General notes 3 Flashcards

1
Q

EC2 placement groups

A

Cluster - packs instances close together inside an Availability Zone. This strategy enables workloads to achieve the low-latency network performance necessary for tightly-coupled node-to-node communication that is typical of HPC applications.

Partition - spreads your instances across logical partitions such that groups of instances in one partition do not share the underlying hardware with groups of instances in different partitions. This strategy is typically used by large distributed and replicated workloads, such as Hadoop, Cassandra, and Kafka.

Spread - strictly places a small group of instances across distinct underlying hardware to reduce correlated failures.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

VPC subnets

A

Key points of VPC subnets:

  • Each subnet maps to a single Availability Zone.
  • Every subnet that you create is automatically associated with the main route table for the VPC.
  • If a subnet’s traffic is routed to an Internet Gateway, the subnet is known as a public subnet.
  • A Virtual Private Gateway is used to connect to a corporate network

https://tutorialsdojo.com/amazon-vpc/

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Load balancing two read replicas on Aurora database

A

Use the build-in “reader endpoint” for an Aurora DB cluster provides load-balancing support for read-only connections to the DB cluster.

Use the reader endpoint for read operations, such as queries. By processing those statements on the read-only Aurora Replicas, this endpoint reduces the overhead on the primary instance. It also helps the cluster to scale the capacity to handle simultaneous SELECT queries, proportional to the number of Aurora Replicas in the cluster. Each Aurora DB cluster has one reader endpoint.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

S3 Glacier retrieval

A

Glacier is for long-term storage

Retrieval Options:

  • Expedited – data accessed is typically made available within 1–5 minutes.
  • Standard – data accessed is typically made available within 3–5 hours.
  • Bulk – data accessed is typically made available within 5–12 hours.

Provisioned capacity ensures that your retrieval capacity for expedited retrievals is available when you need it. Each unit of capacity provides that at least three expedited retrievals can be performed every five minutes and provides up to 150 MB/s of retrieval throughput. You should purchase provisioned retrieval capacity if your workload requires highly reliable and predictable access to a subset of your data in minutes. Without provisioned capacity Expedited retrievals are accepted, except for rare situations of unusually high demand. However, if you require access to Expedited retrievals under all circumstances, you must purchase provisioned retrieval capacity.

https://tutorialsdojo.com/amazon-s3/
https://tutorialsdojo.com/amazon-glacier/

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are two benefits of using Read Replicas over Multi-AZ

A

What are two benefits of using Read Replicas over Multi-AZ?

  • It elastically scales out beyond the capacity constraints of a single DB instance for read-heavy database workloads.
  • Provides asynchronous replication and improves the performance of the primary database by taking read-heavy database workloads from it.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Network ACL allow inbound/outbound traffic

A

In the Network ACL, update the rule to allow inbound TCP connection on port 443 from source 0.0.0.0/0 and outbound TCP connection on port 32768 - 65535 to destination 0.0.0.0/0

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A production MySQL database hosted on Amazon RDS is running out of disk storage. The management has consulted its solutions architect to increase the disk space without impacting the database performance.

How can the solutions architect satisfy the requirement with the LEAST operational overhead?

A

Modify the DB instance settings and enable storage autoscaling.

RDS Storage Auto Scaling automatically scales storage capacity in response to growing database workloads, with zero downtime.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

An accounting application uses an RDS database configured with Multi-AZ deployments to improve availability. What would happen to RDS if the primary database instance fails?

A

The canonical name record (CNAME) is switched from the primary to standby instance.

In Amazon RDS, failover is automatically handled so that you can resume database operations as quickly as possible without administrative intervention in the event that your primary database instance goes down. When failing over, Amazon RDS simply flips the canonical name record (CNAME) for your DB instance to point at the standby, which is in turn promoted to become the new primary.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Recommend the fastest storage option with high I/O performance for the temporary files on an EC2 instance

A

Configure RAID 0 in multiple instance store volumes.

RAID 0 configuration enables you to improve your storage volumes’ performance by distributing the I/O across the volumes in a stripe. Therefore, if you add a storage volume, you get the straight addition of throughput and IOPS. This configuration can be implemented on both EBS or instance store volumes. Since the main requirement in the scenario is storage performance, you need to use an instance store volume. It uses NVMe or SATA-based SSD to deliver high random I/O performance. This type of storage is a good option when you need storage with very low latency and you don’t need the data to persist when the instance terminates.

RAID 1 configuration is used for data mirroring. You need to configure RAID 0 to improve the performance of your storage volumes.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How to restrict access to an EC2 instance based on IP address

A

To restrict IP address, use /32 in the CIDR block to denote one specific IP address (TCP)

175.45.116.100/32
175.45.116.100/0

The /32 denotes one IP address and the /0 refers to the entire network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly