Dojo AWS Cheat Sheet

Question 1

Availability Zone

Answer 1

Consist of one or more data centers, each with redundant power, networking and connectivity

Essentially a cluster of interconnected data centers in a specific geographic zone, that can help your applications become highly available

Question 2

AWS Region

Answer 2

This consist of multiple Availability Zones

Since a single AZ consist of multiple data centers, your system can achieve a higher level of fault tolerance by running it in two or more AZs

This enables companies to build highly available, fault tolerant, and scalable cloud architecture instead of running their applications on a single data center

Question 3

AWS Edge Networks

Answer 3

Consist of Edge Locations and Regional Edge Caches, which enables you to distribute your content with low latency to your global users.

By using these global edge networks, a user request doesnt need to travel far back to your origin just to fetch data

The cached contents can quickly be retrieved from regional edge caches that are closer to your end users

This is also referred to as a Content Delivery Network (CDN)

Question 4

AWS Local Region

Answer 4

This is a single datacenter designed to compliment an existing AWS Region

Local Zone places AWS compute, storage, database and other select services closer to large population, industry and IT centers where no AWS region exists today.

To deliver low latency content to users around the globe, AWS has placed Points of Presence, which are either edge locations or edge caches

Question 5

All Upfront Pricing

Answer 5

You pay for the entire Reserved Instance term with one upfront payment.

This option provides you with the largest discount compared to On Demand instance pricing

Question 6

Partial Upfront Pricing

Answer 6

This option, you make a low upfront payment and are then charged a discount hourly rate for the instance for the duration of the Reserved Instance term

Question 7

No Upfront Pricing

Answer 7

This option does not require any upfront payment and provides a discounted hourly rate for the duration of the term

Question 8

Operational Excellence

Answer 8

The ability to run and monitor systems to deliver business value and to continually improve supporting processes and procedures

Organization - AWS Cloud Compliance, AWS Trusted Advisor, AWS Organizations

Prepare - AWS Config

Operate - Amazon CloudWatch

Evolve - Amazon ElastiSearch Service

Question 9

Security

Answer 9

The ability to protect information, systems and assets while delivering business value through risk assessments and mitigation strategies

Security - AWS Shared Responsibility Model, AWS Config, AWS Trusted Advisor

Identity and Access Management - IAM, MFA, AWS Organizations

Detective Controls - AWS CloudTrail, AWS Config, Amazon GuardDuty

Infrastructure Protection - Amazon VPC, Amazon CloudFront with AWS Shield, AWS WAF

Data Protection - ELB, Amazon Elastic BLock Store (Amazon EBS), Amazon S3 and Amazon Relational Database Service (Amazon RDS), encryption, Amazon Macie, AWS Key Management Service (AWS KMS)

Incident Response: IAM, Amazon CloudWatch Events

Question 10

Reliability

Answer 10

The ability of a system to recover from infrastructure or service disruptions, dynamically acquire computing resources to meet demand, and mitigate disruptions such as misconfigurations or transient network issues

There are four best practice area and tools for reliability in the cloud:

Foundations - IAM, Amazon VPC, AWS Trusted Advisor, AWS Shield

Change Management - AWS CloudTrail, AWS Config, Auto Scaling, Amazon CloudWatch

Failure Management - AWS CloudFormation, Amazon S3, AWS KMS, Amazon Glacier

Workload Architecture - AWS SDK, AWS Lambda

Question 11

Performance Efficiency

Answer 11

The ability to use computing resources efficiently to meet system requirements and to maintain that efficiency as demand changes and technologies evolve

There are four best practice areas for performance efficiency in the cloud:

Selection - Auto Scaling for Compute, Amazon EBS, and S3 for Storage

Review - AWS Blog and Whats New section

Monitoring - Amazon CloudWatch

Tradeoffs - Amazon Elasticache, Amazon CloudFront, AWS Snowball, Amazon RDS read replicas

Question 12

Cost Optimization

Answer 12

The ability to avoid or eliminate unneeded cost or suboptimal resources

There are five best practice areas and tools for cost optimization in the cloud:

Cloud Financial Management - Amazon QuickSight, AWS Cost and Usage Report (CUR)

Cost Effectiveness Resources - Cost Explorer, Amazon CloudWatch and Trusted Advisor, Amazon Aurora for RDS, AWS Direct Connect with Amazon CloudFront

Matching Supply and Demand - Auto Scaling

Expenditure Awareness - AWS Cost Explorer, AWS Budgets

Optimizing Over Time - AWS News Blog and the Whats new Secrtion on AWS website, AWS Trusted Advisor

Question 13

Sustainability

Answer 13

The ability to increase efficiency across all components of a workload by maximizing the benefits from the provisioned resources

Region Selection - AWS Global Infrastructure

User Behavior Patterns - Auto Scaling, Elastic Load Balancing

Software and Architecture Patterns - AWS Design principles

Data Patterns - Amazon EBS, Amazon EFS, Amazon FSx, Amazon S3

Hardware Patterns - Amazon EC2, AWS Elastic Beanstalk

Development and Deployment Process - AWS CloudFormation

Question 14

Scaling Horizontally

Answer 14

An increase in the number of resources (more EC2 instances)

Question 15

Scaling Veritically

Answer 15

an increase in the specifications of an individual resource

Question 16

Instantiating Compute Resources

Answer 16

Automate setting up of new resources along with their configuration and code

Question 17

Infrastructure as Code

Answer 17

AWS assets are programmable

You can apply techniques, practices and tools from software development to make your whole infrastructure reusable, maintainable, extensible and testable

Question 18

Serverless Management and Deployment

Answer 18

Being serverless shifts your focus to automation of your code deployment.

AWS handles the management tasks for you

Question 19

Infrastructure Management and Deployment

Answer 19

AWS automatically handles details, such as resource provisioning, load balancing, auto scaling and monitoring so you can focus on resource deployment

Question 20

Alarms and Events

Answer 20

AWS services will continuously monitor your resources and initiate events when certain metrics or conditions are met

Question 21

Alarms and Events

Answer 21

AWS services will continuously monitor your resources and initiate events when certain metrics or conditions are met

Question 22

Well Defined Interfaces

Answer 22

reduce interdependencies in a system by allowing various components to interact with each other only through specific technology agnostic interfaces such as RESTful APIs

Question 23

Service Discovery

Answer 23

Applications that are deployed as a set of smaller services should be able to be consumed without prior knowledge of their network topology details

Apart from hiding complexity, this also allows infrastructure details to change at any time

Question 24

Asynchronous Integration

Answer 24

Interacting components that do not need an immediate response and where an acknowledgement that a request has been registered will suffice, should integrate through an intermediate durable storage layer

Question 25

Distributed Systems Best Practices

Answer 25

Build applications that handle components failure in a graceful manner

Question 26

Managed Services

Answer 26

Provide building blocks that developers can consumer to power their applications, such as databases, machine learning, analytics, queuing, search, email, notifications and more

Question 27

Serverless Architecture

Answer 27

Allow you to build both event driven and synchronous services without managing server infrastructure, which can reduce the operational complexity of running applications

Question 28

Relational Databases

Answer 28

Provides a powerful query language, flexible indexing capabilities, strong integrity controls and the ability to combine data from multiple tables in a fast and efficient manner

Question 29

NoSQL Databases

Answer 29

Trade some of the query and transaction capabilities or relational databases for a more flexible data model that seamlessly scales horizontally

It uses a variety of data models, including graphs, key value pairs, and JSON documents and are widely recognized for ease of development, scalable performance, high availability and resilience

Question 30

Data Warehouse

Answer 30

A specialized type of relational database which is optimized for analysis and reporting of large amounts of data

Question 31

Data Lake

Answer 31

An architectural approach that allows you to store massive amounts of data in a central location so that its readily available to be categorized, processed, analyzed and consumed by diverse groups within your organization

Question 32

Standby Redundancy

Answer 32

When a resource fails, functionality is recovered on a secondary resource with the failover process

The failover typically requires some time before it completes, and during this period the resource remains unavailable

This is often used for stateful components such as relational databases

Question 33

Active Redundancy

Answer 33

Requests are distributed to multiple redundant compute resources

When one of them fails, the rest can simply absorb a larger share of the workload

Question 34

Detect Failure

Answer 34

Use health checks and collect logs

Question 35

Synchronous Replications

Answer 35

Only acknowledges a transaction after it has been durable stored in both the primary storage and its replicas

It is ideal for protecting the integrity of data from the event of a failure of the primary node

Question 36

Asynchronous Replications

Answer 36

decouples the primary node from its replicas at the expense of introducing replication lag

This means that changes on the primary node are not immediately reflected on its replicas

Question 37

Quorom Based Replication

Answer 37

Combines synchronous and asynchronous replication by defining a minimum number of nodes that must participate in a successful write operation

Question 38

Automated Multi Data Center Resilience

Answer 38

Utilize AWS Regions and Availability Zones

Question 39

Right Sizing

Answer 39

AWS offers a broad range of resource types and configurations for many use cases

Question 40

Application Data Caching

Answer 40

Store and retrieve information from fast, managed, in memory caches

Question 41

Edge Caching

Answer 41

Server content by infrastructure that is closer to viewers, which lowers latency and hives high, sustained data transfer rates necessary to deliver large popular objects to end users at scale

Question 42

Share Security Responsibility with AWS

Answer 42

AWS Handles security of the cloud while customers handle security in the cloud

Question 43

Reduced Privileged Access

Answer 43

Implement Principle of Least Privilege Controls

Question 44

Security as Code

Answer 44

Firewall rules, network access controls, internal/external subnets and operating system hardening can all be captured in a template that defines a Golden Environment

Question 45

Real Time Auditing

Answer 45

implement continuous monitoring and automation of controls on AWS to minimize exposure to security risks

Question 46

Decouple your components

Answer 46

the key concept is to build components that do not have tight dependencies on each other so that if one component were to fail for some reason, the other components in the system will continue to work.

This is also known as loose coupling

Question 47

Think Parallel

Answer 47

This internalizes the concept of parallelization when designing architectures in the cloud

It encourages you to implement parallelization whenever possible and to also automate the processes of your cloud architecture

Question 48

Implement Elasticity

Answer 48

This principle is implemented by automating your deployment process and streamlining the configuration and build process of your architecture.

This ensures that the system can scale in and scale out to meet the demand without any human intervention

Question 49

Design for Failure

Answer 49

This concept encourages you to be a pessimist when designing architectures in the cloud and assume that the components of your architecture will fail

This reinforces you to always design your cloud architecture to be highly available and fault tolerant

Question 50

RTO

Answer 50

This is the time it takes after a disruption to restore a business process to its service level

Question 51

RPO

Answer 51

This is the acceptable amount of data loss measured in time before the disaster occurs

Question 52

Backup and Restore

Answer 52

Storing backup data on S3 and recover data quickly and reliably

Question 53

Warm Standby Solution

Answer 53

A scaled down version of a fully functional environment is always running in the cloud

Question 54

S3

Answer 54

This is a destination for backup data that might be needed quickly to perform a restore

Question 55

Import/Export

Answer 55

This is for transferring very large data sets by shipping storage devices directly to AWS

Question 56

Glacier

Answer 56

For longer term data storage where retrieval times of several hours are adequate

Question 57

Server Migration Service

Answer 57

This is for performing agentless server migrations from on premises to AWS

Question 58

Database Migration Service and Schema Conversion Tool

Answer 58

This is for moving databases from on premises to AWS and automatically converting SQL schema from one engine to another

Question 59

Storage Gateway

Answer 59

Copies snapshots of your on premises data volumes to S3 for backup

You can create local volumes or EBS volumes from these snapshots

Question 60

Elastic Load Balacing

Answer 60

This is for distributing traffic to multiple instances

Question 61

Route53

Answer 61

For routing production traffic to different sites that deliver the same application or server

Question 62

Elastic IP Address

Answer 62

Static IP Addresses

Question 63

Virtual Private Cloud (Amazon VPC)

Answer 63

For provisioning a private, isolated section of the AWS cloud

Question 64

Direct Connect

Answer 64

For a dedicated network connection from your premises to AWS

Question 65

Relational Database Service (RDS)

Answer 65

For scale of a relational database in the cloud

Question 66

DynamoDB

Answer 66

For a fully managed noSQL database service to store and retrieve any amount of data and serve any level of request traffic

Question 67

Redshift

Answer 67

For a petabyte scale data warehouse service that analyzes all your data using existing business intelligence tools

Question 68

CloudFormation

Answer 68

For creating a collection of related AWS resources and provision them in an orderly and predictable fashion

Question 69

Elastic Beanstalk

Answer 69

This is a service for deploying and scaling web applications and services developed