General Info 2 Flashcards
In shared services VPC How can the organization control which networks can access the cluster?
A security group can grant access to traffic from the allowed networks via the CIDR range for each
network. VPC peering and VPN are connectivity services and cannot control traffic for security. Amazon
Redshift user accounts address authentication and authorization at the user level and have no control
over network traffic.
General Purpose SSD use case
boot vols, dev-test envs, low latency interactive apps
Max IOPS per Volume - 16,000 not consistent
Provisioned IOPS SSD
require sustained IOPS performance, or more than 16,000
Large database workloads. relational DBs
Max IOPS per Volume - 64,000
Throughput Optimized HDD
Low-cost esigned for frequently accessed, throughput-intensive workloads
Streaming workloads requiring consistent, fast throughput at a low price
Big data
Data warehouses
Log processing
Cannot be a boot volume
NAT gateways can be deployed both in public and private subnet. True/False
False. Only private
Which AWS service would simplify migration of a database to AWS
AWS Database Migration Service (AWS DMS)
Which AWS offering enables customers to find, buy, and immediately start using software solutions in
their AWS environment?
AWS Marketplace
Which service would you use to send alerts based on Amazon CloudWatch alarms
SNS
Where can a customer find information about prohibited actions on AWS infrastructure
AWS Acceptable Use Policy
HDD is great for random or sequential access
sequential. Large data blocks to read in and fewer read and write operations
what type of block storage will you use for backup of database
EBS code HDD
EFS features
petabyte, elastic capacity, NFS 4.0 and 4.1
S3 IA
cleaper for storage than standard but more expensive for access
3 type of retrieval types for Glacier
expedited(5mins), standard or bulk(12Hrs)
Name 2 services that facilitate loosely coupled architecture
SQS, ELB