Failed Exam Questions

Question 1

Are you able to access EBS Snapshots using the regular s3 APIs?

Answer 1

No. Snapshots are only available through Amazon EC2 APIs.

Question 2

EC2 is billed by

Answer 2

The minute, or the hour.

Question 3

You have a multi region RDS. The primary instance instances goes down. How does traffic get redirected to a healthy instance?

Answer 3

The canonical record is changed from the primary database to the secondary.

Question 4

Does Dynamo database feature auto scaling?

Answer 4

Yes

Question 5

S3 provides eventual consistency for PUTS and DELETES. True or false?

Answer 5

True

Question 6

You have a web application which uploads videos to s3. However in testing you realise uploads are being blocked. What could you do?

Answer 6

Update the CORs configuration of the bucket to allow URLS from the web app url.

Question 7

You have a version enabled s3 bucket. And you accidentally delete a file from it. How to address this?

Answer 7

Remove the delete marker from the file.

Question 8

You need to move objects from Glacier Deep Arhive. To an S3 bucket with intelligent storage class. How do you do this?

Answer 8

Restore the objects from Glacier console. Then copy required objects to intelligent storage class.

Question 9

What is glacier select

Answer 9

Glacier allows you to query items in Glacier via simple SQL. Without actually having to retrieve them.

Question 10

You want to migrate a bunch of docker containers to AWS. How best to do this?

Answer 10

Create EC2 container registries
Installl docker
Upload the containers

Question 11

What is EC2 hibernation?

Answer 11

Hibernation gives you the ability to launch EC2 instances, set them up as desired, hibernate them, and then quickly bring them back to life when you need them. Applications pick up exactly where they left off instead of rebuilding their memory footprint.

Question 12

What do cloud front signed cookies do?

Answer 12

Allow you to control access to files, via a cookie.

Question 13

To test an AWS lambda function locally. What service would you use?

Answer 13

AWS Sam

Question 14

You want to use an S3 bucket to serve content through a domain name. However requests are failing. Why might this be?

Answer 14

CORS has not been configured.

Question 15

What does CORS mean?

Answer 15

Cross origin resource sharing

Question 16

You want to move one AWS account, from an organisation to another organisation. How to do this?

Answer 16

Remove the account from the old organisation.

Send an invited from the new organisation, and accept it via the account.

Question 17

When launching an EC2 instance. You want to download all the latest patches. How best to do this?

Answer 17

Write scripts to do so, and add them tot he used data section when launching the EC2 instance.

Question 18

You have an application with EC2s in three availability zones. They sit behind a load balancer.

If one availabilty zone goes down. You still require 100% compute power. How do you achieve this.

Answer 18

Set peak load to 50% in each availability zone.

Your baseline is now 150%. If you lose an AZ. It drops to 100%.

Question 19

You create a VPC to include an internet facing application, and a intranet internal application.

How many subnets do you need for best practise.

Answer 19

6

3 for the internet app, 3 for the internal intranet.

Question 20

You need to move a master account from one organisation to another. How to do this?

Answer 20

Make sure all the member accounts have moved first.

Then send an invite from one account to another.

Question 21

You have a development and a production environment in your VPC.

You don’t want those working on your dev server to have access to the prod server. How might you do this?

Answer 21

Define tags on development and production servers. Then add a condition to the IAM policy based on these tags.

Question 22

You have enabled cloud trail logs for your companies AWS account. The Head of IT has asked you to ensure logs are encrypted. What to do?

Answer 22

Nothing. The logs are encrypted by default.

Question 23

You have an EC2 instance in a set region. You have been asked to make a disaster recovery solution for if that region should fail. What to do?

Answer 23

Create a snapshot and copy it to another region.

Question 24

What’s the default retention time for a kenisis stream?

Answer 24

24 hours.

Question 25

What route 53 routing type, would you use with blue-green deployments?

Answer 25

Weighted

Question 26

You need to create a NAT gateway so your database can download patches to the internet. Do you connect the NAT gateway to the private or public subnet?

Answer 26

Public. It must be public.

Question 27

What service would you use to store docker images?

Answer 27

ECR

Question 28

Can you have different storage classes. On different folders in the same bucket?

Answer 28

Yes.

Question 29

What does ALB slow start mode do?

Answer 29

Gives targets time to warm up before sending data to them.

Question 30

Can you scale an ELB?

Answer 30

No. You create a snapshot, add create a larger volume from it.

Question 31

True or false. New EBS volumes created from scratch receive maximum performance immediately and do not need initilisation?

Answer 31

True

Question 32

True or false. New EBS volumes created from snapshots need to be initialised before they can be read from?

Answer 32

True

Question 33

Does AWS support BYOL for oracle?

Answer 33

Yes

Question 34

What is an effective way, to determine what security group rules are unused?

Answer 34

Analysing active network traffic using VLC flow logs.

Question 35

When does the bill process for EC2 begin

Answer 35

As soon as it launches.

Literally the moment the boot sequence begins.

Question 36

You create an EC2 instance using the launch wizard. But don’t specify a security group. What does AWS do?

Answer 36

Creates one security group for the instance.

Question 37

What does Raid 0 do?

Answer 37

Splits data evenly across two or more disks.

Question 38

When a user moves an object to a glacier achieve from an s3 bucket, glacier adds extra storage for meta data. Is this charged for?

Answer 38

Yes it is.

Question 39

You create an EBS snapshot. Does the snapshot include all blocks, or just written blocks?

Answer 39

Just written ones.

Question 40

Who is responsible for EC2 patches. The user or AWS?

Answer 40

The user

Question 41

When might you scale vertically?

Answer 41

When you can be sure you will be receiving a prolonged, and consistent volume of traffic.

Question 42

With detailed monitoring enabled on an EC2 instance. How often is metric data sent to cloud watch?

Answer 42

Every minute.

Question 43

Is EBS considered scalable?

Answer 43

Nope.

Question 44

Can auto scaling span multiple regions?

Answer 44

Nope.

Question 45

Is billing region specific?

Answer 45

Nope

Question 46

With versioning enabled. Can you store all previous versions of an object in infrequent access?

Answer 46

Nope.

Question 47

At what level can s3 access control lists be applied

Answer 47

Bucket and object

Question 48

Can you control access to an s3 bucket based on network sub mask?

Answer 48

No