EC2 Flashcards

Question 1

Q

What is the use case for C4 instances?

Answer

A

CPU intensive apps or databases

Question 2

Q

What is a cloud watch dashboard?

Answer

A

a page of customized charts which provide data on cloud watch monitoring

Question 3

Q

What is CORS?

Answer

A

Cross Origin Resource Sharing
When one AWS resource needs to access another AWS resorts which uses a different domain name, you must enable CORS for it to work

Question 4

Q

What are the five EBS volume types?

Answer

A

General purpose SSD (GP2) for up to 10,000 IOPS
Provisioned IOPS SSD (IO1) For more than 10,000 IOPS
Throughput optimized HDD (ST1) used for big data, data warehouses - cannot be a boot volume
Cold HDD (SC1) lowest cost storage for infrequently accessed workloads
Magnetic (standard) lowest cost per gigabyte. I deal for workloads when data is accessed in frequently and applications with the lowest storage cost is important

Question 5

Q

What file system is supported by EFS?

Answer

A

NFS version 4

Question 6

Q

True or false: Groups can assume roles

Answer

A

False

Question 7

Q

What is the use case for G2 instances?

Answer

A

Video encoding, 3d application streaming

Question 8

Q

What is an ec2 dedicated host?

Answer

A

It is a physical ec2 server dedicated for use. It allows you to use existing server – bound software licenses

Question 9

Q

What is the difference between basic monitoring and detailed monitoring on an instance?

Answer

A

Basic monitoring pings the instance every five minutes while detailed monitoring is every minute and encourages additional charges

Question 10

Q

What is the use case for M4 instances?

Answer

A

Application servers

Question 11

Q

Which type of ELB supports TCP protocol?

Answer

A

Classic Load Balancer

Question 12

Q

True or false: it is recommended that instances within a placement group are homogenous

Answer

A

True

Question 13

Q

What command do you type from the CLI to retrieve instance metadata?

Answer

A

Curl http://169.254.169.254/latest/meta-data
This retrieves a list of variables that can be added to the command, such as
/public-ipv4

Question 14

Q

How can you move an EBS volume from one region to another

Answer

A

Create a snapshot of the first volume then make a copy of the snapshot which you can designate for another region, Then you create an image from that copied snapshot

Question 15

Q

True or false: there is a many to many relationship between instances and security groups

Answer

A

True

Question 16

Q

True or false: elastic load balancers can be called using a public IP address

Answer

A

False. You must use the DNS name associated with the load balancer, as Amazon does not publish the public IP for load balancers

Question 17

Q

Explain Amazon EBS

Answer

A

Elastic Block Store allows you to create storage volumes and attach them to EC2 instances

Question 18

Q

What is Amazon Polly?

Answer

A

It is a text to audio translation service

Question 19

Q

Can you share encrypted Snapshots?

Answer

A

No, because the keys are associated with your account

Question 20

Q

What is the CLI?

Answer

A

AWS Command Line

Question 21

Q

Can you assign an IAM role to an ec2 instance that is already running?

Answer

A

Yes

Question 22

Q

Explain on-demand ec2

Answer

A

It allows you to pay a fixed rate by the hour or by the second with no time commitment

Question 23

Q

What kind of instance is best for data warehousing and NoSQL database?

Answer

A

I2

|

Question 24

Q

Do EBS Snapshots exist on S3?

Answer

A

Yes

Question 25

Q

What is the difference between EFS and EBS/S3 in terms of provisioning storage?

Answer

A

S3 and EFS allocate storage based on your usage, while EBS volumes need the size to be pre-defined

Question 26

Q

True or false: Termination Protection is turned on by default for new instances

Answer

A

False

Question 27

Q

What is an IAM role?

Answer

A

An entity that defines a set of permissions for making AWS service requests

Question 28

Q

Describe the two ways in which lambda is used

Answer

A

1. As an event driven compute service where AWS lambda runs your code in response to events. These events could be changes to data in an Amazon S3 bucket or an Amazon Dynamo DB table.
2. As a compute service to run your code in response to HTTP requests using Amazon API gateway or API calls made using AWS SDKs

Question 29

Q

Which EBS volume types can be used as boot volumes?

Answer

A

SSD General purpose (GP2)
SSD provisioned IOPS (IO1
HDD Magnetic

Question 30

Q

What are some differences between EBS volumes and Instance Store volumes?

Answer

A

EBS volumes can be backed up with snapshots
EBS volumes can be removed from instances and reattached to other instances
EBS volumes support encryption
EBS volumes preserve their data through instant stops and terminations
Instance store volumes can’t be stopped at all, only rebooted

Question 31

Q

True or false: users can assume service – linked roles

Answer

A

False

Question 32

Q

What is the use case for I2 instances?

Answer

A

NoSQL databases, data warehousing

Question 33

Q

Explain “serverless“ as it applies to Lambda

Answer

A

It means that there is no server or infrastructure required to run code in a lambda function

Question 34

Q

What are the five different EBS volume types?

Answer

A

<p><p>SSD, general purpose - GP2
SSD, provisioned IOPS - IO1
HDD, throughput optimized - ST1
HDD, Cold, - SC1
HDD magnetic, low cost</p></p>

Question 35

Q

Can you associate multiple IAM roles with an instance?

Answer

A

No. An instance can only be associated with one IAM role at a time

Question 36

Q

When launching a new instance from an instance store AMI, can you add instance store volumes after it is created?

Answer

A

No. After the instance is created you can still attach additional EBS volumes, but not instance store volumes. You can still add instance store volumes to the instance before it is initially launched

Question 37

Q

True or false: roles incur additional charges

Answer

A

False. IAM roles are free of charge

Question 38

Q

What is the use case for F1 instances?

Answer

A

Hardware acceleration

Question 39

Q

Do EBS volumes exist on S3?

Answer

A

No

Question 40

Q

What is the use case for D2 instances?

Answer

A

File servers, data warehousing, Hadoop

Question 41

Q

What traffic is blocked and allowed by default in a security group?

Answer

A

By default, all inbound traffic is blocked, and all outbound traffic is allowed

Question 42

Q

What is the best instance type for video encoding and 3D application streaming?

Answer

A

G2

|

Question 43

Q

What is the data consistency model for EFS?

Answer

A

Read after Write, same as S3

Question 44

Q

What is Lambda?

Answer

A

A compute service where you can upload your code and create a Lambda function. Lambda takes care of provisioning and managing the servers that you use to run the code. You don’t have to worry about operating systems, patching, scaling etc.

Question 45

Q

What kind of instance is best for Machine learning?

Answer

A

P2

|

Question 46

Q

True or false: a placement group can span multiple availability zones

Answer

A

False

Question 47

Q

Describe cloud watch alarms

Answer

A

Cloud watch alarms allow you to notify or otherwise take action when a metric reaches a certain threshold which you define

Question 48

Q

What are the two different AMI root volume types?

Answer

A

EBS volumes and Instance Stores

Question 49

Q

Can you encrypt the root volume of an instance?

Answer

A

Not by default, although you can use third-party tools such as bit locker to encrypt the route volume, or you can create your own AMI with an encrypted root volume and use that for your instance

Question 50

Q

What are cloud watch logs?

Answer

A

Cloud watch logs allow you to store your applications log data in adorable and cost-effective storage which you can then monitor within AWS

Question 51

Q

How long does it take for changes to security groups to affect instances using that security group?

Answer

A

Security group changes should affect instances that use it immediately

Question 52

Q

Explain Spot Instances

Answer

A

Spot instances allow you to set a bid price for ec2 instances, and you are only provided those instances when the price meets your bid price.

Question 53

Q

What is the use case for T2 instances?

Answer

A

Web servers, small databases, development

Question 54

Q

True or false you can switch a load balancer from one type to another

Answer

A

False

Question 55

Q

Explain the differences between S3 EFS and EBS

Answer

A

S3 is like dropbox. It is file based storage only, and best used for worm throughput (write once read many)
EBS is essentially a hard disk that can be attached to an instance. It is much more expensive than S3 but has very high throughput speeds. It is Block based storage so it is designed for operating systems and data bases with large amounts of reads and writes
EFS is also like a hard drive, and is Block based like EBS, but with EFS it is automatically scaled based on usage and unlike EBS many instances can be attached to a single EFS volume, where as there is a one to one relationship between instances and EBS volumes.

Question 56

Q

What programming languages do lambda functions support?

Answer

A

Node.JS
Python
Java
C-sharp

Question 57

Q

True or false: Root volumes on instances can be encrypted

Answer

A

False. You cannot encrypt the route volume of an instance, though you can encrypt additional volumes add it to it

Question 58

Q

True or false: To create a snapshot for EBS volumes that serve as root devices, you should stop the instance before taking the snapshot.

Answer

A

True

Question 59

Q

What is another common term for availability zone?

Answer

A

Subnet

Question 60

Q

What is a service-linked role?

Answer

A

A type of role that links to an AWS service such that only the linked service can assume the role

Question 61

Q

Does lambda scale out or up, and what does that mean exactly?

Answer

A

Lambda functions scale out, meaning they will generate as many instances of a function as necessary depending on how many users are calling that function. (Scaling up means an addition of resources such as more storage or ram)

Question 62

Q

Please enumerate the list of 13 available lambda triggers

Answer

A

<p><p>API Gateway
AWS IOT
Alexa skills kit
Alexis smart home
Cloud front
Cloud watch events
Cloud watch logs
Code commit
Cognito sync trigger
Dynamo DB
Kinesis
S3
SNS</p></p>

Question 63

Q

Do auto scaling groups span multiple availability zones within a region

Answer

A

They do if you add the subnets when creating the autoscaling group.

Question 64

Q

What problems do IAM roles solve?

Answer

A

They allow you to delegate access with defined permissions to trusted entities without having to share long-term access keys

Answer 65

A

Yes

Answer 66

A

True

Answer 67

A

No, trusted and it is assume roles such as users, applications, or AWS services such as ec2

Answer 68

A

EFS storage could be attached to multiple ec2 instances simultaneously. EBS volumes can only be attached to one instance at a time.

Answer 69

A

Lanbda functions can operate globally, though they are created and stored in a specific region

Answer 70

A

Elastic Block Store

Answer 71

A

No

Answer 72

A

False.Snapshots of encrypted volumes are encrypted automatically

Answer 73

A

Five minutes

Answer 74

A

Cloud watch events allow you to set up actions to be taken when certain things happen with your AWS resources such as invoking a lambda function to update DNS entries when an ec2 instance boots up

Answer 75

A

Set a firewall rules that control the traffic for an instance.

Answer 76

A

False. Roles are global across the account

Answer 77

A

True

Answer 78

A

You create a snapshot of the EBS volume, and then you can create a new volume in the new availability zone using that snapshot

Answer 79

A

Amazon Resource Name

Answer 80

A

No

Answer 81

A

No. All placement groups within an account must have a unique name

Answer 82

A

If “delete on termination“ is checked, the volume will be deleted. This is the default setting

Answer 83

A

SAP HANA, Apache Spark

Answer 84

A

Security groups are stateful, which means that inbound rules will apply to outbound traffic

Answer 85

A

True

Answer 86

A

You can’t. Instead you have to use Network Access Control Lists

Answer 87

A

Service roles
Roles for other AWS accounts
Web identity
SAML federation

Answer 88

A

Users have permanent long-term credentials and are used to directly interact with AWS services.
Roles do not have any credentials and cannot make direct requests to AWS services, but instead are meant to be assumed by authorized entities such as users, applications, or services such as ec2

Answer 89

A

Cloud watch is used for logging and monitoring your performance of AWS resources
Cloud trail is used for auditing and provides history for all activity in your account

Answer 90

A

X1

|

Answer 91

A

An action that can be configured to occur when Auto Scaling is adding or removing instances

Answer 92

A

A logical grouping of instances within a single availability zone. Placement groups are recommended for applications that benefit from low latency, high network throughput, or both

Answer 93

A

Machine learning

Answer 94

A

A virtual appliance which will spread the load of your traffic across different Web servers

Answer 95

A

On demand
Reserved
Spot
Dedicated host

Answer 96

A

CPU related
Disc related
Network related
Status checks

Answer 97

A

A collection of instances which can automatically be added to or subtracted from using auto scaling groups, intended to ensure good performance with traffic spikes and redundancy in case of failures

Answer 98

A

Instance store volumes are meant to be used as scratch space for running processing, not long-term storage it is much less in expensive than building EBS volumes, and if you don’t need the volume to be persistent after it is done processing, it is better to use instance store which is then deleted

Answer 99

A

It provides you with a capacity reservation and offers a significant discount on the hourly charge for instance. Terms are for one year or three years

Answer 100

A

False. EBS volumes can only be mounted to a single ec2 instance

Answer 101

A

<p><p>D2 - Dense Storage
R4 - Memory (RAM) optimized
M4 - General purpose
C4 - Compute optimized
G2 - Graphics intensive
I2 - High speed storage
F1 - Field Programmable Gate Array
T2 - Lowcost, general purpose ("test")
P2 - Graphics/General purpose GPU
X1 - Memory Optimized</p></p>

Answer 102

A

Amazon Machine Image
Snapshots of virtual machines that you can provision and boot up as ec2 instances

Answer 103

A

You can set Termination Protection to True which will prevent instances from being terminated. In order to terminate such an instance, you need to change the termination protection setting to false

Answer 104

A

Memory intensive apps or databases (RAM)

Answer 105

A

A template for an instance, which can be used by an Autoscaling Group to provision new instances as needed

Answer 106

A

True

Answer 107

A

No. You can create an AMI then launch a new instance from that into the placement group

Answer 108

A

The standard is every 5 minutes, or detailed monitoring every minute, which has added chrges

Answer 109

A

False. EBS volumes must reside in the same availability zone as the instances they are attached to

Answer 110

A

Elastic Compute Cloud

Answer 111

A

Application load balancer
Network blood balancer
Classic load balancer

Answer 112

A

False. Security groups can only allow traffic, it cannot deny it

Answer 113

A

You can’t delete default security groups

Answer 114

A

It depends how you set it up. When creating a load balancer, you can set it to “internal” or “internet-facing”

Answer 115

A

Path-based routing
Host-based routing
Routing requests to multiple applications on a single EC2 instance

Answer 116

A

The Launch Configuration attached to it

Answer 117

A

No, but you can associate an auto scaling group with a different launch configuration if you want new instances to have different setups

Answer 118

A

Yes. When you set them up, you can specify which AZs they are associated with, then when new instances are created, they will divide among all chosen AZs

Answer 119

A

No. Just as a HD is attached to a computer.

Answer 120

A

Yes, with no downtime, though magnetic volumes cannot be modified

Answer 121

A

You have to create a snapshot, create a new volume from the snapshot in the new AZ

Answer 122

A

You have to crete a snapshot, make a copy of the snapshot in the new region, then create a volume from the new region’s snapshot

Brainscape's Knowledge GenomeTM

EC2 Flashcards

Brainscape's Knowledge Genome^TM