EC2

Question 1

What is EC2?

Answer 1

EC2 is AWS’s VM in the cloud service

Question 2

What are the 4 types of EC2 instances? (pricing)

Answer 2

1) On demand
2) Reserved
3) Spot
4) Dedicated hosts

Question 3

What is EBS?

Answer 3

Elastic Block Store

A virtual disc in the cloud.

Question 4

Is termination protection enabled by default?

Answer 4

No

Question 5

What happens to the root EBS volume when an instance is terminated?

Answer 5

It is deleted

Question 6

What happens to an additional EBS volume when an instance is terminated?

Answer 6

It is NOT deleted!

Question 7

Can EBS volumes be encrypted?

Answer 7

Yes

Question 8

What is a security group?

Answer 8

A security group is a virtual firewall that controls the traffic for one or more instances. You can assign a security group to instances or select a default security instance

Question 9

What are the default inbound outbound traffic rules of a new security group?

Answer 9

All inbound traffic is blocked by default and all outbound traffic is allowed.

Question 10

What do changes to a security group take effect?

Answer 10

Immediately

Question 11

Can you have multiple security groups attached to an EC2 instance?

Answer 11

Yes

Question 12

Are security groups stateful or stateless? and what does this mean?

Answer 12

They are stateful…. When you open a port you open for both outbound and inbound traffic

Question 13

Can you block specific IP addresses in an security group?

Answer 13

No for that you will need to use an NACL

Question 14

What is a NACL?

Answer 14

Network access control list.

An optional layer of security that acts as a firewall for controlling traffic in and out of one or more subnets

Question 15

Can you specify deny rules in a security group?

Answer 15

No, you can only specify allow rules.

Question 16

Name 2 SSD based EBS volume types…

Answer 16

1) General purpose SSD- gp2

2) Provisioned IOPS SSD- i01

Question 17

Name 3 magnetic based EBS volume types…

Answer 17

1) Throughput optimised- st1
2) Cold HDD- sc1
3) Magnetic

Question 18

What is the use case for a gp2 EBS volume?

Answer 18

Most workloads

Max IOPS= 16,000
Volume size= 1GB-16TB

Question 19

What is the use case for a io1 EBS volume?

Answer 19

e.g. a EC2 based database that are mission critical!

Max IOPS= 64,000
Volume size= 1GB-16TB

Question 20

What does IOPS stand for?

Answer 20

Inputs/outputs per second

Question 21

What is the use case for a st1 volume?

Answer 21

Throughput intensive big data workloads

Max IOPS= 500
Vol size=500GB-16TB

Question 22

What is the use case for a sc1?

Answer 22

File severs

Max IOPS= 250
Vol size= 500GB-16TB

Question 23

What is the use case for Magnetic?

Answer 23

Workloads that are infrequently accessed

Max IOPS= 40-200
Vol size= 16GB-1TB

Question 24

Can you have a EBS in a different AZ to an the EC2 instance interacting with it?

Answer 24

No, the EC2 instance and EBS volume must be the same AZ

Question 25

What is snapshot?

Answer 25

A snapshot is a copy of an EBS volume. They exist on S3. These are point in time copies of volumes. They are incremental.

Question 26

What should you do to take a snapshot of a root EBS volume?

Answer 26

Stop the EC2 instance before creating the snapshot

Question 27

Can you create AMI’s from volumes and snapshots?

Answer 27

Yes

Question 28

Can you change EBS volume sizes on the fly? including storage type?

Answer 28

Yes

Question 29

What are the 3 steps to move a EBS volume from one AZ to another?

Answer 29

1) Take a snapshot
2) Create and AMI
3) Use AMI to launch an EC2 instance in a new AZ

Question 30

What are the 4 steps to move an EBS volume from one AZ to another region?

Answer 30

1) Create a snapshot
2) Create an AMI
3) Copy AMI from one region to another
4) Use AMI to launch an EC2 instance in the new region

Question 31

Are snapshots of encrypted volumes encrypted by default?

Answer 31

Yes

Question 32

Are volumes restored from encrypted snapshots encrypted?

Answer 32

Yes

Question 33

Can you share snapshots with other AWS accounts or the public?

Answer 33

Yes, but only if they are not encrypted

Question 34

Can root volumes be encrypted?

Answer 34

Yes, AWS have made it easy to encrypt a root volume with one click, however this can be done manually.

Question 35

What is the manual process of encrypting a root volume?

Answer 35

1) Create a snapshot of the unencrypted root volume
2) Create a copy of the snapshot and select the encrypt option
3) Create an AMI from the encrypted snapshot
4) Use this AMI to launch new encrypted instance with encrypted root volumes

Question 36

What is an instance store?

Answer 36

An instance store provides a temporary block-level storage for your instance. The storage is located on discs that are physically attached to the host computer (physical hardware in AWS).

Question 37

What is another name for an instance store?

Answer 37

Ephemeral storage

Question 38

What happens to data stored in an instance store if the underlying host fails?

Answer 38

The data is lost.

Question 39

What happens to data stored in an instance store if you reboot the instance attached to it?

Answer 39

You will not loose your data.

Question 40

What is happens by default to a root EBS voume?

Answer 40

The root EBS volume will be deleted. Hoever, this setting can be changed to persist the root EBS volume

Question 41

What is CloudWatch used for?

Answer 41

CloudWatch is used to monitoring performance of AWS environment and you can set alarms which can trigger notifications.

Question 42

What is CloudTrail used for?

Answer 42

CloudTrail is used to monitor all API calls within the AWS environment and this information is used for audit purposes.

Question 43

What are 4 key features of CloudWatch?

Answer 43

1) Dashboards
2) Alarms- alert when threshold is reached
3) Events- Helps you respond to changes in AWS resources
4) Logs- Aggregate, monitor and store logs

Question 44

What is a Role?

Answer 44

An IAM identity that you can create in your AWS account that has specific permissions. An IAM role is similar to an IAM user in that it has an AWS identity with permissions and policies that determine what the identity can and cannot do in AWS.

Question 45

Why use a role?

Answer 45

A role is more secure than storing your access ID and access key on an EC2 instance and they are easier to manage.

Question 46

Can a role be assigned to an EC2 instance after it is created using the console?

Answer 46

Yes

Question 47

Are roles universal?

Answer 47

Yes

Question 48

What is a bootstrap script?

Answer 48

A bootstrap script is a script that is run when an EC2 instance first boots. This can be used to automate the installation of software and to complete updates.

Question 49

What is instance and user metadata?

Answer 49

Instance metadata is data about your instance that can be used to configure or manage the running of an instance. e.g. public IP address

User data information about the user e.g. user_id value

Question 50

What is the URL used to access instance and user data from an EC2 instance?

Answer 50

http: //193.84.224.252/latest/meta-data/
http: //193.84.224.252/latest/user-data/

Question 51

What is EFS?

Answer 51

Linux based Elastic File System.

File system in the cloud. EC2 instances can then mount the directories in EFS

You can also mount on premise file systems using DirectConnect.

Grows and shrinks as required. Stores across multi AZs

Only pay for what you use.

Question 52

What protocol does EFS support?

Answer 52

Supports the NFSv4 protocol

Question 53

What is are EC2 placement groups used for?

Answer 53

A method of grouping all of your instances across underlying hardware to minimise correlated failures

Question 54

What are the 3 placement groups available for EC2?

Answer 54

1) Clustered placement group
2) Spread placement group
3) Partition placement group

Question 55

What is a clustered placement group?

Answer 55

A clustered placement group is a method of grouping EC2 instances within a single AZ.

Question 56

What is the use case for a clustered placement group?

Answer 56

If an app required low network latency or high network throughput or both!

remember only certain types of EC2 instances can be placed in a clustered placement group

Question 57

What is a spread placement group?

Answer 57

A spread placement group is a group of instances that are each placed on distinct underlying pieces of hardware.

Question 58

What is the use case for a spread placement group?

Answer 58

A spread placement group is recommended for apps that have a small number of critical instances that should be kept separate from each other. This is usually on different racks in 1 AZ, but can span multiple AZs.

Question 59

What is a partition placement group?

Answer 59

A partition placement group divides parts of racks to house EC2 instances. These are divided into logical segments called partitions. No two partitions within a placement group share the same rack.

Question 60

What is the use case for a partition placement group?

Answer 60

The customer would like to reduce correlated failures for large workloads. This is required to run applications like Hadoop, Hbase, Kafka and Aerospike within a single AZ.

Question 61

Can you merge EC2 placement groups?

Answer 61

No

Question 62

Can add an existing instance into a placement group? and how would you do this?

Answer 62

No, you would need to create and AMI from the EC2 instance and then launch a new instance from the AMI into a placement group.

Question 63

Which EC2 placement groups cannot be spread across multiple AZs?

Answer 63

Spread and partition placement groups can be spread across AZs. Clustered placement groups cannot.

Question 64

What are the underlying hypervisors used to create EC2 instances? (choose 2)

Answer 64

1) Xen

2) Nitro

Question 65

What do you assume when a question specifies that a number of EC2 instances is required (100% fault tolerance)?

Answer 65

That you will loose the AZ with the most instances!

Question 66

What is the cheapest type of EBS volume?

Answer 66

HDD based volumes e.g. sc1 and st1

Question 67

What is the main limitation of a spread placement group?

Answer 67

That you can only have a maximum of 7 running instances per AZ

Question 68

What type of storage is EBS? (block based or object)

Answer 68

Block based…. the clue is in the name

Question 69

Name 3 ways to improve the performance of an EBS volume in addition to choosing the correct EBS volume type for your specific task.

Answer 69

1) Schedule snapshots of HDD based volumes for periods of low use
2) Ensure that EC2 instances are types that can be optimised for use with EBS
3) You can stripe volumes together in a RAID 0 configuration

Question 70

How many instances can I run on EC2?

Answer 70

Limit applies to the number of vCPUs that you are running (on demand) e.g. standard instances – 1152vCPUs