EC2

Question 1

What is the difference between a dedicated instance and a dedicated host?

Answer 1

A dedicated host allows for placement control, visibility of sockets and cores. They are available for a 3 year period and are used for bring your own license, for software that does not support multi-tenanted licensing, or compliance.
A dedicated instance is a physical server with automatic instance placement only. It may share hardware with other instances in the account

Question 2

When would you use a spot instance?

Answer 2

Batch jobs, big data workloads which are resilient to failure and have flexible start and stop times. Not to be used for critical applications

Question 3

How many minutes of warning do you get if a spot instance is being reclaimed?

Answer 3

2 minutes

Question 4

Can AMI’s be shared between AWS accounts?

Answer 4

Yes. You can give another account access to you AMI’s

Question 5

What happens to an instances EBS volume when you create an AMI?

Answer 5

A snapshot is taken of each EBS volume attached to the instance.

Question 6

What are the 3 types of placement groups?

Answer 6

Cluster: Clusters instances in a single AZ- low latency
Spread: Spreads instances across underlying hardware - limited to 7 instances/group/AZ
Partitioned: Spreads instances across partitions - different sets of racks in the same AZ

Question 7

What acts as an instance level firewall for an EC2 instance?

Answer 7

A security group acts as an instance level firewall

Question 8

With respect to an Ec2 instance volume:
Can you set termination protection to prevent accidental shutdown of the EC2 instance (protecting the instance state) .
And do you pay for storage on the instance volume?

Answer 8

No. Termination policy will not work as instance store data is dependent on the physical host. Storage on an instance store does not incur any costs over that of the EC2 instance.

Question 9

Which instance state allows you to attach an Elastic Network Interface?

Answer 9

The Stopped state

Question 10

How many EC2 instance can you have per subnet

Answer 10

There is a soft limit of 20 per region, but you can have as many as there are IP’s allocated to the CIDR minus 5 (for the AWS reserved IP’s)

Question 11

Can you change an instance type when an instance is still running? If so, what happens to the instances EIP in this case?

Answer 11

No. The instance must be stopped. When the instance type is changed nothing happens to the EIP.

Question 12

What is a spread placement group, and how many instances can you have per group?

Answer 12

Instances are spread across multiple racks in one or more AZ’s so all instances are on different tin. Highly redundant and is used where one failure in one instance must be isolated from the others. There is a limit of 7 instance per AZ per placement group.

Question 13

For a dedicated instance, do other customers share the hardware?

Answer 13

No.

Question 14

What is the timeframe that you can reserve an Ec2 instance for?

Answer 14

1 or 3 years

Question 15

What is a burstable instance?

Answer 15

T2/T3 instances are burstable. This means that there can be bursts of CPU activity beyond the provisioned types for processing spikes in load. Bursts are based on the number of credits that accrue hourly. If the credits become exhausted then we will get poor performance. If the instance is consistently low on burst credits, it will need to have its specs upped.

Question 16

There are two classes of burstable instances (as opposed to instance types). What are they?

Answer 16

There are limited and unlimited burstable classes. Be careful with unlimited as these can be very costly.

Question 17

Can you copy an AMI that has been shared that has a billing product code associated with it?

Answer 17

No. You need to create an instance from the AMI and then create an AMI from that instance.

Question 18

Which of the following EC2 instance states are you billed for:
Running
Stopping to Hibernate
Pending
Stopping to Stop

Answer 18

Running

Stopping to Hibernate

Question 19

What is a partitioned placement group, can it be multi AZ and what is the usecase?

Answer 19

A partitioned group operates WITHIN an AZ. Instances are partitioned over differing racks WITHIN the AZ. If the rack fails, then all instances on that rack fail. You can only have 7 partitions per AZ. Use for cassandra, kafka, HDFS and HBASE.

Question 20

What happens to the ownership of a shared AMI?

Answer 20

Nothing. Sharing the AMI does not impact the ownership. The account that created the AMI still owns it.

Question 21

If you copy an AMI that is shared with you, what permissions does the AMI owner need to grant you? (Hint: Think Storage)

Answer 21

The owner needs to give you read permissions to the storage backing the AMI - Either EBS snapshots or S3.

Question 22

You get a permissions error when attempting to SSH to an EC2 instance - why?

Answer 22

The wrong permissions are applied to the pem key file. Chmod 0400 will fix.

Question 23

Why would you use a reserved instance?

Answer 23

You use a reserved instance for a fixed, steady state usage

Question 24

If you are running a convertible reserved instance, can you convert to one with less compute?

Answer 24

No, you must convert to either equal or greater compute.

Question 25

Why would you use a scheduled reserved instance?

Answer 25

When you need reserved capacity but only for certain time periods which regularly occur.

Question 26

You have an application deployed on a T3 instance type. Its performance is degrading after servicing a massive spike in load. Why?

Answer 26

Its a burstable instance and the burst credits have been exhausted during the spike period, therefore CPU performance had degraded.

Question 27

Is an AMI global?

Answer 27

No. AMI’s are regional

Question 28

Where is an AMI stored?

Answer 28

On S3

Question 29

Which placement group places all instances on the same rack and when would you use it?

Answer 29

Cluster placement group. You would use this for applications or processing that requires very low latency such as big data jobs that need to complete fast. There is a much higher risk of failure than with spread or partitioned.

Question 30

What is a cluster placement group and what are the drawbacks?

Answer 30

A cluster placement group places all instances on the same rack in the same AZ. It gives you 10Gbps networking but is less fault tolerant than the other group types. Use for big data jobs that need to complete fast and for low latency high throughput networking.

Question 31

What instance type would typically be used for a web server?

Answer 31

Typically an M type instance would offer a good medium level of balanced cpu/memory provisioning

Question 32

How many IPOS can you reach with a IO optimised EBS volume type?

Answer 32

64KIOPS for Nitro based instances, 32 KIOPS for all others.

Question 33

If you have a software license that does not support multi tenancy virtualisation, what instance type would you use?

Answer 33

Dedicated host as this will give you access to the number of cores and sockets

Question 34

In a partition placement group, how many partitions can you have per AZ and how many instances can you have in each partition

Answer 34

7 Partitions per AZ. Hundreds of instances per partition

Question 35

In a partition group what happens to:
-The instances in a partition
-The instances in other partitions
In the event of a partition failure?

Answer 35

Instances in the failed partition may be impacted. Instances in other partitions will remain unaffected.

Question 36

What workload is best served by a partition placement group.

Answer 36

Big Data, HDFS, HADOOP.

Question 37

What are the main EC2 instance types?

Answer 37

R-RAM/Memory Optimised
C - CPU optimised
M - Medium, balanced load/GPurpose
I - IO Optimised
G - GPU based
T - Burstab;e
Radio Controlled MIG Burst

Question 38

Why would you use an EC2 G type instance?

Answer 38

Graphics based processors - Machine learning, video rendering, massively parallel workloads

Question 39

If you terminate an EC2 instance with an attached security group - what happens to that security group?

Answer 39

Nothing - Security groups are independent of the instance.

Question 40

What is the advantage of using an AMI with software installed as opposed to installing software with a boot script?

Answer 40

Speed - the AMI becomes your golden AMI and will boot faster as it does not need to install software on startup.

Question 41

How often is a user data script run?

Answer 41

Once, and only once on the first instance startup.

Question 42

What account are user data boot scripts run as?

Answer 42

Root

Question 43

Whats the maximum number of instance in a spread placement group

Answer 43

Seven

Question 44

What does a partition placement group offer in terms of scalability that the other placement groups do not?

Answer 44

Scale to 100’s of instances per placement group. A spread group only allows seven instances.

Question 45

You need a fleet of instances, which when they start have software already installed. How would you achieve this?

Answer 45

You would use a golden AMI with all software pre-loaded.

Question 46

You have built and published an AMI in us-southeast-1. Your colleague is in us-east-1 can’t access this. Why?

Answer 46

AMI’s are region locked.

Question 47

Which of the following retieves an instances meta data?

1. http://169.254.169.254/latest/metadata
2. http://254.169.254.169/latest/metadata

Answer 47

1

Question 48

What is the difference between a key pair and an access key?

Answer 48

A key pair is used to connect and login to an EC2 instance. An access key is used for API calls, SDK and CLI interactions.

Question 49

What Ec2 instance states allow for the following attachment types:
Hot
Warm
Cold

Answer 49

Hot: Running
Warm: Stopped
Cold: Launching

Question 50

What are EC2 pricing models and what are they used for?

Answer 50

On Demand: Short loads, predictable pricing
Spot: Short flexible and resilient workloads that can be rescheduled
Reserved: Long workloads, reserved capacity 1 or 3 year term
Convertible Reserved: Allows changing of instance types
Scheduled Reserved: Launch a RI within a time window
Dedicated Instance: H/W will not be shared
Dedicated Host:: Book entire physical host and you control placements.

Question 51

What CANNOT be changed on an existing EC2 Instance?

• AMI
• Instance Type
• Security Group
• Public IP

Answer 51

AMI

Question 52

Can you copy an encrypted shared AMI from another account? What if the encryption key is shared with you?

Answer 52

No. If the encryption key is shared with you, you can copy while re-encrypting it with your own key - then you become the new owner