DR, Scaling and High Availability

Question 1

What does the AWS Application Discovery Service do?

Answer 1

Provides information on you on premise sever infrastructure and dependencies

Question 2

Can a launch configuration be changed after creation? Can a launch template?

Answer 2

A configuration cannot be changed after creation. You need to create a new one. A launch template is versioned and can be changed after creation.

Question 3

Why would you use a network load balancer?

Answer 3

For high throughput TCP traffic. High performance millions requests/second and low latency processing (less than 100msec)

Question 4

If your ELB is setup for SSL (HTTPS) termination and is directing load to EC2 instances where does decryption of the traffic occur?

Answer 4

On the ELB. Encryption of traffic is between the web client and the ELB, so the ELB is responsible for encryption.

Question 5

Whats the default cooldown period for an auto-scaling group?

Answer 5

300 Seconds

Question 6

What are the 3 types of load balancer’s in AWS?

Answer 6

Network (OSI Layer 4 only) Application Classic

Question 7

What is the difference between Horizontal Scaling and High Availability?

Answer 7

Horizontal Scaling: Increase the number of instances(or scale them in) - performance HA: Run instances for the app over multple AZ’s

Question 8

You have a client which requires a static IP for your ELB. But, you also need the functions of an application load balancer with https. What could you do?

Answer 8

Use a network load balancer with TCP listener and forward the traffic to an ALB. The ALB performs TLS termination and routes requests appropriately.

Question 9

For traffic routed to an instance via an ALB, can the instance see the originating client IP? Why, Why not?

Answer 9

No, you can’t. The application will see the Private IP of the ALB. The original IP is located in the X-Fowarded-For header on the request. The ALB performs the connection termination on the inbound request and opens a new connection to the instance using the ALB’s PRIVATE IP.

Question 10

Where does TLS termination occur?

Answer 10

On the ELB (NLB, ALB, Classic)

Question 11

For traffic routed via a Network Load Balancer - can the instance see the originating request IP?

Answer 11

Yes

Question 12

How do you limit an instance to only serve traffic from requests from an ELB?

Answer 12

You reference the ELB’s security group in the inbound rules for the instances security group

Question 13

Is vertical scalability best suited for distributed or non distributed systems?

Answer 13

Non distributed - specifically think of RDMS’s

Question 14

What are 3 types of scaling policies?

Answer 14

Simple Step Target (Scaling out to maintain a utilisation metric)

Question 15

What is the default termination policy for instances in an ASG?

Answer 15

Kill the instance with the oldest launch configuration first in the AZ with the most instances

Question 16

In AWS, Horizontal scalability is referred to as ___ ?

Answer 16

Elasticity

Question 17

What are the 3 step adjustments in a step scaling policy

Answer 17

Lower Bound for the cloudwatch metric Upper Bound for the cloudwatch metric % Amount To Scale

Question 18

A client needs to whitelist an IP for your load balanced AWS application. What load balancer should you use on the AWS side?

Answer 18

A Network Load Balancer as this has a public facing EIP

Question 19

With respect to Load Balancers, what does Server Name Indication (SNI) allow for?

Answer 19

SNI allows for an application to have multiple host names via SSL

Question 20

Which ELB’s support SNI?

Answer 20

Network and Application. Not supported by classic

Question 21

What do: -Desired -Minimum -Maximum Instances parameters define in an ASG?

Answer 21

Desired: ASG will ensure the group always has at least this many running instances Minimum: Minimum number of instances for the group Maximum: Max number of instances for the group

Question 22

For an application or classic LB - what does the use of a cookie enable?

Answer 22

Stickiness: Request for same user will be routed to the same instance.

Question 23

How does RDS scale

Answer 23

Vertically - although read replicas allow for elasticity

Question 24

Can an ELB scale?

Answer 24

Yes, but not instantly. If we anticipate a massive spike in traffic then AWS will need to ‘warm up’ the ELB.

Question 25

What would you need to do to scale an ASG on the number of requests from your application server to your database. What do you need to do?

Answer 25

Create a custom metric in Cloudwatch and build an alarm to scale the ASG

Question 26

On a linux EC2 instance, how do you create a custom cloudwatch metrics?

Answer 26

Create a shell script on the instance and then use the put-metric-data by calling the AWS CLI from within your monitoring script.

Question 27

You have a set of load balanced instances (via an ALB). One of those instances has significantly higher CPU utilisation than the others. All instances are the same instance type. What is a likely explanation for this?

Answer 27

Sticky Sessions may be introduced an inbalance with more sessions being stuck on one instance.

Question 28

During an ASG cool down, what scaling activities can occur?

Answer 28

None. Instances cannot be launched or terminated during the cooldown period

Question 29

Is stickiness generated by the application or the ALB?

Answer 29

By the ALB. Stickiness is enabled at the target group level.

Question 30

How does an ELB determine if an instance is healthy?

Answer 30

ELB performs a healthcheck against a port and route on the instances. If this returns a 200 the instance is healthy.

Question 31

You have an ASG sitting behind an ALB. The ALB healthchecks have reported that an instance is unhealthy. What actions will the ASG take?

Answer 31

The ASG will terminate the instance

Question 32

If you have defined a maximum capacity for an ASG, can you scale past this?

Answer 32

No. An ASG cannot scale past the max.

Question 33

What can an ALB not route traffic on: Hostname Request Path Geography Source IP

Answer 33

Geography - Route 53 would be used this instead

Question 34

What is the main difference between step and simple scaling policy?

Answer 34

For a simple scaling policy, the previous scaling activity must complete before the next starts For step, if a previous scaling activity is still running alarm breaches can still be responded to assuming the breaches do not occur within the same alarm range

Question 35

Is there a cost for autoscaling groups? Can a launch configuration be changed after creation?

Answer 35

No. Only cost is for resources instantiated by the group. Launch configs cannot be changed after creation - A new one will need to be created.

Question 36

For any load balancer in AWS do you get a static IP or a static hostname?

Answer 36

You get a host name. This never resolves to an an IP. Only NLB’s get a static IP.

Question 37

What routing does an ALB support? (Think Layer 7 - not route tables)

Answer 37

Routing on Hostname: E.G. users.example.com, payments.example.com Routing on URL path:example.com/users, example.com/payments

Question 38

Which ELB type supports HTTP->HTTPS redirects and dynamic port mapping?

Answer 38

An Application Load Balancer

Question 39

For an autoscaling group which is scaling up instances - how are IAM roles applied?

Answer 39

IAM Roles are attached to the ASG and applied to each instance on launch

Question 40

What scaling actions can take place in the warmup period in a step scaling group?

Answer 40

If a breach occurs outside the threshold which triggered the previous scaling activity, another scaling operation can occur.

Question 41

Can a launch configuration or a launch template be used to launch ec2 instances outside of an ASG?

Answer 41

A launch template can be used for spinning up a spot instance or a spot fleet

Question 42

What 3 protocols does an ALB support?

Answer 42

HTTP, HTTPS, Web Sockets

Question 43

Which ELBs support target registration external to a VPC?

Answer 43

NLB, ALB

Question 44

If there are multiple instances in an ASG with the same aged launch configuration - meaning that both can be terminated, what action will AWS take?

Answer 44

The instance closest to the next billing hour will be terminated. If there are multiple instances in this state, one will be terminated at random.

Question 45

We need to configure an autoscaling group to add more instances in proportion to CPU utilisation on each instance. What policy would you use?

Answer 45

Step: This allows you you to add more instances based on an aggregate metric such as CPU utilisation. You WOULDN’T use target tracking as this is used to scale instances in and out based on a target resource state. I.e. it will maintain enough instances to hold at a target 50% utilisation

Question 46

For what time periods can data lifecycle manager take snapshots of EBS volumes?

Answer 46

12 AND 24 Hours

Question 47

What is AWS data synch?

Answer 47

Allow large scale data migration from an on premise NAS - NFS or SMB. Requires an agent to be installed.