EC2

Question 1

different types of EC2 instances (7)
What are the 4 most important?

Answer 1

General Purpose, Compute Optimized, Memory Optimized, Storage Optimized, Accelerated Computing, Instance Feature, Measuring Instance Performance

Question 2

What are the (3) parts of the AWS EC2 instance type naming convention:

m5:large

Answer 2

Instance class, generation, size within the instance class

Question 3

EC2 Instance Type Great for a diversity of workloads such as web servers or code repositories

Answer 3

General Purpose

Question 4

General Purpose EC2 Instance Type are great at balancing between ____________ (3)

Answer 4

Compute, Memory, Networking

Question 5

EC2 Instance Type Great for compute-intensive tasks that require high performance processors

Answer 5

Compute Optimized

Question 6

Which EC2 Instance Type would use the following:
Batch processing workloads, Media transcoding, High performance web servers, High performance computing (HPC), Scientific modeling & machine learning, Dedicated gaming servers

Answer 6

Compute Optimized EC2 Instance Type

Question 7

EC2 Instance Type - Fast performance for workloads that process large data sets in memory

Answer 7

Memory Optimized

Question 8

Which EC2 Instance Type would use the following:
High performance, relational/non-relational databases, Distributed web scale cache stores, In-memory databases optimized for BI (business intelligence), Applications performing real-time processing of big unstructured data

Answer 8

Memory Optimized

Question 9

EC2 Instance Type Great for storage-intensive tasks that require high, sequential read and write access to large data sets on local storage

Answer 9

Storage Optimized

Question 10

Can Security Groups be attached to multiple instances

Answer 10

Yes

Question 11

Security Groups are locked down to a ____________

Answer 11

region/VPC combination

Question 12

For EC2, where does the Security Group live?

Answer 12

Outside of the EC2 (if traffic is blocked the EC2 instance won’t see it)

Question 13

What is a good security group practice for SSH access?

Answer 13

to maintain a separate security group of SSH access

Question 14

What is it if your application is not accessible (timeout)

Answer 14

it is a security group issue

Question 15

What error is given if you have an application error or the EC2 is not launched?

Answer 15

connection refused

Question 16

In EC2 security groups, All inbound traffic is _____________ by default

Answer 16

Blocked

Question 17

EC2 security groups - All outbound traffic is ____________ by default

Answer 17

authorised

Question 18

SSH (Secure Shell) - log into a Linux instance (Port)

Answer 18

22

Question 19

FTP (File Transfer Protocol) – upload files into a file share (Port)

Answer 19

21

Question 20

SFTP (Secure File Transfer Protocol) – upload files using SSH (Port)

Answer 20

22

Question 21

HTTP – access unsecured websites (Port)

Answer 21

80

Question 22

HTTPS – access secured websites (Port)

Answer 22

443

Question 23

General Purpose EC2 Instance Type are great at balancing between ____________ (3)

Answer 23

Compute
Memory
Networking

Question 24

EC2 Instances Purchasing Options (7)

Answer 24

On-Demand Instances
Reserved
Savings Plans
Spot Instances
Dedicated Hosts
Dedicated Instances
Capacity Reservations

Question 25

EC2 Instances Purchasing Options - short workload, predictable pricing, pay by second

Answer 25

On-Demand Instances

Question 26

EC2 Instances Purchasing Options - (1 & 3 years)
* long workloads
* long workloads with flexible instances

Answer 26

Reserved

Question 27

EC2 Instances Purchasing Options - (1 & 3 years) –commitment to an amount of usage, long workload

Answer 27

Savings Plans

Question 28

EC2 Instances Purchasing Options - short workloads, cheap, can lose instances (less reliable)

Answer 28

Spot Instances

Question 29

EC2 Instances Purchasing Options - book an entire physical server, control instance placement

Answer 29

Dedicated Hosts

Question 30

EC2 Instances Purchasing Options - no other customers will share your hardware

Answer 30

Dedicated Instances

Question 31

EC2 Instances Purchasing Options

Question 32

• Pay for what you use:
  
  • Linux or Windows - billing per second, after the first minute
  • All other operating systems - billing per hour
• Has the highest cost but no upfront payment
• No long-term commitment
• Recommended for short-term and un-interrupted workloads, where you can’t predict how the application will behave

Answer 32

EC2 On Demand

Question 33

• Up to 72% discount compared to On-demand
• You reserve a specific instance attributes (Instance Type, Region,Tenancy, OS) * Reservation Period – 1 year (+discount) or 3 years (+++discount)
• Payment Options – No Upfront (+), Partial Upfront (++), All Upfront (+++) * Reserved Instance’s Scope – Regional or Zonal (reserve capacity in an AZ)
• Recommended for steady-state usage applications (think database)
• You can buy and sell in the Marketplace
• Convertible Reserved Instance
  
  • Can change the EC2 instance type, instance family, OS, scope and
    tenancy
  • Up to 66% discount

Answer 33

EC2 Reserved Instances

Question 34

• Get a discount based on long-term usage (up to 72% - same as RIs)
• Commit to a certain type of usage ($10/hour for 1 or 3 years)
• Usage beyond this pricing option is billed at the On-Demand price
• Locked to a specific instance family & AWS region (e.g., M5 in us-east-1)
• Flexible across:
  
  • Instance Size (e.g., m5.xlarge, m5.2xlarge)
  • OS (e.g., Linux, Windows)
  • Tenancy (Host, Dedicated, Default)

Answer 34

EC2 Savings Plans

Question 35

• Can get a discount of up to 90% compared to On-demand
• Instances that you can “lose” at any point of time if your max price is less than the current spot price
• The MOST cost-efficient instances in AWS
• Useful for workloads that are resilient to failure
  
  • Batch jobs
  • Data analysis
  • Image processing
  • Any distributed workloads
  • Workloads with a flexible start and end time
• Not suitable for critical jobs or databases

Answer 35

EC2 Spot Instances

Question 36

• A physical server with EC2 instance capacity fully dedicated to your use
• Allows you address compliance requirements and use your existing server- bound software licenses (per-socket, per-core, pe—VM software licenses)
• Purchasing Options:
  
  • On-demand – pay per second for active Dedicated Host
  • Reserved - 1 or 3 years (No Upfront,Partial Upfront,All Upfront)
• The most expensive option
• Useful for software that have complicated licensing model (BYOL – Bring Your
  Own License)
• Or for companies that have strong regulatory or compliance needs

Answer 36

EC2 Dedicated Hosts

Question 37

• Instances run on hardware that’s dedicated to you
• May share hardware with other instances in same account
• No control over instance placement (can move hardware after Stop / Start

Answer 37

EC2 Dedicated Instances

Question 38

• Reserve On-Demand instances capacity in a specific AZ for any duration
• You always have access to EC2 capacity when you need it
• No time commitment (create/cancel anytime), no billing discounts
• Combine with Regional Reserved Instances and Savings Plans to benefit from billing discounts
• You’re charged at On-Demand rate whether you run instances or not
• Suitable for short-term, uninterrupted workloads that needs to be in a
  specific AZ

Answer 38

EC2 Capacity Reservations

Question 39

GO TO VIDEO 43 MIN 5:45

Question 40

Control over the EC2 Instance placement strategy

Answer 40

Placement Groups

Question 41

What are the 3 types of Placement Groups

Answer 41

Cluster
Spread
Partition

Question 42

a Placement group that is a Low-latency group in a single Availability Zone

Answer 42

Cluster Placement Groups

Question 43

Instances across underlying hardware (max 7 instances per group per AZ)

Answer 43

Spread Placement Group

Question 44

Instances across many different partitions (which rely on different sets of racks) within an AZ. Scales to 100s of EC2 instances per group (Hadoop, Cassandra, Kafka)

Answer 44

Partition

Question 45

Placement Group

• Pros: Great network (10 Gbps bandwidth between instances with Enhanced Networking enabled - recommended)
• Cons: If the rack fails, all instances fails at the same time
• Use case:
  
  • Big Data job that needs to complete fast
  • Application that needs extremely low latency and high network throughput

Answer 45

Cluster Placement Group

Question 46

Placement Group

• Pros:
  
  • Can span across Availability Zones (AZ)
  • Reduced risk is simultaneous failure
  • EC2 Instances are on different physical hardware
• Cons:
  
  • Limited to 7 instances per AZ per placement group
• Use case:
  
  • Application that needs to maximize high availability
  • Critical Applications where each instance must be isolated from failure from each other

Answer 46

Spread PLACEMENT GROUP

Question 47

• Up to 7 partitions per AZ
• Can span across multiple AZs in the
• Up to 100s of EC2 instances
• The instances in a partition do not share racks with the instances in the other partitions
• A partition failure can affect many EC2 but won’t affect other partitions
• EC2 instances get access to the partition information as metadata
• Use cases: HDFS, HBase, Cassandra, Kafka

Answer 47

Partition Placements Groups

Question 48

What does ENI stand for?

Answer 48

Elastic Network Interfaces

Question 49

Logical component in a VPC that represents a virtual network card

Answer 49

Elastic Network Interfaces (ENI)

Question 50

The ENI can have the following attributes (5)

Answer 50

• Primary private IPv4, one or more secondary IPv4
• One Elastic IP (IPv4) per private IPv4
• One Public IPv4
• One or more security groups
• A MAC address

Question 51

You CAN create ENI independently and attach them on the fly (move them) on EC2 instances for failover

Answer 51

True

Question 52

You can create ENI independently and attach them on the fly (move them) on EC2 instances for failover

Answer 52

TRUE

Question 53

Are ENI’s bound to a specific AZ

Answer 53

Yes

Question 54

What does EBS stand for?

Answer 54

Elastic Block Store

Question 55

A network drive you can attach to your instances while they run

Answer 55

EBS Volume

Question 56

It allows your instances to persist data, even after their termination

Answer 56

EBS Volume

Question 57

They can only be mounted to one EC2 instance at a time (at the CCP level)

Answer 57

EBS Volume

Question 58

Are EBS volumes bound to a specific AZ?

Answer 58

YES

Question 59

It can be detached from an EC2 instance and attached to another one quickly

Answer 59

EBS Volume

Question 60

What type of drive is an EBS volume?

Answer 60

Network Drive (not physical drive)

Question 61

How can you move an EBS volume across AZs?

Answer 61

You need to snapshot it

Question 62

Can you increase the capacity of the EBS volume drive over time

Answer 62

YES

Question 63

By default, the root EBS volume is _______?

Answer 63

Deleted (attribute enabled)

Question 64

By default, any other attached EBS volume attached to the EC2 instance is ______?

Answer 64

NOT deleted (attribute disabled)

Question 65

Make a backup of your EBS volume at a point in time

Answer 65

EBS Snapshot

Question 66

Is It necessary to detach and EBS volume to do snapshot??

Answer 66

NO, But it is recommended

Question 67

Can you copy snapshots across AZ or Region???

Answer 67

YES

Question 68

• Move a Snapshot to an ”archive tier” that is 75% cheaper
• Takes within 24 to 72 hours for restoring the archive

Answer 68

EBS Snapshot Archive

Question 69

• Setup rules to retain deleted snapshots so you can recover them after an accidental deletion
• Specify retention (from 1 day to 1 year)

Answer 69

Recycle Bin for EBS Snapshots

Question 70

EBS Snapshots Features - Force full initialization of snapshot to have no latency on the first use ($$$)

Answer 70

Fast Snapshot Restore (FSR)

Question 71

What does AMI stand for??

Answer 71

Amazon Machine Image

Question 72

A customization of an EC2 instance

Answer 72

AMI

Question 73

• You add your own software, configuration, operating system, monitoring…
• Faster boot / configuration time because all your software is pre-packaged

Answer 73

AMI (Amazon Machine Image)

Question 74

Are AMI’s built for a specific region?

Answer 74

YES

Question 75

Can AMI’s be copied across regions?

Answer 75

YES

Question 76

Does an AMI create an EBS snapshot??

Answer 76

YES

Question 77

What do you need to use if you need a high- performance hardware disk for your EC2 instance?

Answer 77

EC2 Instance Store

Question 78

EC2 Instance Store - Backups and Replication are your responsibility

Answer 78

TRUE

Question 79

EBS Volumes come in 6 types

Answer 79

gp2 / gp3 (SSD)
io1 / io2 (SSD)
st1 (HDD)
sc1 (HDD)

Question 80

General purpose SSD volume that balances price and performance for a wide variety of workloads

Answer 80

gp2 / gp3 (SSD)

Question 81

Highest-performance SSD volume for mission-critical low-latency or high-throughput workloads

Answer 81

io1 / io2 (SSD)

Question 82

Low cost HDD volume designed for frequently accessed, throughput- intensive workloads

Answer 82

st1 (HDD):

Question 83

Lowest cost HDD volume designed for less frequently accessed workloads

Answer 83

sc1 (HDD)

Question 84

3 characteristics of EBS Volumes

Answer 84

Size
Throughput
IOPS (I/O Per second)

Question 85

Which 2 EBS Volumes can be used as boot volumes?

Answer 85

gp2/gp3 and io1/io2

Question 86

• Cost effective storage, low-latency
• System boot volumes,Virtual desktops, Development and test environments
• 1 GiB - 16TiB

Answer 86

General Purpose SSD

Question 87

• Baseline of 3,000 IOPS and throughput of 125 MiB/s
• Can increase IOPS up to 16,000 and throughput up to 1000 MiB/s independently

Answer 87

gp3

Question 88

• Small ______ volumes can burst IOPS to 3,000
• Size of the volume and IOPS are linked, max IOPS is 16,000
• 3 IOPS per GB, means at 5,334 GB we are at the max IOPS

Answer 88

gp2

Question 89

• Critical business applications with sustained IOPS performance
• Or applications that need more than 16,000 IOPS
• Great for databases workloads (sensitive to storage perf and consistency)

Answer 89

Provisioned IOPS (PIOPS) SSD

Question 90

• (4 GiB - 16 TiB)
• Max PIOPS: 64,000 for Nitro EC2 instances & 32,000 for other
• Can increase PIOPS independently from storage size

Answer 90

io1/io2

Question 91

________ have more durability and more IOPS per GiB

Answer 91

io2

Question 92

Whats the $ cost for the io2 to have more durability and more IOPS per GiB than the io1??

Answer 92

None, it’s the same price

Question 93

• (4 GiB – 64 TiB)
• Sub-millisecond latency
• Max PIOPS: 256,000 with an IOPS:GiB ratio of 1,000:1

Answer 93

io2 Block Express

Question 94

Which EBS volume types Supports EBS Multi-attach

Answer 94

Provisioned IOPS (PIOPS) SSD

Question 95

• Cannot be a boot volume
• 125 GiB to 16TiB

Answer 95

Hard Disk Drives (HDD)

Question 96

• Big Data, Data Warehouses, Log Processing
• Max throughput 500 MiB/s – max IOPS 500

Answer 96

Throughput Optimized HDD (st1)

Question 97

• For data that is infrequently accessed
• Scenarios where lowest cost is important
• Max throughput 250 MiB/s – max IOPS 250

Answer 97

Cold HDD (sc1):

Question 98

• Attach the same EBS volume to multiple EC2 instances in the same AZ
• Each instance has full read & write permissions to the high-performance volume

Answer 98

EBS Multi-Attach – io1/io2 family

Question 99

How many EC2 Instances can you connected to a EBS Multi- Attach?

Answer 99

16

Question 100

What type of files system must you use with a EBS Multi-Attach?

Answer 100

Cluster-Aware

Question 101

When you create an encrypted EBS volume, you get the following:

Answer 101

• Data at rest is encrypted inside the volume
• All the data in flight moving between the instance and the volume is encrypted
• All snapshots are encrypted
• All volumes created from the snapshot

Question 102

EBS Encryption has a minimal impact on ____?

Answer 102

latency

Question 103

EBS Encryption leverages keys from ______?

Answer 103

KMS (AES-256)

Question 104

Copying an _____ snapshot allows _______?

Answer 104

unencrypted, encryption

Question 105

Snapshots of encrypted EBS volumes are _______?

Answer 105

encrypted

Question 106

What are the 4 steps to encrypting and unencrypted EBS volume?

Answer 106

• Create an EBS snapshot of the volume
• Encrypt the EBS snapshot ( using copy )
• Create new ebs volume from the snapshot ( the volume will also be encrypted )
• Now you can attach the encrypted volume to the original instance

Question 107

What does EFS stand for?

Answer 107

Elastic File System

Question 108

• Managed NFS (network file system) that can be mounted on many EC2
• Works with EC2 instances in multi-AZ
• Highly available, scalable, expensive (3x gp2), pay per use

Answer 108

EFS

Question 109

What are these use cases for??

Answer 109

EFS

Question 110

EFS uses which kind of protocol?

Answer 110

NFSv4.1

Question 111

How do you control the access of EFS?

Answer 111

Security Groups

Question 112

EFS is only compatible with which type of AMI?

Answer 112

Linux

Question 113

What type of Encryption does EFS use at rest?

Answer 113

KMS

Question 114

READ SLIDE 111 and 112

Question 115

What are the 3 ways to Instantiate EC2’s quickly

Answer 115

Golden AMI
Bootstrap Using User Data
Hybrid: mix Golden AMI and User Data (Elastic Beanstalk)

Question 116

Instantiate EC2’s quickly … Install your applications, OS dependencies etc.. beforehand and launch your EC2 instance

Answer 116

Golden AMI

Question 117

Instantiate EC2’s quickly … For dynamic configuration

Answer 117

Bootstrap Using User Data

Question 118

Instantiate EC2’s quickly .. mix Golden AMI and User Data (Elastic Beanstalk)

Answer 118

Hybrid