer 75

Flows transfer data between sources and destinations; a variety of SaaS applications are supported

Question 76

What is a Data Mapping in Amazon AppFlow?

Answer 76

Determines how your source data is stored within your destinations

Question 77

What are Filters in Amazon AppFlow?

Answer 77

Criteria to control which data is transferred from a source to a destination

Question 78

What is a Trigger in Amazon AppFlow?

Answer 78

How the flow is started

Supported types:
1. Run on demand
2. Run on event
3. Run on schedule

Question 79

What are use cases for using Amazon AppFlow?

Answer 79

1. Transferring Salesforce records to Amazon Redshift
2. Ingesting and analyzing Slack conversations in S3
3. Migrating ZenDesk and other help desk support tickets to Snowflake
4. Transferring aggregate data on a scheduled basis to S3 (100GB per flow)

Question 80

If you are given a scenario where an application needs to reference large amounts of SaaS data regularly, and the data needs to be accessed within S3, what service would you recommend?

Answer 80

Amazon AppFlow

Question 81

What are 4 questions to ask when answering questions regarding workloads?

Answer 81

1. Are the workloads synchronous or asynchronous?
2. What type of decoupling makes sense (pub/sub like SNS/SQS, or ordering of workflows like Step Functions, etc)
3. Does the order of messages matter?
4. What type of application load are we going to see?

Question 82

If you are given a scenario where you are seeing a large number of duplicate messages in a queue, what setting would you recommend looking at?

Answer 82

The queue visibility timeout or the developer is not deleting the message after processing

Question 83

If you are given a scenario about batch workloads needing queues, what service would you recommend?

Answer 83

AWS Batch

Question 84

If you are asked about an alternative solution to AWS Lambda due to runtime requirements or execution timeouts, what service would you recommend?

Answer 84

AWS Batch

Question 85

If you are given a scenario that requires different states or logic during workflows (e.g. condition checks, failure catches or especially wait periods), what service would you recommend?

Answer 85

AWS Step Functions