EC2 Flashcards

Question 1

Q

What is EC2?

Answer

A

A Linux-based/Windows-based/Mac-based virtual server that you can provision

Question 2

Q

What purchasing limits exist for EC2?

Answer

A

You are limited to running On-Demand Instances per your vCPU-based On-Demand Instance limit, purchasing 20 Reserved Instances, and requesting Spot Instances per your dynamic Spot limit per region.

Question 3

Q

What is AWS Nitro System?

Answer

A

AWS Nitro System is the underlying platform of the next generation of EC2 instances. Traditionally, hypervisors protect the physical hardware and bios, virtualize the CPU, storage, networking, and provide a rich set of management capabilities. With the Nitro System, these functions are offloaded to dedicated hardware and software, thereby reducing the costs of your instances in the process. Hence, the Nitro Hypervisor delivers performance that is indistinguishable from bare metal and performs better than its predecessor: the Xen Hypervisor.

Question 4

Q

What are EC2 servers called?

Answer

A

Server environments are called instances.

Question 5

Q

Amazon Machine Image

Answer

A

Package OS and additional installations in a reusable template called Amazon Machine Images.

Question 6

Q

What are Instance Types?

Answer

A

Various configurations of CPU, memory, storage, and networking capacity for your instances, known as instance types.

Question 7

Q

What instance type is used for general purpose?

Answer

A

t-type and m-type for general purpose.

Question 8

Q

What instance type is used for compute optimized?

Answer

A

c-type for compute optimized

Question 9

Q

What instance type is used for memory-optimized?

Answer

A

r-type, x-type, z-type for memory-optimized

Question 10

Q

What instance type is used for storage optimized?

Answer

A

d-type, h-type, i-type for storage optimized

Question 11

Q

What instance type is used for accelerated computing?

Answer

A

f-type, g-type, and p-type for accelerated computing

Question 12

Q

Key Pairs.

Answer

A

Secure login information for your instances using key.

Question 13

Q

Instance Store Volumes

Answer

A

Storage volumes for temporary data that are deleted when you STOP or TERMINATE your instance.

Question 14

Q

What storage volumes are used for persistent storage?

Answer

A

Persistent storage volumes for your data using Elastic Block Store volumes (see AWS storage services).

Question 15

Q

Security Groups

Answer

A

A firewall that enables you to specify the protocols, ports, and source IP ranges that can reach your instances.

Question 16

Q

Tags

Answer

A

Metadata, known as tags, that you can create and assign to your EC2 resources

Question 17

Q

User-Data

Answer

A

A script that will be run on instance boot called user-data.

Question 18

Q

Host Recovery for Amazon EC2

Answer

A

Automatically restarts your instances on a new host in the event of an unexpected hardware failure on a Dedicated Host.

Question 19

Q

EC2 Hibernation?

Answer

A

EC2 Hibernation is available for On-Demand and Reserved Instances running on freshly launched M3, M4, M5, C3, C4, C5, R3, R4, and R5 instances running Amazon Linux and Ubuntu 18.04 LTS. You can enable hibernation for your EBS-backed instances at launch. You can then hibernate and resume your instances through the AWS Management Console, or through the AWS SDK and CLI using the existing stop-instances and start-instances commands. Hibernation requires an EC2 instance to be an encrypted EBS-backed instance.

Question 20

Q

True/False. You can allow automatic connection of one or more EC2 instances to an RDS database.

Question 21

Q

What are the instance states?

Answer

A

Start, Stop, Hibernate, Terminate

Question 22

Q

How do you prevent accidental termination?

Answer

A

Enable Termination Protection.

Question 23

Q

How do you prevent an instance from being accidentally stopped?

Answer

A

By enabling instance stop protection, you can prevent an instance from being accidentally stopped.

Question 24

Q

What does the root device volume contain?

Answer

A

The root device volume contains the image used to boot the instance.

Question 25

Q

How can you replace the volume of a running EC2 instance?

Answer

A

-Initial launch state
-Snapshot
-AMI

Question 26

Q

True/False. Any data on the instance store volumes are retained when the instance is terminated (stoped of failed).

Answer

A

False. You should also back up critical data from your instance store volumes to persistent storage on a regular basis.

Question 27

Q

True/False. An Amazon EBS-backed instance can be stopped and later restarted without affecting data stored in the attached volumes.

Question 28

Q

What can be modified on a stopped EC2 instance with EBS storage?

Answer

A

When in a stopped state, you can modify the properties of the instance, change its size, or update the kernel it is using, or you can attach your root volume to a different running instance for debugging or any other purpose.

Question 29

Q

What happens to an EBS volume when the EC2 instance it is attached to is deleted?

Answer

A

By default, the root device volume for an AMI backed by Amazon EBS is deleted when the instance terminates.

Question 30

Q

True/False. You cannot launch encrypted EBS-backed EC2 instances from unencrypted AMIs directly.

Answer

A

False. You CAN launch encrypted EBS-backed EC2 instances from unencrypted AMIs directly.

Question 31

Q

What makes up an AMI?

Answer

A

-A template for the root volume for the instance (OS, application server, and applications)
-Launch permissions that control which AWS accounts can use the AMI to launch instances
-A block device mapping that specifies the volumes to attach to the instance when it’s launched

Question 32

Q

What does Backed by Amazon EBS mean?

Answer

A

Root device for an instance launched from the AMI is an Amazon EBS volume. AMIs backed by Amazon EBS snapshots can use EBS encryption.

Question 33

Q

Can AMIs backed by Amazon EBS snapshots use EBS encryption?

Question 34

Q

What does Backed by Instance Store mean?

Answer

A

Root device for an instance launched from the AMI is an instance store volume created from a template stored in S3.

Question 35

Q

What is the boot time for an EBS-backed AMI and Instance Store-backed AMI?

Answer

A

EBS - usually less than 1 minute
Instance store -usually less than 5 minutes

Question 36

Q

What is the size limit for a root device for an EBS-backed AMI and Instance Store-backed AMI?

Answer

A

EBS - 64TB
Instance Store - 10GB

Question 37

Q

What is data persistence for an EBS-backed AMI and Instance Store-backed AMI?

Answer

A

EBS - By default, the root volume is deleted when the instance terminates. Data on any other EBS volume persists after instance termination by default.

Instance Store - Data on any instance store volume persists during the life of the instance.

Question 38

Q

What modifications can you make to an EBS-backed AMI and Instance Store-backed AMI?

Answer

A

EBS - instance type, kernel, RAM, disk, user data can be changed while the instance is stopped.

Instance Store - Instance attributes are fixed for the life of an instance.

Question 39

Q

What are charges for an EBS-backed AMI and Instance Store-backed AMI?

Answer

A

EBS - You’re charged for instance usage, EBS volume usage, and storing your AMI as an EBS snapshot.

Instance Store - You’re charged for instance usage and storing. your AMI in Amazon S3.

Question 40

Q

What is required for AMI creation/building for an EBS-backed AMI and Instance Store-backed AMI?

Answer

A

EBS - Uses a single command/call

Instance Store - Requires installation and use of AMI tools.

Question 41

Q

What is the stopped state for an EBS-backed AMI and Instance Store-backed AMI?

Answer

A

EBS - Can be in a stopped state. Even when the instance is stopped and not running, the root volume is persisted in Amazon EBS

Instance Store - Cannot be in stopped state, instances are either running or terminated.

Question 42

Q

True/False. You can copy AMIs to different regions.

Question 43

Q

What is the Recycle Bin used for?

Answer

A

Restoring deleted AMIs.

Question 44

Q

True/False. You cannot set lock retention rules to protect against modifications and deletions.

Answer

A

False. You CAN set lock retention rules to protect against modifications and deletions.

Question 45

Q

By default, how many years from the creation date of a public AMI is it considered deprecated?

Answer

A

After 2-years from the creation date.

Question 46

Q

True/False. When an AMI changes state, an event is automatically generated, and you can use Amazon EventBridge to detect and respond to these events.

Question 47

Q

True/False. With UEFI Secure Boot, you can ensure that an instance only boots software signed with cryptographic keys.

Question 48

Q

True/False. You cannot configure an AMI to use Instance Metadata Service Version 2 (IMDSv2) when requesting instance metadata.

Answer

A

False. You CAN configure an AMI to use Instance Metadata Service Version 2 (IMDSv2) when requesting instance metadata.

Question 49

Q

What is elastic compute cloud pricing for On-Demand?

Answer

A

Pay for the instances that you use by the second, with no long-term commitments or upfront payments.

Question 50

Q

What is elastic compute cloud pricing for Reserved?

Answer

A

Make a low, one-time, up-front payment for an instance, reserve it for one or three year terms, and pay a significantly lower hourly rate for these instances. It has two offerings, Standard and Convertible.

Question 51

Q

What is the standard reserved class?

Answer

A

Provides the most significant discount but you can only modify some of its attributes during the term. It can also be sold in the Reserved Instance Marketplace.

Question 52

Q

What is the convertible reserved class?

Answer

A

Provides a lower discount than Standard Reserved Instances, but can be exchanged for another Convertible Reserved Instance with difference instance attributes. However, it cannot be sold in the Reserved Instance Marketplace.

Question 53

Q

What is the average discount of Standard RI and Convertible RI?

Answer

A

Standard RI - 1 year (40%), 3 years (60%)
Convertible RI - 1 year (31%), 3 years (54%)

Question 54

Q

Which RI can Change Availability Zone, Instance size (for Linux OS), Networking type?

Answer

A

Both Standard and Convertible.

Question 55

Q

Which RI can change instance families, operating system, tenancy, and payment option

Answer

A

Convertible.

Question 56

Q

Which RI can benefit from price reductions?

Answer

A

Convertible.

Question 57

Q

True/False. When purchasing a Reserved Instance, you’ll need to determine its scope.

Answer

A

True. The scope is regional or zonal.

Question 58

Q

True/False. Regional RI and Zonal RI both have the ability to reserve capacity.

Answer

A

False. Only a Zonal RI can reserve capacity.

Question 59

Q

What is the availability zone flexibility of Regional RI and Zonal RI?

Answer

A

Regional - The discount is valid for instance usage in any Availability Zone within the specified Region.

Zonal - The discount only applies to instance usage in the specified Availability Zone.

Question 60

Q

What is the instance size flexibility of Regional RI and Zonal RI?

Answer

A

Regional - The discount applies to instance usage within the instance family.

Zonal - The discount only applies to instance usage for the specified instance type and size.

Question 61

Q

True/False. Only a Regional RI can queue a purchase.

Question 62

Q

What is a spot instance?

Answer

A

Request unused EC2 instances, which can lower your costs significantly. Spot Instances are available at up to a 90% discount compared to On-Demand prices.

Question 63

Q

What is a spot Fleet?

Answer

A

A Spot Fleet is a collection of Spot Instances and optionally On-Demand Instances. The service attempts to launch the number of Spot Instances and On-Demand Instances to meet your specified target capacity. The request for Spot Instances is fulfilled if there is available capacity and the maximum price you specified in the request exceeds the current Spot price. The Spot Fleet also attempts to maintain its target capacity fleet if your Spot Instances are interrupted.

Question 64

Q

What is a Spot Capacity Pool?

Answer

A

A Spot Capacity pool is a set of unused EC2 instances with the same instance type, operating system, Availability Zone, and network platform.

Answer 58

A

False. You CAN modify instance types and weights for a running EC2 Fleet or Spot Fleet without having to recreate it.

Answer 59

A

-LowestPrice – The Spot Instances come from the pool with the lowest price. This is the default strategy.
-Diversified – The Spot Instances are distributed across all pools.
-CapacityOptimized – The Spot Instances come from the pool with optimal capacity for the number of instances that are launching.
-InstancePoolsToUseCount – The Spot Instances are distributed across the number of Spot pools that you specify. This parameter is valid only when used in combination with the lowest Price.

Answer 60

A

Spot Instances with a defined duration (also known as Spot blocks) are designed not to be interrupted and will run continuously for the duration you select. This makes them ideal for jobs that take a finite time to complete, such as batch processing, encoding and rendering, modeling and analysis, and continuous integration.

Answer 61

A

Dedicated Hosts – pay for a physical host that is fully dedicated to running your instances, and bring your existing per-socket, per-core, or per-VM software licenses to reduce costs.

Answer 62

A

Dedicated Instances – pay, by the hour, for instances that run on single-tenant hardware.

Answer 63

A

On-Demand Capacity Reservations – reserve capacity for your Amazon EC2 instances in a specific Availability Zone for any duration. Unlike Reserved instances, you don’t need to have a one-year or three-year term commitment.

Answer 64

A

-The Availability Zone in which to reserve the capacity
-The number of instances for which to reserve capacity
-The instance attributes, including the instance type, tenancy, and platform/OS

Answer 65

A

False. Capacity Reservations can be created in placement groups. Capacity Reservations CAN’T’ be used with Dedicated Hosts

Answer 66

A

Amazon Cloudwatch.

Answer 67

A

False. You ARE charged for any additional Elastic IP addresses associated with an instance.

Answer 68

A

If data is transferred between these two instances, it is charged at “Data Transfer Out from EC2 to Another AWS Region” for the first instance and at “Data Transfer In from Another AWS Region” for the second instance.

Answer 69

A

Use IAM to control access to your instances (see AWS Security and Identity Service).
-IAM policies
-IAM roles

Answer 70

A

A security group acts as a virtual firewall that controls the traffic for one or more instances.

-Create different security groups to deal with instances that have different security requirements.
-You can add rules to each security group that allows traffic to or from its associated instances.
-You can modify the rules for a security group at any time.
-New rules are automatically applied to all instances that are associated with the security group.
-Evaluates all the rules from all the security groups that are associated with an instance to decide whether to allow traffic or not.
-By default, security groups allow all outbound traffic.
-Security group rules are always permissive; you can’t create rules that deny access.
-Security groups are stateful

Answer 71

A

Security groups are stateful

Answer 72

A

Security group rules are always permissive; you can’t create rules that deny access.

Answer 73

A

If you don’t specify a security group when you launch an instance, the instance is automatically associated with the default security group for the VPC,

Answer 74

A

-Allows all inbound traffic from other instances associated with the default security group
-Allows all outbound traffic from the instance.

Answer 75

A

.pem and .ppk

Answer 76

A

False. Querying of the public key and creation date of an EC2 key pair IS supported.

Answer 77

A

An Elastic IP address is a static IPv4 address designed for dynamic cloud computing. With it, you can mask the failure of an instance or software by rapidly remapping the address to another instance in your account.

Answer 78

A

5 per region

Answer 79

A

False. You CAN transfer Elastic IP addresses from one AWS account to another.

Answer 80

A

An elastic network interface is a logical networking component in a VPC that represents a virtual network card, which directs traffic to your instance

Answer 81

A

Every instance in a VPC has a default network interface, called the primary network interface (eth0). You cannot detach a primary network interface from an instance.

Answer 82

A

Default interfaces are terminated with instance termination.

Answer 83

A

Scale with EC2 Scaling Groups and distribute traffic among instances using Elastic Load Balancer.

Answer 84

A

You can configure EC2 instances as bastion hosts (aka jump boxes) in order to access your VPC instances for management, using SSH or RDP protocols

Answer 85

A

Enhanced Networking – It provides higher bandwidth, higher packet per second (PPS) performance, and consistent lower inter-instance latencies, which are being used in Placement Groups. It uses single root I/O virtualization (SR-IOV) to provide high-performance networking capabilities. SR-IOV is a method of device virtualization that provides higher I/O performance and lower CPU utilization when compared to traditional virtualized network interfaces.

Answer 86

A

Elastic Fabric Adapter (EFA) – This is a network device that you can attach to your EC2 instance to significantly accelerate machine learning applications and High Performance Computing (HPC). It empowers your computing resources to achieve the application performance of an on-premises HPC cluster, with the elasticity and scalability provided by AWS. Compared with a TCP transport that is traditionally used in cloud-based HPC systems, EFA provides lower and more consistent latency and higher throughput as it enhances the performance of inter-instance communication.

Answer 87

A

-CPU utilization, Network utilization, Disk performance, Disk Reads/Writes using EC2 metrics
-Memory utilization, disk swap utilization, disk space utilization, page file utilization, log collection using a monitoring agent/CloudWatch Logs

Answer 88

A

-System Status Checks – monitor the AWS systems required to use your instance to ensure they are working properly. These checks detect problems with your instance that require AWS involvement to repair.
-Instance Status Checks – monitor the software and network configuration of your individual instance. These checks detect problems that require your involvement to repair.
-Amazon CloudWatch Alarms – watch a single metric over a time period you specify, and perform one or more actions based on the value of the metric relative to a given threshold over a number of time periods.
-Amazon CloudWatch Events – automate your AWS services and respond automatically to system events.
-Amazon CloudWatch Logs – monitor, store, and access your log files from Amazon EC2 instances, AWS CloudTrail, or other sources.

Answer 89

A

By default, EC2 sends metric data to CloudWatch in 5-minute periods.

Answer 90

A

Instance metadata is data about your instance that you can use to configure or manage the running instance.

Answer 91

A

False. Instance metadata and user data are NOT protected by cryptographic methods.

Answer 92

A

View all categories of instance metadata from within a running instance at http://169.254.169.254/latest/meta-data/

Answer 93

A

You can pass two types of user data to EC2: shell scripts and cloud-init directives.

Answer 94

A

User data is limited to 16 KB.

Answer 95

A

Retrieve user data from within a running instance at http://169.254.169.254/latest/user-data

Answer 96

A

False. When using Auto Scaling groups, the instance metadata contains information about an instance’s target lifecycle state.

Answer 97

A

Determines how instances are placed on underlying hardware.

Answer 98

A

clusters instances into a low-latency group in a single Availability Zone. Recommended for applications that benefit from low network latency, high network throughput, or both, and if the majority of the network traffic is between the instances in the group.

Answer 99

A

spreads instances across underlying hardware. Recommended for applications that have a small number of critical instances that should be kept separate from each other. Note: A spread placement group can span multiple Availability Zones, and you can have a maximum of seven running instances per Availability Zone per group.

Answer 100

A

Partition placement groups is an Amazon EC2 placement strategy that helps reduce the likelihood of correlated failures for large distributed and replicated workloads such as HDFS, HBase, and Cassandra running on EC2. Spreads EC2 instances across logical partitions and ensure that instances in different partitions do not share the same underlying hardware. In addition, partition placement groups offer visibility into the partitions and allow topology aware applications to use this information to make intelligent data replication decisions, increasing data availability and durability.

Answer 101

A

False. You CAN’T merge placement groups.

Answer 102

A

False. Instances with a tenancy of host CANNOT be launched in placement groups.

Answer 103

A

-Provides durable, block-level storage volumes that you can attach to a running instance.
-Use as a primary storage device for data that requires frequent and granular updates.
-To keep a backup copy of your data, create a snapshot of an EBS volume, which is stored in S3. You can create an EBS volume from a snapshot, and attach it to another instance.

Answer 104

A

-Provides temporary block-level storage for instances.
-The data on an instance store volume persists only during the life of the associated instance; if you stop or terminate an instance, any data on instance store volumes is lost.

Answer 105

A

-Provides scalable file storage for use with Amazon EC2. You can create an EFS file system and configure your instances to mount the file system.
-You can use an EFS file system as a common data source for workloads and applications running on multiple instances.

Answer 106

A

-Amazon FSx for Windows File Server is a fully-managed file storage built on Windows Server.
-Amazon FSx for Lustre is a fully-managed file storage built on the world’s most popular high-performance file system, Lustre.
-Amazon FSx for NetApp ONTAP is a fully managed shared storage solution based on NetApp’s ONTAP file system.
-Amazon FSx for OpenZFS is a fully managed shared storage solution that is based on the OpenZFS file system.

Answer 107

A

-Provides access to reliable and inexpensive data storage infrastructure.
-Storage for EBS snapshots and instance store-backed AMIs.

Answer 108

A

EC2 resources include images, instances, volumes, and snapshots. When you create a resource, AWS assigns the resource a unique resource ID.

Brainscape's Knowledge GenomeTM

EC2 Flashcards

Brainscape's Knowledge Genome^TM