Deployment and Provisioning

Question 1

Common reasons why EC2 instnaces may fail to launch

• InstanceLimitExceeded error
• you have reached the limit on teh number of instnaces you can launch in a region
• aws sets default limits on the number of instances you can run on a per-region basis - 20 by default

Answer 1

t

Question 2

InsufficientInstanceCapacity error

-AWS does not currently have enough available On-Demand capacity to service your request

Answer 2

y

Question 3

____ allows you to create storage volumes and attach them to your EC2 instances.

Answer 3

EBS

Question 4

___ can be used to craete.a file system, run a database, run an operation system, etc.

Answer 4

EBS

Question 5

____ backend storage - used fr OS and databases which can be IO intensive.

Answer 5

SSD

Question 6

2 different variants of SSD:

gp2 ___ - boot volumes

io1 ___ - IO intensive, NoSQL/relational databases, latency sensitive workloads

____ used to benchmark performance for SSD volumes

Answer 6

general purpose

Provisioned IOPS

IOPS

Question 7

IOPS capability is dependent on the size of your volume:

gp2 volumes: (minimum 100 IOPS) 3 IOPS/GB up to a max of _____ IOPS

io1 volumes: 50 IOPS/GB to a amx of _____ IOPS

Answer 7

16,000

64,000

Question 8

what happens if you are using gp2 and your workload exceeds the IOPS limit of teh gp2 volume you have provisioned?

Answer 8

you will start to get your IO requests queing

depending on your apps seneitivity to IOPS and latency, you may see your app becoming slow.

Question 9

Hitting the IOPS limit of our gp2 Volume

what can you do about it?

explain the 2 approaches to address hitting the IOPS limit:

Answer 9

• For gp2, you can increase the size of your volume - but if your volume is already 5.2T or moer, you will have already reached teh 16,000 IOPS limit for gp2 volumes
• If you need more tahn 16,000 IOPS, you will need to change your storage class to Provisioned IOPS

Question 10

A bastion host is located in your ____ subnet

Answer 10

public

Question 11

a bastion host allows you to connect your ec2 instances using ___ or ___ protocols

Answer 11

ssh or rdp

Question 12

T or F

you can log in to the Bastion host over the internet, from your desktop

Answer 12

T

If the settings allow it

Question 13

T or F

the bastion host is used to initiate an SSH/RDP session over the private subnet to your ec2 instances in teh private subnet

Answer 13

T

Question 14

____ load balancers scale automatically to adapt to your workload

Answer 14

application

Question 15

xx messages indicate that something has gone wrong on the client side

Answer 15

400

Question 16

xx messages relate to server side errors

Answer 16

500

Question 17

= Bad/malformed request - ie: the header is malformed

Answer 17

400

Question 18

Unauthorized - user access denied

Answer 18

401

Question 19

• forbidden - request bloked by WAF access control list

Answer 19

403

Question 20

• client closed connection before the load balancer could repond, client timeout period may be too short

Answer 20

406

Question 21

• load balancer received an X-Forwarded-For request headerwith >30 IP addresses - similar to a malformed request

Answer 21

463

Question 22

• Internal srver error iee: error on the load balander

Answer 22

500

Question 23

• bad gateway - ie: an app server closed the connection or sent back a malformed response

Answer 23

502

Question 24

• server unavailble - no registered targets

Answer 24

503

Question 25

• gateway timeout - ie: ap is not responding - problem with your web server, app server or database

Answer 25

504

Question 26

• Unauthorized - received an error code from the ID provider when trying to authenticate a user

Answer 26

561

Question 27

____ load balancers publish metrics to CW for the load balancer and for the backend instances

Answer 27

elastic

Question 28

t or F

ELB CW metrics help to verify taht your system is performing as expected

Answer 28

T

Question 29

ELB CW metrics - overall health

_____ number of unsuccessfl conenctions to backend instances

_____ number of healthy insatnces registered

___ number of unhealthy instances

____2xx,3xx,4xx,5xx

Answer 29

BackendConnectionErrors

HealthyHostCount

UnHealthyHostCount

HTTPCode_Backend

Question 30

____ number of seconds taken for ergistered instance to respond/connect

Answer 30

Latency

Question 31

____ number of requests completed/connections made during teh specified interval (1 or 5 min)

Answer 31

RequestCount

Question 32

____ number of pending requests, max queue size is 2014, additional requests will be rejected (Classic only)

Answer 32

SurgeQueueLength

Question 33

_____ number of requests being rejected because the surge queue is full (Classic only)

Answer 33

SpilloverCount

Question 34

____ is a mangment tool which gives you visibility and control over your AWS infrastracture.

It integrateswith CW allowing you to view your dashboards, view operational data and detect problems.

Includes ___ which automates operational tasks across resources - ie: security patching, package installs.

Organize your inventory, grouping resources together by applicaiton or environment - including on prem systems.

Answer 34

Systems Manager (SSM)

Run Command

Question 35

_______

allows you to run pre-defined commands on one or more EC2 instances.

• stop, restart, terminate, re-size instance
• attach/detach EBS volumes
• create snapshots, abckup dynamoDB tables
• apply patches and upadtes
• run an ansible playbook
• run a shell script

Answer 35

run command

Question 36

3 types of placement groups:

___ instances are all created in a single AZ

___ instances are created in logical segments called partitions, each located in a separate rack(s), with independent network and power.

____ each instance is created in a separate rack, with independent network and power.

Answer 36

CLuster, Partition, Spread

Question 37

___ placement groups

• all instances created in same AZ
• all nodes within the placement group can talk to all other nodes within the placement group at the full line rate of 10Gbps
• Not great availability (ideally, you’d want a copy of your stack in another AZ as well)
• great if the separate compnents in your app require high network throughput

Answer 37

cluster

Question 38

_____ placement group

• instances are created in logical segments called partitions, can be multi-AZ
• each partition is in a separate rack(s), with independent network and power
• partitions cannot share racks which helps reduce the impact of a failure
• great for large distribuetd/replicated workloads, such as HDFS< HBase, and Cassandra

Answer 38

Partition

Question 39

___ placement groups

• instances placed on distinc racks, each with its own network and power source
• recommend for apps with small number of critical intances taht should be separated
• reduces teh risk of simultaneous failures when instances share the same racks.
• gurantees your instances are places in different racks with isolated power and networking.

Answer 39

spread