ec2 Flashcards
Your company has a web application on AWS. The application computes thousands of algorithms per second and is very CPU and disk intensive. The application runs on a c4.8xlarge, the largest C class instance available. The application stores it’s data locally on a standard SSD disk. Your application starts to perform slow. You check the logs and notice that your disk IO is routinely going above 10,000 IOPS. What should you do to remediate the issue?
Change the instance family from a c4.8xlarge to an r4.8xlarge so that you have more memory available to cope with the increased IO.
Decrease the size of the EBS volume so as to increase its IOPS performance.
Migrate the EBS volume from a standard EBS volume to a provisioned IOPS EBS volume.
Migrate the EBS volume from a standard EBS volume to a magnetic volume.
Migrate the EBS volume from a standard EBS volume to a provisioned IOPS EBS volume.
You have a word press site hosted on EC2 with a MySQL database hosted on RDS. The majority of your traffic is read traffic, there is only write traffic when you create a new blog. One of your blogs has gone viral and your wordpress site is struggling to cope. You check your cloudwatch metrics and notice your RDS instance is at 100% CPU utilization. What two steps should you take to reduce the CPU utilization? (Choose 2)
Create multiple RDS read replicas and point multiple EC2 instances to these read replicas thereby spreading the load.
Create an elasticache cluster and use this to cache your most frequently read blog posts.
Enable Multi-AZ on your RDS instances and point multiple EC2 instances to the new Multi-AZ instances thereby spreading the load.
Migrate from an Elastic Load Balancer to a Network Loadbalancer so you can sustain more connections.
Create multiple RDS read replicas and point multiple EC2 instances to these read replicas thereby spreading the load.
Create an elasticache cluster and use this to cache your most frequently read blog posts.
An HTTP 3xx code means ________.
The request was successful
There has been a redirection
There has been a server side error
There has been a client side error
There has been a redirection
You have a very popular blog site, which has recently had a surge in traffic. You want to implement an elasticache solution to help take the load off the production database and you want to keep it as simple as possible. You will need to scale your cache horizontally and object caching will be your primary goal. Which elasticache solution will best suit your needs?
Couchbase
ArangoDB
Memcached
Redis
Memcached
You work for a media production company that streams popular TV shows to millions of users. They are migrating their web application from an in house solution to AWS. They will have a fleet of over 10,000 webservers to meet the demand and will need a reliable layer 4 load balancing solution capable of handling millions of requests per second. What AWS load balancing solution would be suit their needs?
Network Load Balancer.
Application Load Balancer.
AWS Direct Connect
Elastic Load Balancer.
Network Load Balancer.
An new CIO joins your company and implements a new company policy that all EC2 instances must have encryption at rest. What is the quickest and easiest way to apply this policy to your existing EC2 instances?
Create an encrypted snapshot of the EC2 volume using the ecrypt on the fly option. Create an AMI of the copied snapshot and then redeploy the EC2 instance using the encrypted AMI. Delete the old EC2 instance.
Create a snapshot of the EC2 volume. Then create a copy of that volume, checking the box to enable encryption. Create an AMI of the copied snapshot and then redeploy the EC2 instance using the encrypted AMI. Delete the old EC2 instance.
Create an encrypted AMI of the EC2 volume using Windows Bitlocker.
In the AWS console, click on the EC2 instances, click actions and click encrypt EBS volumes.
Create a snapshot of the EC2 volume. Then create a copy of that volume, checking the box to enable encryption. Create an AMI of the copied snapshot and then redeploy the EC2 instance using the encrypted AMI. Delete the old EC2 instance.
You work for an online gaming store which has a global world wide leaderboard for players of the game. You need to implement a caching system for your leaderboard that has multiple availability zones in order to prevent an outage. Which elasticache solution should you use?
ArangoDB
Memcached
Redis
Couchbase
Redis
You work at a busy fast food chain who have recently migrated their physical servers on to EC2. Each instance needs to be able to communicate to S3 in order to pull down some configuration data. What is the best way to achieve this?
Create a new user, assign that user full administrative privileges on AWS and then generate an Access Key ID and Secret Access Key. Store the details on each EC2 instance.
Create a new user, assign that user full S3 Administrator Access and then generate an Access Key ID and Secret Access Key. Store the details on each EC2 instance.
Create a role, and assign an IAM policy giving you access to S3 to the role.
Create a new user, assign that user read only access for S3 and then generate an Access Key ID and Secret Access Key. Store the details on each EC2 instance.
Create a role, and assign an IAM policy giving you access to S3 to the role.
In order to enable encryption at rest using EC2 and Elastic Block Store, you must ________.
Configure encryption using X.509 certificates
Configure encryption using the appropriate Operating Systems file system
Configure encryption when creating the EBS volume
Mount the EBS volume in to S3 and then encrypt the bucket using a bucket policy.
Configure encryption when creating the EBS volume
You are a developer for a genomics firm who are moving their infrastructure to AWS. Their environment consists of a three tier web application, a web tier, an application tier and a relational database tier. They have a seperate fleet of virtual machines that are used to access large HPC clusters on the fly. Their lab researches run multiple projects simulaneously and they will need to launch and de-commission 1,000’s of nodes on-demand while reducing the time required to complete genomic sequencing from weeks to days. In order to stay competitive they need to do this at as low cost as possible, with no long term contracts. These HPC clusters can run any time day or night and their workloads store information in S3, so the instances can be terminated at any time without any effect on the data. What is the most COST EFFECTIVE ec2 pricing model for their requirements?
Reserved Instances.
Dedicated Instances.
On-demand.
Spot Instances.
Spot Instances.
You work for a government contractor who supply services that are critical to national security. Because of this your corporate IT policy states that no multi-tenant virtualization is authorised within the company. Despite this, they are interested in moving to AWS but they cannot violate corporate IT policy. Which EC2 billing model would you recommend that they use to achieve this?
Reserved Instances.
Spot Instances.
On-demand.
Dedicated Instances.
Dedicated Instances.
You have an EC2 instance in a single availability zone connected to an RDS instance. The EC2 instance needs to communicate to S3 to download some important configuration files from it. You try the command aws s3 cp s3://yourbucket /var/www/html however you receive an error message. You log in to Identity Access Management (IAM) and discover there is no role created to allow EC2 to communicate to S3. You create the role and attach it to the existing EC2 instance. How fast will the changes take to propagate?
The same duration as Cloudwatch detailed monitoring – 1 minute.
Immediately.
The same duration as Cloudwatch standard monitoring – 5 minutes.
It depends on the region and availability zone.
Immediately.
You have a three tier web application with a webserver tier, application tier and database tier. The application is spread across multiple availability zones for redundancy and is in an autoscaling group with a minimum size of 2 and a maximum size of 10. The application relies on connecting to an RDS multi-AZ database. When new instances are launched they download a connection string file which is saved in an encrypted S3 bucket using a boot strap script. During a routine scaling event you notice that your new webservers are failing their health checks and are not coming in to service. You investigate and discover that the EC2 - S3 read only role that the webservers rely on has no policies attached to it. What steps should you take to remediate this problem (choose 2) while maintaining the principle of least privilege? (Choose 2)
Attach the S3 – Read Only policy to the role.
Create a new role giving lambda permission to execute.
Create a snapshot of the EBS Volume and then restart the instance.
Terminate the existing instances and allow the new instances to come in to service.
Copy the role to a new AMI.
Attach the S3 – Administrator policy.
Terminate the existing instances and allow the new instances to come in to service.
Attach the S3 – Read Only policy to the role.
You are the IT manager at a furniture retailer and they are considering moving their web application to AWS. They currently colocate their servers in a colocation facility and the contract for this facility is now coming to an end. Mangement are comfortable signing a 3 year contract and want to get the cheapest web servers as possible while still maintaining availability. Their traffic is very steady and predictable. What EC2 pricing model would you recommend to maintain availability and to get the lowest cost price available?
Dedicated Instances.
Reserved Instances.
Spot Instances.
On-demand.
Reserved Instances.
An HTTP 200 code means ________.
There has been a client side error.
There has been a server side error
The request has failed
The request was successful
The request was successful
