EFS, EBS and Storage Gateway

Question 1

ISCSI, NFS, and SMB protocols are used for which gateway types.

Answer 1

ISCSI is for the Volume Gateway,

NFS/SMB is for File Gateway

Question 2

When you create an EFS volume for multiple EC2 instances across multiple AZ’s, what else gets created by default?

Answer 2

Each instance will have an Elastic Network Interface created so it can access EFS

Question 3

When you encrypt an EBS volume what 4 things to you get as a result in terms of data encryption?

Answer 3

Data

• Encrypted at Rest
• Encrypted In flight between Ec2 instance and the EBS volume
• Encrypted Snapshots
• Encrypted volumes create from snapshots

Question 4

Which of the following EBS types can be used as boot volumes (2): GP2, IO1, ST1, SC1

Answer 4

GP2 and IO1

Question 5

Is there a network impact in AWS when using EBS volumes in RAID1 configuration - why, why not?

Answer 5

Yes. EBS volumes are attached via the network to an instance. RAID1 will double the amount of traffic as data needs to be written to 2 volumes concurrently.

Question 6

You have a workload that requires high throughput (MB/S) streaming workload. What is the best EBS type to use: GP2, IO1, ST1, SC1?

Answer 6

ST1 - ST is HDD backed and is optimised for workloads where MB/S is more important than IOPS

Question 7

Which service encrypts EFS data at rest

Answer 7

KMS

Question 8

Do you setup RAID in the AWS console, or the instance OS

Answer 8

Instance OS

Question 9

Do you need to provision capacity in EFS. What impacts does this have on pricing?

Answer 9

No. You pay for what you use in EFS but it comes at 3x the cost as GP2

Question 10

Can EC2 instances in different AZ’s connect to the same EFS volume?

Answer 10

Yes

Question 11

What must you do when taking a snapshot of a RAID EBS volume which you don’t need to do when taking a snapshot of a standard EBS volume?

Answer 11

1. Stop all applications writing to the volume
2. Flush any disk caches
3. Check the Ec2 instance is not writing to the volume and detach it
4. Snapshot each EBS volume.

Question 12

If an EBS volume is locked to an AZ, how can you copy it to a different AZ or region?

Answer 12

Create a snapshot and copy that to the new location and then create a volume based off the snapshot.

Question 13

What happens to data on an instances root volume on instance termination?

Answer 13

All data is lost

Question 14

For GP2 EBS Volume, how many IOPS are there per GB?

Answer 14

3IOPS/GB

Question 15

For an IO1 EBS Volume, how many IOPS are there per GB?

Answer 15

50IOPS/GB

Question 16

When restoring a snapshot, what would you use the fio and dd commands for?

Answer 16

Pre-warming the volume - this pulls the storage blocks from S3 and writes them to the volume

Question 17

Does instance store data persist on an instances REBOOT?

Answer 17

Yes

Question 18

What is the NFS default port?

Answer 18

2049

Question 19

What does the Amazon Data Lifecycle Manager do with respect to snapshots

Answer 19

ADLM allows for the automatic creation of snapshots.

Question 20

For both GP2 and IO1 EBS volumes what is the minimum number of IOPS a volume can have?

Answer 20

100

Question 21

Do you need to detach the EBS volume which is being backup via a snapshot?

Answer 21

No, but it is recommended.

Question 22

When taking a snapshot of an EBS volume, will this have an impact on IO?

Answer 22

Yes. Ideally these should be done outside of peak hours

Question 23

For an ST1 EBS type, are IOPS an applicable measure?

Answer 23

No. ST volumes are HDD based and MB/S is the correct measure

Question 24

The NFSv4.1 protocol is used for what type of AWS storage?

Answer 24

EFS

Question 25

When you provision an EBS volume do you need to specify IOPS?

Answer 25

Yes

Question 26

What is the max number of snapshots per account?

Answer 26

100,000

Question 27

Are snapshots incremental?

Answer 27

Yes. Only changed blocks are backed up.

Question 28

Where is an instance store located?

Answer 28

On the physical machine running your EC2 instance.

Question 29

Can you increase the provisioned capacity of an EBS volume once its been created?

Answer 29

Yes

Question 30

Can AWS automatically backup and instance store?

Answer 30

No, backups must be done manually

Question 31

What are four uses of an instance store?

Answer 31

Cache, Scratch Data, Buffers, Temporary content. Basically, anything which is temporary, non-critical and can be recreated.

Question 32

Can you resize an instance store?

Answer 32

No

Question 33

Does instance store data persist on instance stop or termination?

Answer 33

No

Question 34

How many instances can an EBS volume be attached to?

Answer 34

Just one.

Question 35

On GP2 what can you do if you are seeing high IO without changing to IO2?

Answer 35

Increase the volume size as there is a 1GB:3IOPS ratio so increasing volume size will increase IOPS

Question 36

What is EFS?

Answer 36

A network based file system using NFSv4.1

Question 37

You are provisioning an EBS volume to support ETL, log processing and Map Reduce. What EBS volume should you use: GP2, IO1, ST1, SC1

Answer 37

ST1 because we need high throughput in terms of MB/Sec rather than IOPS

Question 38

Do EFS volumes require a security group?

Answer 38

Yes, your EFS volume must have an attached security group.

Question 39

What is the maximum IOPS for EBS GP2?

Answer 39

16,000 IOPS

Question 40

What do you use to control access to an EFS drive?

Answer 40

A security group

Question 41

Can you use EFS with Windows AMIs?

Answer 41

No, Linux only.

Question 42

If you are trying to mount an efs volume from an EC2 instance, and the mount command times out - what is the likely cause?

Answer 42

Port 2049 isn’t opened in the Security Group

Question 43

You are creating an EFS in a VPC with 3 subnets, 1 per AZ. By default, how many mount point targets are created?

Answer 43

3 - 1 per subnet in each AZ

Question 44

Does the maximum IOPS of 64K for an IO1 EBS volume apply to all instance types?

Answer 44

No, it applies to Nitro only. Otherwise its 32K IOPS

Question 45

Which RAID type can you use to increase IOPS performance?

Answer 45

RAID 0

Question 46

In a RAID 0 configuration, if one volume fails what happens to your data?

Answer 46

Its gone

Question 47

In what circumstance would you use RAID 0, what would are the impacts on fault tolerance if any?

Answer 47

When you need high IOPS and are not to worried about fault tolerance. Data is striped over multiple drives, so if one is lost the array is doomed. Good for use on a DB which has its own built in replication

Question 48

You have 2 EBS IO1 volumes of 4K provisioned IOPS adn 500GB capacity. What is the total pIOPS and size for these in a RAID 0 array?

Answer 48

8k pIOPS and 1000GB.

Question 49

What does RAID 1 provide

Answer 49

Fault tolerance

Question 50

There are 3 cloud native storage options in AWS. What are they and what technologies do they use in AWS?

Answer 50

File: EFS
Object: S3 + Glacier
Block: EBS, EC2 instance store
(FOB)

Question 51

What is the underlying storage technology for a File Gateway. How is this exposed and how do you SECURE (not encrypt) it?

Answer 51

The underlying technology is S3 via NFS . Access is controlled and secured by IAM roles. Port 2049 will need to be opened on the EC2 instance security group

Question 52

In AWS Storage Gateway, is data encrypted at rest by default?

Answer 52

No

Question 53

Do the File Gateway and Volume Gateway offer:
Stored Mode
Cached Mode

Answer 53

File Gateway offers a cached mode

Storage Gateway offers both cached and stored modes

Question 54

What do cached and stored modes in a VOLUME gateway do?

Answer 54

Stored: Primary data is stored locally and asynchronously backed up to AWS. Used for Low Latency access
Cached: Primary data is backed up to AWS and most frequently accessed data is cached in the volume gateway.

Question 55

There are three types of storage gateway. What are they?

Answer 55

File: Provides a file based NFS interface. Allows access to S3 data via standard protocols - NFS or SMB.

Tape: Used for presenting Virtual Tape library to backup software

Volume: Allows you to create block storage volumes and attach to an on premise or EC2 instance.

Question 56

What is the underlying storage technology for a volume and virtual tape gateway? What protocol are these exposed by?

Answer 56

these are EBS snapshots backed by S3 and exposed via iSCSI. For volume gateways, EBS snapshots are persisted on S3. For VTL they are persisted on S3 and accessed via iSCSI. VTL can also use Glacier.

Question 57

What action does a FILE gateway take to ensure low latency access to data

Answer 57

Most recently used data is cached on a file gateway

Question 58

If you need a high MB/S EBS volume which is accessed infrequently, what type of volume would you use?

Answer 58

SC1

Question 59

When would you use MAXIO mode on EFS

Answer 59

When you have 1000’s of EC2 instances connected to it.

Question 60

What is the process for encrypting an encrypted EBS volume?

Answer 60

Take a snapshot. Encrypt the snapshot by using copy to create and EBS volume from the snapshot and then attach the volume to an instance.

Question 61

By default, can an EBS volume created in 1 AZ be attached to an instance in a different AZ?

Answer 61

No. EBS volumes are locked to an AZ.