General Info 2 Flashcards

1
Q

In shared services VPC How can the organization control which networks can access the cluster?

A

A security group can grant access to traffic from the allowed networks via the CIDR range for each
network. VPC peering and VPN are connectivity services and cannot control traffic for security. Amazon
Redshift user accounts address authentication and authorization at the user level and have no control
over network traffic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

General Purpose SSD use case

A

boot vols, dev-test envs, low latency interactive apps

Max IOPS per Volume - 16,000 not consistent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Provisioned IOPS SSD

A

require sustained IOPS performance, or more than 16,000
Large database workloads. relational DBs
Max IOPS per Volume - 64,000

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Throughput Optimized HDD

A

Low-cost esigned for frequently accessed, throughput-intensive workloads
Streaming workloads requiring consistent, fast throughput at a low price
Big data
Data warehouses
Log processing
Cannot be a boot volume

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

NAT gateways can be deployed both in public and private subnet. True/False

A

False. Only private

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Which AWS service would simplify migration of a database to AWS

A

AWS Database Migration Service (AWS DMS)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which AWS offering enables customers to find, buy, and immediately start using software solutions in
their AWS environment?

A

AWS Marketplace

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which service would you use to send alerts based on Amazon CloudWatch alarms

A

SNS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Where can a customer find information about prohibited actions on AWS infrastructure

A

AWS Acceptable Use Policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

HDD is great for random or sequential access

A

sequential. Large data blocks to read in and fewer read and write operations

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

what type of block storage will you use for backup of database

A

EBS code HDD

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

EFS features

A

petabyte, elastic capacity, NFS 4.0 and 4.1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

S3 IA

A

cleaper for storage than standard but more expensive for access

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

3 type of retrieval types for Glacier

A

expedited(5mins), standard or bulk(12Hrs)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Name 2 services that facilitate loosely coupled architecture

A

SQS, ELB

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

fault tolerant is a higher bar than high availability

A

high available means that system is up and available bu t it might perform at a slightly degraded state.
Fault-tolerant means user does not experience any impact due to fault. Ths SLA is met.

17
Q

AMI’s in cloud formation templates should not be parameterized

A

Since it is difficult ofr users to enter the AMI ID’s

18
Q

AMI ID’s are different across regious

A

Use mappings to specify the base AMI since AMI ID’s are different in each region

19
Q

Output from lambda

A

Cloudwatch logs

20
Q

Output from lambda that is useful for debugging as well

A

Cloudwatch logs

21
Q

RTO vs RPO

A

RTO is concerned with applications and systems. The measurement includes data recovery but primarily describes time limitations on application downtime. RPO is concerned with the amount of data that is lost following a failure event

22
Q

RPO stands for

A

recovery point objective

23
Q

RTO stands for

A

recovery time objective

24
Q

RTO stands for

A

recovery time objective

25
Q

Test axioms

A

single AZ will never be the right answer

AWS managed services should always be preferred