Everything Flashcards

Question 1

Q

IaaS

Answer

A

Infrastructure as a Service - Most control, most setup

Question 2

Q

PaaS

Answer

A

Platform as a Service - Middle ground of IaaS and SaaS

Question 3

Q

SaaS

Answer

A

Software as a Service - Least control, least setup

Question 4

Q

Regions

Answer

A

Cluster of Data Centers

Question 5

Q

Availability Zone

Answer

A

Each region has between 3-6, completely isolated from each other.

Question 6

Q

Shared Responsibility Model

Answer

A

Customer is responsible for security IN the cloud, Amazon is responsible for security of the cloud

Customer Ex: Customer data, access management (IAM), firewall configs, encryption, etc.)
Amazon Ex: Software (compute, storage, db, networking), regions, edge locations, etc.)

Question 7

Q

IAM

Answer

A

Identity Access Management. How you control users in your AWS account

Question 8

Q

Groups

Answer

A

Collection of users. Users can belong to multiple groups.

Question 9

Q

Policies

Answer

A

Policies are applied to users/groups that dictates what they can/can’t do

Question 10

Q

AWS Management Console

Answer

A

Web interface to manage AWS services and resources

Question 11

Q

AWS Command Line Interface (CLI)

Answer

A

Alternative to AWS Management Console

Question 12

Q

AWS Software Dev Kit (SDK)

Answer

A

Language specific API’s

Question 13

Q

Access Key

Answer

A

~= Username

Question 14

Q

Secret Access Key

Answer

A

~= Password

Question 15

Q

IAM Best Practices

Answer

A

One AWS user = one person
Assign perm’s to groups, not individuals
Strong pswd policy + MFA
Access keys for CLI/SDK. Don’t share them!

Question 16

Q

EC2

Answer

A

Resizable virtual serves in the cloud. Allows for customers to have serverless architecture

Question 17

Q

Instance Types

Answer

A

General Purpose
Compute Optimized
Memory Optimized
Storage Optimized

Question 18

Q

Security Groups

Answer

A

Control traffic in/out of EC2 instances (Like firewalls)

Question 19

Q

Important Ports

Answer

A

21 - FTP
22 - SSH, SFTP
80 - HTTP
443 - HTTPS
3389 - RDP

Question 20

Q

Reserved Instances

Answer

A

Bought for 1 or 3 years, long-term. Better discounts

Question 21

Q

On-demand Instances

Answer

A

Good for short work loads, predictable pricing

Question 22

Q

Convertable Reserved Instances

Answer

A

Like reserved, but can change instance type

Question 23

Q

Spot Instances

Answer

A

Cheap instances that can be taken over by others willing to pay more. Cheapest, but unreliable

Question 24

Q

Dedicated Host Instances

Answer

A

Booking an entire instance

Question 25

Q

EBS (Elastic Block Store) Volume

Answer

A

Block storage for EC2 Instances.

Question 26

Q

EBS Snapshots

Answer

A

Backup of an EBS Volume. Also how you ‘restore’ (move) EBS Volumes to other regions

Question 27

Q

AMI (Amazon Machine Image)

Answer

A

Customization of an EC2 instance. Add own software, config, OS, monitoring, etc.)

Question 28

Q

EC2 Image Builder

Answer

A

Automate creation of virtual machines or container images

Question 29

Q

EC2 Instance Store

Answer

A

Temporary storage for EC2, data lost on stop or terminate.

Question 30

Q

EFS (Elastic File System)

Answer

A

Scalable, shared file storage for EC2. Managed network file system, can be mounted to 100’s of EC2 instances ACROSS AZ’s

Question 31

Q

FSX

Answer

A

Windows native shared file system

Question 32

Q

Vertical Scalability

Answer

A

Increase size of an instance (non-distributed systems) Building tall in Civ

Question 33

Q

Horizontal Scalability

Answer

A

Increasing the amount of instances (distributed systems) Building wide in Civ

Question 34

Q

Elasticity

Answer

A

‘Auto-scaling’ to scale based on usage. Matching performance w/ needs

Question 35

Q

ELB (Elastic Load Balancer)

Answer

A

ELB directs traffic to available instances downstream to increase performance

Question 36

Q

4 Types of load balancers

Answer

A

Applications (Layer 7)
Network (Layer 4)
Gateway (Layer 3)

Question 37

Q

ASG (Auto Scale Groups)

Answer

A

Automatically scales EC2 Instances

Question 38

Q

ASG Scaling Strategies

Answer

A

Manual
Target Tracking - ‘Want average ASG CPU @ 40%’
Simple/Step - ‘If (x>7) add 2 units
Scheduled - Increase capacity @ certain time
Predictive - Uses machine learning to predict future traffic spikes/dips

Question 39

Q

S3

Answer

A

Scalable object storage for data.

Question 40

Q

S3 Buckets

Answer

A

Store objects (files) in buckets (directories/folders) on S3

Question 41

Q

S3 Objects

Answer

A

Files in S3

Question 42

Q

S3 Security

Answer

A

IAM Policies for users
Bucket policies or ACL (Access control lists) for resources

Question 43

Q

Bucket Policies

Answer

A

JSON Based
resource - what bucket to apply to
effect - allow/deny actions
principal - bucket to apply policy to

Question 44

Q

S3 Versioning

Answer

A

Save versions of files that are changed in S3

Question 45

Q

CRR (Cross-Region Replication) and SSR (Same-Region Replication)

Answer

A

Replicates object across/within region

Question 46

Q

S3 Storage Classes

Answer

A

6 Classes (Use cases listed for each)
1. General Purpose - Big data analytics, content distribution
2. Infrequent Access - Backups. Rapid access when needed
3. One Zone Infrequent - Secondary Backups
4. Glacier - Data accessed once per quarter
5. Glacier flexibile retrieval - idk
6. Glacier Deep Archive - Infrequent Access

Question 47

Q

Server-Side Encryption

Answer

A

Server encrypts file after receiving it (on by default)

Question 48

Q

IAM Access Analyzer for S3

Answer

A

Monitor bucket access

Question 49

Q

Snow Family

Answer

A

Portable devices to migrate data from on-premise locations to AWS.
Snowcone - Smaller
Snowball Edge - Bigger

Question 50

Q

Relational DB’s

Answer

A

SQL. Links between DB’s.

Question 51

Q

Non-Relational

Answer

A

No-SQL. Built for specific data models

Question 52

Q

RDS

Answer

A

Relational DB for SQL

Question 53

Q

Aurora

Answer

A

Cloud optimized for PostgreSQL and MySQL. More cost effective than RDS (proprietary)

Question 54

Q

ElastiCache

Answer

A

Managed in-memory caching service to make RDS databases run faster. Reduces load on main DB.

Question 55

Q

DynamoDB

Answer

A

NoSQL. Fully managed w/ replication across 3 AZ’s w/ extremely low latency

Question 56

Q

Redshift

Answer

A

SQL. Managed data WAREHOUSE for big data analytics.

Question 57

Q

EMR (Elastic MapReduce)

Answer

A

Uses HADOOP to utilize clusters of EC2 instances to analyze data

Question 58

Q

Athena

Answer

A

Serverless query service for S3 data using SQL.

Question 59

Q

Quicksight

Answer

A

Create dashboards on data for user insights

Question 60

Q

DocumentDB

Answer

A

Implementation for MongoDB (NoSQL)

Question 61

Q

Neptune

Answer

A

Used for graph db’s. (Ex: Wikipedia, social networking, etc.)

Question 62

Q

Timestream

Answer

A

Time series DB

Question 63

Q

Amazon QLDB

Answer

A

Ledger for recording financial transactions

Question 64

Q

Managed Blockchain

Answer

A

Hyperledger & Ethereum

Answer 65

A

ETL Service (prepare data for loading)

Answer 66

A

DB migration service, migrate DB’s to other DB’s.
Note: If you’re migrating a linux machine that has a DB on it, you wouldn’t use DMS. Instead, use application migration service. (You’re migrating the Linux machine that HAS a DB, but not a DB itself)

Answer 67

A

Software dev tool to package apps to run on any OS

Answer 68

A

Launch docker containers on AWS

Answer 69

A

Launch docker containers w/o needing to provision

Answer 70

A

Store docker images to be run by ECR/Fargate

Answer 71

A

Kubernetes service

Answer 72

A

For executing individual functions. Pay per request & compute time.

Answer 73

A

For if you want to build a serverless HTTP API

Answer 74

A

Fully managed batch processing server (Batch = function has a start and an end, not continuous)

Answer 75

A

Pretty much easy option for people who don’t wanna learn AWS. Servers, storage, DB’s, networking, all centralized. For quick projects

Answer 76

A

Automatically creates AWS infrastructure from your own templates. Infrastructure as code

Answer 77

A

Way to write cloud infrastructure in a familiar coding language

Answer 78

A

Developer centric view for putting all components together (EC2, ASG, ELR, RDS)

Answer 79

A

Automated deployment of applications to EC2 instances

Answer 80

A

Compile, test, run, and output code on cloud for artifacts.

Answer 81

A

Orchestrates steps to have code automatically pushed to production

Answer 82

A

Storing and retrieving artifacts (dependancies)

Answer 83

A

Help manage EC2 and on-premise servers at scale

Answer 84

A

Start secure shell w/o needing SSH for Ec2/On-prem servers

Answer 85

A

Scalable DNS and domain name registration servers. Good for reducing latency/routing connections

Answer 86

A

CACHING. Improves read performance by caching content globally on edge locations

Answer 87

A

Increase transfer speed. File –> Edge location –> S3 Bucket

Answer 88

A

No caching, all content is passed through. Makes requests faster

Answer 89

A

AWS infrastructure extension to on-premise environments

Answer 90

A

Smaller ‘AZ’ like zones, lets you connect to niche areas. Ex: Boston in US-EAST-1

Answer 91

A

Active-Passive. 2 Regions. 1 active, 1 passive (no writes)

Active-Active. 2 Regions 2 Actives (both read and write)

Answer 92

A

DECOUPLE. Serverless app to decouple applications

Answer 93

A

Real-time big data streaming

Answer 94

A

Send message to one SMS topic (hub) that then auto routes to right service

Answer 95

A

Managed broker service to get traditional apps running on AWS. (Old weird stuff)

Answer 96

A

Metrics for monitoring stuff like Cost, CPU Utilization, Status Checks, etc.)

Answer 97

A

Real-time monitoring of logs

Answer 98

A

Scheduling cron jobs (scheduled scripts)

Answer 99

A

Logs and monitors AWS account activity for governance and security

Answer 100

A

Visual analysis/tracing of applications for debugging

Answer 101

A

Automated code reviews and application performance recommendations

Answer 102

A

Shows:
Service History (general info)
Your account (events that impacts you directly)

Can also aggregate data

Answer 103

A

Private network to deploy resources

Answer 104

A

Filter traffic in/out of a SUBNET

Answer 105

A

Captures network traffic data for VPC monitoring and analysis

Answer 106

A

Connect two VPC’s to talk to eachother

Answer 107

A

Private connection between VPC and AWS services w/o using internet

Answer 108

A

Connect on premise VPN to AWS (less private, fast)

Answer 109

A

Physical connection to AWS (private, slow)

Answer 110

A

Connecting personal computer to your private network

Answer 111

A

Way to make a star topology instead of peering

Answer 112

A

Managed DDoS protection for applications

Answer 113

A

Shield Advanced, CloudFront, Route 53, WAF

Answer 114

A

Protect entire VPC (layers 3-7)

Answer 115

A

Managing VPC Security groups across multiple accounts

Answer 116

A

Provision/manage SSL/TLS certificates

Answer 117

A

Secret managing in RDS

Answer 118

A

Support internal or external audits. Important for stuff like HIPPA

Answer 119

A

Find/Protect sensitive data (PII, HIPPA, etc.)

Answer 120

A

Machine learning to analyze various logs to detect/protect (Continuous monitoring)INse

Answer 121

A

Run automated security assessments on EC2, Lambda functions, or containers

Answer 122

A

Helps record configuration changes over time

Answer 123

A

Aggregate alerts into one central hub

Answer 124

A

Identify the ROOT of security incidents

Answer 125

A

Find out what resources are shared externally

Answer 126

A

Detect people or objects in images/videos

Answer 127

A

Turn text into speech

Answer 128

A

Translate into different languagesLex

Answer 129

A

Lex helps build chatbots. Connect invokes lambda functions for chatbots to use

Answer 130

A

NLP (natural Language Proccessing)

Answer 131

A

Service to build a Machine Learning model

Answer 132

A

Uses machine earning to report future sales forecasts

Answer 133

A

Document searching to extract data from

Answer 134

A

build apps w/ personalized product recommendations

Answer 135

A

Extract text from documents to give as data file

Answer 136

A

Allows management of multiple AWS accounts by linking them together into one Organization. Shared billing and pricing discounts

Answer 137

A

Setup and govern multiple accounts w/ best practices

Answer 138

A

Share resources across accounts (ex: reserved instances not in use on one account are transferred to another)

Answer 139

A

Premade products that users can purchase

Answer 140

A

Pay as you go
Save when you reserve
Pay less by using more
Pay less as AWS grows

Answer 141

A

Dedicated –> On-Demand –> Reserved –> Spot

Answer 142

A

Pay per call & duration

Answer 143

A

Makes recommendations to reduce cost and inc. performance

Answer 144

A

Estimate cost for desired architecture

Answer 145

A

See your bills

Answer 146

A

Apply tags to resources to see cost by category

Answer 147

A

Most comprehensive billing report

Answer 148

A

High level AWS account assessment for cost saving

Answer 149

A

Basic –> Business (24/7 support) –> Enterprise On-Ramp –> Enterprise (business critical support)

Answer 150

A

Create temporary, limited privilege credentials to access resourcesC

Answer 151

A

Way to manage users for a mobile/web app

Answer 152

A

SSO (Single Sign On) for all AWS accounts in your organization

Answer 153

A

Provision Windows or Linux desktops

Answer 154

A

Deliver applications through web-browswer

Answer 155

A

Connect IoT devices into AWS CloudE

Answer 156

A

Convert media files into other formats in S3

Answer 157

A

Develop and deploy fullstack web/mobile apps

Answer 158

A

Visually design and build serverless apps

Answer 159

A

Test mobile/desktop apps across multitude of devices

Answer 160

A

Manage and automate backupsD

Answer 161

A

Backup and Restore

Answer 162

A

Recover DB’s, apps, etc.)

Answer 163

A

Incremental to move on premise to AWS

Answer 164

A

Plan migration to AWS

Answer 165

A

Data-driven business case to migrate to AWS

Answer 166

A

Central location to collect data

Answer 167

A

Purposely try to fuck shit up to see if it still works

Answer 168

A

Build serverless visual workflow

Answer 169

A

Control sattelites

Answer 170

A

Marking and communication service (SMS)

Answer 171

A

Ability to run and monitor continusouyl

Answer 172

A

Ability to protect information

Answer 173

A

Ability to recover information

Answer 174

A

Ability to meet desired requirements

Answer 175

A

Ability to deliver at the lowest possible price

Answer 176

A

Ability to minimize environmental impacts and optimize over-time

Answer 177

A

Way to check your architecture against the 6 pillars

Answer 178

A

How to leverage AWS

Answer 179

A

Ensure cloud investments help company goals

Answer 180

A

Bridge between technhology and business

Answer 181

A

Orchestrate cloud strategies

Answer 182

A

Build enterprise, scalable platforms

Answer 183

A

Achieve CIA (Confidentiality, Integrity, Availability)

Answer 184

A

Start small b/c scaling up is easier than down. Making sure your systems match what performance you need

Answer 185

A

Quickly find a professional to help with your AWS projects (Like freelancing)

Answer 186

A

Forms, like stackoverflow

Answer 187

A

Infrastructure and Application support by Amazon.

Brainscape's Knowledge GenomeTM

Everything Flashcards

idk i just want flashcards

Brainscape's Knowledge Genome^TM