Elastic Compute Cloud

Question 1

What is EC2?

Answer 1

Elastic Compute Cloud

Question 2

EC2 is an example of ___ as a Service?

Answer 2

Infrastructure

Question 3

What 4 main things make up EC2?

Answer 3

1. Renting virtual machines (EC2)
2. Storing data on virtual drives (EBS)
3. Distributing load across machines (ELB)
4. Scaling the services using an auto-scaling group (ASG)

Question 4

What EC2 sizing and configuration options are there?

Answer 4

1. Operating System: Linux, Windows, Mac
2. How much compute power and cors (CPU)
3. How much random-access memory (RAM)
4. How much storage space: Network-attached (EBS & EFS) / hardware (EC2 Instance Store)
5. Network card: speed of the card, Public IP address
6. Firewall rules: security group
7. Bootstrap script (configure at first launch): EC2 User Data

Question 5

What is EC2 User Data script?

Answer 5

Used to bootstrap our instances. Runs only once at the instance first start

Question 6

What user does the EC2 User Data Script run with?

Answer 6

Root user

Question 7

What does AMI stand for?

Answer 7

Amazon Machine Image

Question 8

What is an Amazon Machine Image?

Answer 8

A template that contains the software configuration required to launch your instance.

Question 9

What are the 7 EC2 instance types?

Answer 9

1. General Purpose
2. Compute Optimized
3. Memory Optimized
4. Accelerated Computing
5. Storage Optimized
6. Instance Features
7. Measuring Instance Performance

Question 10

Break down the naming convention of m5.2xlarge

Answer 10

m: instance class
5: generation (AWS improves them over time)
2xlarge: size within the instance class

Question 11

What is EC2 General Purpose Instance Type?

Answer 11

Great for a diversity of workloads such as web servers or code repositories. Balance between compute, memory, networking

Question 12

What is EC2 Compute Optimized Instance Type?

Answer 12

Great for compute-intensive tasks that require high performance processors. Ex: machine learning and dedicated gaming servers.

Question 13

What is EC2 Memory Optimized Instance Type?

Answer 13

Fast performance for workloads that process large data sets in memory. Ex: high performance databases.

Question 14

What is EC2 Storage Optimized Instance Type?

Answer 14

Great for storage-intensive tasks that require high, sequential read and write access to large data sets on local storage. Ex: relational & NoSQL databases, data warehousing applications

Question 15

What are security groups?

Answer 15

The fundamental of network security in AWS. They control how traffic is allowed into or out of our EC2 instances. They only contain allow rules and can reference by IP or by security group. The firewall.

Question 16

What do security groups regulate?

Answer 16

1. Access to Ports
2. Authorized IP ranges - IPv4 and IPv6
3. Control of inbound network (from other to the instance)
4. Control of outbound network (from the instance to other)

Question 17

Can an instance have multiple security groups attatched?

Answer 17

Yes

Question 18

Can a security group be attached to multiple instances?

Answer 18

Yes

Question 19

Are security groups locked down to a region / VPC combination?

Answer 19

Yes

Question 20

If traffic is blocked by a security group, will the EC2 instance see it

Answer 20

No

Question 21

Is it good to maintain one separate security group for SSH access?

Answer 21

Yes

Question 22

Is it a security group issue if your application is not accessible (time out)

Answer 22

Yes

Question 23

Is it a security group issue if your application gives a ‘connection refused’ error

Answer 23

No, it’s is an application error or it’s not launched

Question 24

All inbound traffic is ___ by default

Answer 24

blocked

Question 25

All outbound traffic is ___ by default

Answer 25

authorized

Question 26

What is port 22 for?

Answer 26

SSH (Secure Shell) - log into a Linux instance

Question 27

What is port 21 for?

Answer 27

FTP (File Transport Protocol) - upload files into a file share

Question 28

What is port 22 for?

Answer 28

SFTP (Secure File Transport Protocol) - upload files using SSH

Question 29

What is port 80 for?

Answer 29

HTTP - access unsecured websites

Question 30

What is port 443 for?

Answer 30

HTTPS - access secured websites

Question 31

What is port 3389 for?

Answer 31

RDP (Remote Desktop Protocol) - log into a Windows instance

Question 32

What is allow from anywhere in IPv4 format?

Answer 32

0.0.0.0/0

Question 33

What is allow from anywhere in IPv6 format?

Answer 33

::/0

Question 34

What does SSH work for? (can be multiple)

1. Mac
2. Linux
3. Windows < 10
4. Windows >= 10

Answer 34

Mac, Linux, Windows >= 10

Question 35

What does Putty work for? (can be multiple)

1. Mac
2. Linux
3. Windows < 10
4. Windows >= 10

Answer 35

Windows <10 and Windows >=c10

Question 36

What does EC2 Instance Connect work for? (can be multiple)

1. Mac
2. Linux
3. Windows < 10
4. Windows >= 10

Answer 36

Mac, Linux, Windows <10, Windows >= 10

Question 37

Will EC2 have the same public IP address when you restart it?

Answer 37

No

Question 38

What are the 4 main types of EC2 Instance purchasing options?

Answer 38

1. On-Demand: short workloads, predictable pricing
2. Reserved: minimum 1 year
3. Spot Instances: short workloads, cheap, can lose instance (less reliable)
4. Dedicated Hosts: book an entire physical server, control instance placement

Question 39

What is EC2 On Demand pricing?

Answer 39

Pay for what you use.
Linux: billing per second, after the first minute
All other operating systems: billing per hour

Question 40

What are EC2 On Demand instances recommended for?

Answer 40

Short-term and un-interrupted workloads where you can’t predict how the application will behave

Question 41

Does EC2 On Demand have a long-term commitment?

Answer 41

No

Question 42

Does EC2 On Demand have any upfront cost?

Answer 42

No

Question 43

Which EC2 Instance has the highest cost?

Answer 43

On Demand

Question 44

What is EC2 Reserved Instances reservation periods?

Answer 44

1. 1 year =+ discount

2. 3 years = +++ discount

Question 45

How does regular EC2 Reserved Instance compare to On Demand for pricing?

Answer 45

Up to 75% off compared to On Demand

Question 46

What are EC2 Reserved Instances purchasing options?

Answer 46

1. No upfront
2. Partial upfront = + discount
3. All upfront = ++ discount

Question 47

Can you change instance type on regular EC2 Reserved Instance?

Answer 47

No

Question 48

What situations are EC2 Reserved Instances recommended for?

Answer 48

Steady-state usage applications (think databases)

Question 49

What is Convertible Reserved Instance?

Answer 49

Allows you to change instance type

Question 50

How does EC2 Convertible Reserved Instance compare to On Demand for pricing?

Answer 50

Up to 54% off compared to On Demand

Question 51

What is EC2 Scheduled Reserved Instances?

Answer 51

Launch within time window you reserved.

Question 52

What situations is EC2 Scheduled Reserved Instances recommended for?

Answer 52

When you require a fraction of a day / week / month

Question 53

How does EC2 Spot Instance compare to On Demand for pricing?

Answer 53

Up to 90% off compared to On Demand

Question 54

How can you lose your EC2 Spot Instance?

Answer 54

Any time your max price is less than the current spot price

Question 55

What is the most cost-effective instance type in AWS?

Answer 55

EC2 Spot Instances

Question 56

What situations are EC2 Spot Instances recommended for?

Answer 56

Workloads that are resilient to failure

Question 57

What situations are EC2 Spot Instances not recommended for?

Answer 57

Critical jobs or databases

Question 58

What is an EC2 Dedicated Host

Answer 58

A physical server with EC2 instance capacity fully dedicated to your use. Can help you address compliance requirements and reduce costs by allowing you to use your existing server-bound software licenses.

Question 59

What is reservation period for EC2 Dedicated Hosts?

Answer 59

3 years

Question 60

What situations are EC2 Dedicated Hosts recommended for?

Answer 60

Useful for software that have complicated licensing model (BYOL - Bring Your Own License) or for companies that have strong regulatory or compliance needs

Question 61

What are EC2 Dedicated Instances?

Answer 61

Instances running on hardware that’s dedicated to you. May share hardware with other instances in same account. No control over instance placement (can move hardware after Stop / Start). Soft version of Dedicated Host

Question 62

What is AWS responsible for in regards to EC2?

Answer 62

1. Infrastructure (global network security)
2. Isolation on physical hosts
3. Replacing faulty hardware
4. Compliance validation

Question 63

What are you responsible for in regards to EC2?

Answer 63

1. Security Groups rules
2. Operating-system patches and updates
3. Software and utilities installed on the EC2 instance
4. IAM Roles assigned to EC2 & IAM user access management
5. Data security on your instance

Question 64

What is an EC2 Instance made of?

Answer 64

AMI (OS) + Instance Size (CPU + RAM) + Storage + security groups + EC2 User Data

Question 65

What are EC2 Instance Role?

Answer 65

Link to IAM roles (not 100% on this)

Question 66

Which EC2 Purchasing Option can provide the biggest discount, but is not suitable for critical jobs or databases?

1. Scheduled Instances
2. Convertible Instances
3. Dedicated Hosts
4. Spot Instances

Answer 66

Spot Instances

Question 67

Which network security tool can you use to control traffic in and out of EC2 Instances?

1. Network Access Control List (NACL)
2. Identity and Management Access (IAM)
3. GuardDuty
4. Security Groups

Answer 67

Security Groups

Question 68

Under the Shared Responsibility Model, who is responsible for operating-system patches and updates on EC2 Instances?

1. The customer
2. AWS
3. Both AWS and the customer

Answer 68

The customer

Question 69

How long can you reserve an EC2 Reserved Instance?

1. 1 or 3 years
2. 2 or 4 years
3. 6 months or 1 year
4. Anytime between 1 and 3 years

Answer 69

1 or 3 years

Question 70

Are EC2 instances bound to an AZ?

Answer 70

Yes