EC2

Question 1

What is EC2

Answer 1

It is virtual machie in cloud, which can be provisioned quickly in minutes.

Question 2

What are the pricing Models for EC2

Answer 2

On-Demand:
Allows to pay a fixed rate by the hour without any pre-commitment

Reserved:
Capacity is reserved based on a contract with AWS, normally for 1 to 3 years

SPOT:
useful for applications with flexible start times. You can place a bid for whatever price you want for an instance price, providing even greater flexibility.

Dedicated Host:
Good for Government or legislative application, where sharing the tenancy with other applications is not allowed..
The existing software bound licences can also be used in the cloud.

Question 3

Explain Security Groups

Answer 3

Used to allow connections to the EC2 services.When we create a security group all inbound traffic is blocked by default, we then have to manually give access to allow connections to individuals ip and port addresses.
More than one security group can be assigned to an EC2 instance.
Changes to security group take place immediately.
One security group can be attached to multiple EC2 instances and vice versa.
Security groups are stateful ie: if we create an inbound rule, then an outbound rule is automatically created.
We cannot block any ip address from Security group and it has to be done through Network access control List

Question 4

What is EBS?

Answer 4

Elastic block store is a virtual Hard drive in the cloud.
There are 4 types of them.
General purpose SSD : gp 2 - general purpose uses and workload transactions.Max iops voulme 16000

Provisioned iops SSD : io1: High performing ssd for special cases like Database and stuff.Max iops Volume 64000

Thoughput optimised SSD :st1 : Low cost throughput optmised ssd designed for frequently accessed throughput intensive workloads.

Cold HDD: sc1: Low-cost solution for infrequently accessed
workloads

EBS Magnetic:standard: Workloads where data is infrequently accessed

Question 5

What are the two kinds of volumes in EC2?

Answer 5

EBS backed and Instance store.
Ebs backed can be stopped and started while terminating we can ask AWS to keep the root storage Volume.
Instance store is called ephemeral storage, because we cannot start and stop, the root storage won’t be saved if we terminate it.

Question 6

How to create an encrypted root device

Answer 6

Select the encrypted option while creating the image or

1) Create a snapshot of the unencrypted volume
2) Create a copy of the snapshot.
3) Encrypt it
4) Launch an instance from this encrypted volume

Question 7

What is Cloud watch?

Answer 7

Used to watch the performance of EC2 instances and other provisioned services in AWS

Question 8

What is Cloud Trial?

Answer 8

Cloud Trial is about auditing, recording the api calls, access and basically acts like a cctv for resources.Cloud Trail is about auditing

Question 9

what is the advantage of Roles over credentials?

Answer 9

Roles are more secure than storing credentials and easier to configure. Roles can be assigned to EC2 after it is created through command line or UI.Roles are universal and they can be used in any region

Question 10

What is EFS?

Answer 10

A way to store two or more EC2 instances to store data.

The data is elastic and its great for file servers

Question 11

What are placement groups?

Answer 11

A way to group EC2 instances based on need.

They could be Clustered, Partitioned or Spread

Question 12

Explain different placement groups?

Answer 12

Clustered:
All EC2 instance are kept close to each other. Used for Applications with Low Network Latency and high throughput.

Spread:
These are critical individual EC2 instances located on separate racks or hardware. It’s done this way to protect the instances against network failures

Partitioned:
These are multiple EC2 instances like HDFS, HBase, and Cassandra

Question 13

Some instances of Ec2

Answer 13

A1:EC2 A1 instances are new general purpose instances powered by the AWS Graviton Processors that are custom designed by AWS, Good for webservers, microservices.
c3,c4 and C5:Compute optimised instances based on Intel Xeon Platinum processors.
F1: Instances based on FPGA, the ics can be reprogrammed to suit needs.
P2,P3, P4 : Performance optimised instances. They are good for Machine learning, deep learning kind of works.
G2, G3 : Good fpr Graphics intensive workloads like 3d modelling, games etc

Question 14

Two major types of EBS

Answer 14

SSD backed:SSD-backed storage for transactional workloads (performance depends primarily on IOPS)
HDD backed:For throughput workloads (performance depends primarily on throughput, measured in MB/s)

Question 15

How to attach multiple instance to single volume?

Answer 15

It isnt allowed.

Question 16

what is EFS?

Answer 16

It is a file system which the EC2 instance can attach to and store data.

Question 17

How to access EFS from Ec2?

Answer 17

Amazon EC2 instances within your VPC can access your file system directly, and Amazon EC2 Classic instances outside your VPC can mount a file system via ClassicLink.

Question 18

Uses of EFA?

Answer 18

EFA brings the scalability, flexibility, and elasticity of cloud to tightly-coupled HPC(High performance computing) applications. With EFA, tightly-coupled HPC applications have access to lower and more consistent latency and higher throughput than traditional TCP channels, enabling them to scale better.

Question 19

What is EFA?

Answer 19

Elastic Fabric Adapter (EFA) is a network interface for Amazon EC2 instances that enables customers to run applications requiring high levels of inter-node communications at scale on AWS. Its custom-built operating system (OS) bypass hardware interface enhances the performance of inter-instance communications, which is critical to scaling these applications.

Question 20

How may elastic ip addresses can be used in a region?

Answer 20

5 elastic ip addresses per region and any ip address NOT associated with an instance in charged an hourly rate.

Question 21

What is EC2 Fleet?

Answer 21

With a single API call, EC2 Fleet lets you provision compute capacity across different instance types, Availability Zones and across On-Demand, Reserved Instances (RI) and Spot Instances purchase models to help optimize scale, performance and cost

Question 22

What is Capacity reservation?

Answer 22

On-Demand Capacity Reservation is an EC2 offering that lets you create and manage reserved capacity on Amazon EC2.
You can create a Capacity Reservation by choosing an Availability Zone and quantity (number of instances) along with other instance specifications such as instance type and tenancy. Once created, the EC2 capacity is held for you regardless of whether you run the instances or not

Question 23

When to use Reserved Instances and capacity reservation?

Answer 23

Use Regional RIs for their discount benefit while committing to a one or three year term.

Use Capacity Reservations if you need the additional confidence in your ability to launch instances. Capacity Reservations can be created for any duration and can be managed independently of your RIs.

Sometimes RI discounts gets applied to Capacity Reservation

Question 24

What is Spot instance?

Answer 24

Spot Instances are spare EC2 capacity that can save you up 90% off of On-Demand prices that AWS can interrupt with a 2-minute notification.

Question 25

How is a Spot Instance different than an On-Demand instance or Reserved Instance?

Answer 25

While running, Spot Instances are exactly the same as On-Demand or Reserved instances.The instances can be interrupted by Amazon EC2 for capacity requirements with a 2-minute notification, and Spot prices adjust gradually based on long term supply and demand for spare EC2 capacity.

Question 26

What happens to a Spot instance when it gets interrupted?

Answer 26

Spot instances can be terminated, stopped or hibernated upon interruption.

Question 27

How to give permissions to applications running inside an EC2 instance to make aws api or cli requests ?

Answer 27

Use an IAM role to manage temporary credentials for applications.
To assign an AWS role to an EC2 instance and make it available to all of its applications, you create an instance profile that is attached to the instance. An instance profile contains the role and enables programs that are running on the EC2 instance to get temporary credentials.

Question 28

what is eth0 ?

Answer 28

t is the primary network interface which gets attached to every instance launched inside a VPC. The primary eth0 cannot be removed, but additional interfaces can be added.

Question 29

What happens when a secondary interface is added to an instance?

Answer 29

AWS wont assign a public ip address to eth0 in this instance.We will have to manually assign an elastic ip address.

Question 30

What happens to network interfaces, when the instances are deleted?

Answer 30

Default network interfaces are deleted when the instances are deleted, but the manually added ones arent.

Question 31

How to merge placement groups?

Answer 31

Placement groups cannot be merged.

Question 32

How many roles can be attached to an EC2 instance at a time?

Answer 32

Only one IAM role can be attached to a EC2 instance at a time.

Question 33

What are Tags in AWS?

Answer 33

Its a label we assign to an AWS resource.It is an arbitary Name/Value pair.

Question 34

What is AWS SMS?

Answer 34

Its an agent less server migration service, used to migrate workloads from Premisis to AWS.

Question 35

How to attach EBS volume to an EC2 instance in a different availability zone?

Answer 35

EBS volume need to be in the same availablity zone as the EC2 instance.

Question 36

What is the use case for Magnetic EBS?

Answer 36

When higher throughput is needed than IOPS

Question 37

How many EBS volumes and SnapShots are allowed by default?

Answer 37

5000 EBS volumes and 10000 snapshots are allowed by default.

Question 38

SnapShots of EBS volumes ?

Answer 38

EBS volumes are specific to a an AZ, but the snapshots are specific to a region.
Snapshots of non root volumes can be taken while the instance is running, encrypted and additional volumes can be created from it.
To create a snapshot of root volume, it must either be detached or the instance ust be stopped before creating a snapshot.

Question 39

Is it posible to copy AMI’s across ad within a region?

Answer 39

Yes, irrespective of the kind of volume, like Instance store or EBS the AMI can be copied and replicated across region. The volume also can be encrypted.

Question 40

What is the default monitoring duration for Ec2 instances in ASG?

Answer 40

5 minutes by default and it can be changed to 1 minute, which is chargeable

Question 41

How to add instance store volume to a running EC2 instance?

Answer 41

You can specify the instance store volumes for your instance only when you launch an instance. You can’t attach instance store volumes to an instance after you’ve launched it.