HNF Problem Questions 3 Flashcards
Which service is good for running compute workloads for people who don’t have technical expertise with AWS?
- -ECS
- -EC2
- -LightSail
- -Lambda
LightSail
What is AWS Step Function
AWS Step Functions is a serverless function orchestrator that makes it easy to sequence AWS Lambda functions and multiple AWS services into business-critical applications. Through its visual interface, you can create and run a series of checkpointed and event-driven workflows that maintain the application state.
How do you increase the capacity of a RDS database?
- -scaling horizontally, by adding instances
- -scaling horizontally, by adding RCUs/WCUs
- -scaling vertically, by changing the instance type
- -scaling vertically by adding CPUs
–scaling vertically, by changing the instance type
Which S3 storage class is best for data with unpredictable access patterns?
- -S3 standard
- -S3 Glacier
- -S3 intelligent tiering
- -S3 standard-infrequent access
S3 intelligent tiering
Which service provides guidance for remediation when AWS is experiencing events that may impact you?
- -Trusted Advisor
- -Inspector
- -AWS Personal Health Dashboard
- -Cloud Compliance
–AWS Personal Health Dashboard
what is Amazon AppStream
Amazon AppStream 2.0 is a fully managed non-persistent application and desktop streaming service. You centrally manage your desktop applications on AppStream 2.0 and securely deliver them to any computer. You can easily scale to any number of users across the globe without acquiring, provisioning, and operating hardware or infrastructure.
How can fault tolerance be added to an Amazon RDS database?
- -using read replicas
- -using multi-AZ
- -using Global Replicas
- -using EBS snapshots
using multi-AZ
Which services have a Global scope?
- -CloudFront, Route53, VPC
- -CloudFront, Route53, CloudWatch
- -Lambda, CloudFront, Route53
- -IAM, CloudFront, Route53
–IAM, CloudFront, Route53
Which AMI can be used to mount the EFS file system?
- -Microsoft Windows Server 2019 with Containers
- -Microsoft Windows Server 2016 Core
- -Amazon Linux 2 AMI
- -all of the above
Amazon Linux 2 AMI
Which storage classes are available for the EFS?
- -Standard, Provisioned Thoughput
- -Standard, Deep Archive
- -standard, Infrequent Access Storage
- -Standard, One-Zone IA
–standard, Infrequent Access Storage
What is AWS Data Pipeline
it is a web service that makes it easy to schedule regular data movement and data processing activates in the AWS cloud
A company needs a network connection to the AWS cloud with predictable performance. What should they use?
- -AWS managed VPN
- -AWS Direct Connect
- -VPN Cloudhub
- -VPC Peering
–AWS Direct Connect
What is Amazon Lumberyard
Amazon Lumberyard is a freeware cross-platform game engine developed by Amazon and based on CryEngine (initially released in 2002), which was licensed from Crytek in 2015.
Your company has a data sotre application that requires access to a NoSQL database. Which AWS database offering would meet this requirement?
- -DynamoDB
- -Redshift
- -Aurora
- -EBS
DynamoDB
Which of the following compute resources are resources are serrverless?
- -EMR
- -Lambda
- -Fargate
- -EC2
- -ECS
- -Lambda
- -Fargate
Which of the following are use cases of the Route53 service
choose 2
- -provides infrastructure security optimization recommendations
- -manages global application traffic through a variety of routing types
- -DNS configuration and management
- -detects configuration and management
- -point-to-point connectivity between an on-premises data center and AWS
–manages global application traffic through a variety of routing types
–DNS configuration and management
Which services can scale horizontally
- DynamoDB, EC2 Auto Scaling, S3
- DynamoDB, EFS, EC2
- EC2 Auto Scaling, S3, NAT instance
-DynamoDB, EC2 Auto Scaling, S3
What does AWS Cost Explorer provide to help manage your AWS spend
- -consolidated billing
- -cost comparisons between AWS Cloud environments and on-premise environments
- -highly accurate cost forecasts for up to 12 months ahead
- -accurate estimates of AWS service cost based on you expected usage
–highly accurate cost forecasts for up to 12 months ahead
A company needs to orchestrate several batch processes on AWS. Which serverless service an assist
- -SWF
- SQS
- -EventBridge
- -Step Function
–Step Function
What is AWS Resource Groups
If you work with multiple resources in multiple environments, you can use Resource Groups to manage all the resources in each environment as a group rather than move from one AWS service to another for each task.
With Resource Groups tool you can create a custom console that organizes and consolidates information based on your project and the resources that you use.
According to the AWS Shared Responsibility model, who is responsible for configuring serverside encryption for S3?
AWS
You managed a blog on AWS that has different environments: development, testing, and production. What can you use to create a custom console for each environment to view and manage you resources easily?
- -Placement Groups
- -Tag Editor
- -Resource Groups
- -Management Console
Resource Groups
what is an NAT Gateway
NAT gateway resources are part of Virtual Network NAT and provide outbound Internet connectivity for one or more subnets of a virtual network. The subnet of the virtual network states which NAT gateway will be used. NAT provides source network address translation (SNAT) for a subnet.
Which storage service is used by EC2 instances for the root volume?
- -S3
- -EFS
- -EBS
- -Storage Gateway
EBS
WIth VPC you pay for
- -Internet Gateway
- -Route Table
- -Security Group
- -VPN Connection
–VPN Connection
What is AWS DataSync?
AWS DataSync is an online data transfer service that simplifies, automates, and accelerates moving data between on-premises storage systems and AWS Storage services, as well as between AWS Storage services.
A developer is planning to build a two-tier web application that has a MySQL database layer. Which of the following AWS database services would provide automated backups for the applications?
- -Aurora
- -DocumentDB
- -DynamoDB
- -a MySQL database installed on and EC2 instance
Aurora
A company needs to migrate several TB of data from an on-premises NAS device to Amazon FSx. Which service can the company use to migrate the data over a VPN connection?
- -DMS
- -Snowball Edge
- -DataSync
- -S3 Transfer Acceleration
–DataSync
Which type of ELB can direct traffic based on the domain name?
- -classic load balancer
- -network load balancer
- -application load balancer
- -EC2 load balancer
application load balancer
How can an organization enable microsecond latency for a DynamoDB database?
- -using Amazon ElasticCache
- -using DynamoDB Auto Scaling
- -using Read Replicas
- -using DynamoDB Accelerator (DAX)
–using DynamoDB Accelerator (DAX)
it is an in-memory cache that increases performance of DynamoDB database
Which AWS database service offers seamless horizontal scaling?
- -RDS
- Redshift
- -DynamoDB
- -database on Amazon EC2
–DynamoDB
What type of template is used by EC2 Auto Scaling to define instance family, AMI key pair, and security groups?
- -Scaling Plan
- -Launch Configuration
- -Scaling Policy
- -Auto Scaling Group
–Launch Configuration
With default settings, what will happen to a root EBS volume when the EC2 instance is terminated?
- -it will be deleted
- -it will be retained
- -a snapshot will be retained
- -an AMI will be created
it will be deleted
5 Server-less Services
Lambda Fargate SNS SQS DynamoDB
Which type of public IP address is relained when the instance is stopped?
- -Public IP address
- -Private IP address
- -Elastic IP address
- -Local IP address
–Elastic IP address
Free services
VPC Elastic Beanstalk CloudFormation IAM Auto Scaling consolidated billing
In Route53, what is the name for the configuration item that holds a collection of records belonging to a domain?
- -DNS record
- -Alias
- -Hosted zone
- -Routing Policy
–Hosted zone
The principle ‘design for failure and o will fail’ is very important when designing your AWS Cloud Architecture. Which of the following would help adhere to this principle
Choose 2
- -penetration testing
- -MFA
- -ELB
- -Vertical Scaling
- -AZ
–ELB
–AZ
Which storage device is physically attached to the EC2 host servers?
- -EBS volume
- -AMI
- -Instance Store volume
- -Elastic Network Adapter
Instance Store volume
Key things that an AMI includes
–one of more EBS snapshots, or ,for instance-store-backed AMI, a template for the root volume of the instance (for example, an operating system, an application server, and applications)
–Launch permissions that control which AWS accounts can use the AMI to launch instances.
–block device mapping that specifies the volumes to attach to the instance when it’s launched
Which service has built-in DDoS protection
- -Route53
- -Gateway
- -CloudFront
- -Direct Connect
–CloudFront
Select the services that are server-based
Choose 2
- -Lambda
- -Fargate
- -DynamoDB
- -RDS
- -EMR
RDS
EMR
What is Amazon connect
Amazon Connect is an easy to use omnichannel cloud contact center that helps you provide superior customer service at a lower cost.
Which IAM entity can be used to delegate permissions?
- -User
- -Group
- -Role
- -Policy
Role
Which tool can an IT manager use to forecast cost over the next 3 months?
- -Organizations
- -TCO Calculator
- -Cost Explorer
- -CloudWatch
–Cost Explorer
Which of the following statements is true?
- -CloudFormation uses Elastic Beanstalk to deploy infrastructure Stacks
- -CloudFormation is used by Elastic Beanstalk to deploy environments
–CloudFormation is used by Elastic Beanstalk to deploy environments
Which of the following are factors that should be considered for EBS pricing?
- -the compute time you consume
- -the number of Snowball storage devices you request
- -the size of volumes provisioned per moth
- -the amount of data you have stored in snapshots
- -the compute capacity you consume
- -the size of volumes provisioned per moth
- -the amount of data you have stored in snapshots
EBS pricing has two factors
- volume
- snapshots
AWS Elastic Beanstalk is an example of which cloud computing service model?
- -on-premises
- -IaaS
- -PaaS
- -Saas
PaaS
4 Server-based services
EC2
RDS
Redshift
EMR
RDS is an example of what type of database?
- -online transaction processing (OLTP)
- -online analytics processing (OLAP)
- -no-SQL
- -data warehouse
–online transaction processing (OLTP)
An application needs to send SMS text messages to customers to notify them of product updates. Which service can be used?
- -Step Function
- -SQS
- -SNS
- -Lambda
SNS
Which of the following is not an AWS reservation model?
- -Redshift Reserved Nodes
- -S3 Reserved Capacity
- -ElastiCache Nodes
- -DynamoDB Reserved Capacity
–S3 Reserved Capacity
Allows you to establish a secure and private tunnel from your network or device to the AWS global network
VPN
What should you do in order to keep the data on EBS volumes safe?
Choose 2
- -sore a backup daily in an external drives
- -create EBS snapshot
- -prevent any unauthorized access to AWS data centers
- -regularly update firmware on EBS device
- -ensure that EBS data is encrypted at rest
–create EBS snapshot
–ensure that EBS data is encrypted at rest
What is the most cost-effective storare tier for data that is not often accessed, will be retained for 7 years, and needs to be retrievable within 24 hours?
- S3 Standard
- -S3 Glacier
- -S3 Standard-Infrequent Access
- -S3 Glacier Deep Archive
–S3 Glacier Deep Archive
Why might an organization decide to move an on-premise database to RDS?
- -to reduce operational overhead
- -to increase flexibility
- -to eliminate the need to patch management
- -to benefit from seamless scalability
–to reduce operational overhead
How can a company enable elasticity for an application running on EC2?
- -by using EC2 auto scaling
- -by using ELB
- -by configuring multi-AZ
- -by enabling failover in EC2
–by using EC2 auto scaling
Which type of ELB routes connections based on IP protocol data a layer 4 only?
- -Classic Load Balancer
- -Network Load Balancer
- -Application Load Balancer
–Network Load Balancer
What is the scope of an Amazon VPC?
- -a data center
- -a region
- -an AZ
- -a subnet
a region
What is S3 Transfer Acceleration
Amazon S3 Transfer Acceleration enables fast, easy, and secure transfers of files over long distances between your client and an S3 bucket. Transfer Acceleration takes advantage of Amazon CloudFront’s globally distributed edge locations. As the data arrives at an edge location, data is routed to Amazon S3 over an optimized network path.
Your CTO has asked you to contact AWS support using feature to ask for guidance related to EBS. However, when you open the AWS support center you can’t see a way to contact support via Chat. What should you do?
- -there is no chat feature in AWS support
- -at a minimum, upgrade to Business support plan
- -The chat feature is available for all plans for an additional fee, but you have to request it first.
- -upgrade from the basic support plan to developer Support
at a minimum, upgrade to Business support plan
AMI provides that information required to launch ——–?
an instance
what is an AWS subset?
a range of IP addresses within a VPC
Which AWS-managed network service can be used to enable Internet connectivity for EC2 instances in private subnets?
- -NAT instance
- -NAT Gateway
- -Internet Gateway
- -Network ACL
–NAT Gateway
it is an AWS service that can be used for enabling instance in private subnets to access the Internet
What are AMI used for?
- -Launching an EC2 instance
- -taking a backup of an EC2 instance
- -selecting the instance type
- -running commands at instance launch time
Launching an EC2 instance
Which of the following is used to cache data to bring it closer to end users?
- -CloudFront Edge Location
- -CloudFront Distribution
- -CloudFront Origin
- -CloudFront Bucket
–CloudFront Edge Location
Which of the following statements in INCORRECT about ELB?
- -EBL can distribute connections across available zones
- -ELB can be Internet facing
- -ELB enables high availability and fault tolerance
- -ELB can distribute connections across regions
–ELB can distribute connections across regions
Which type of firewall operates at the instance level?
- -a security group
- -a network access control list (NACL)
- -a route table
- -a NAT Gateway
–a security group
You work as an on-premise MySQL DBS. The work of database configuration, backup, patcing, and DR can be time-consuming and repetitive. Your company has decided to migrate to the AWS Cloud. Which of the following can help save time on database maintenance so you can focus on dat architecture and performance?
- -Redshift
- CloudWatch
- -DynamoDB
- -RDS
RDS
You web application currently faces performance issues and suffers from long load times. Which of the following AWS service could help fix these issues and improve performance?
- -Aurora
- -Opworks
- -X-ray
- -Shield
X-ray
What does ELB use to ensure instances are available?
- -EC2 Status Checks
- -CloudWatch Metrics
- -Scaling Plans
- -Health Checks
–Health Checks
What is the AWS service that provides a virtual network dedicated to your AWS account?
- -Dedicated Hosts
- -Subnets
- -VPN
- -VPC
VPC
VPC allows you to carve out a portion of the AWS Cloud that is dedicated to your AWS account
Which of the following is a feature of RDS that performs automatic failover when the primary database fails to respond
- -RDS multi-AZ
- -RDS Single-AZ
- -RDS Snapshots
- -RDS Write Replicas
RDS multi-AZ
What does ARN stand for?
- -Amazon Region Number
- -Amazon Resource Number
- -Amazon Region Name
- -Amazon Resource Name
-Amazon Resource Name
Which statement is NOT true about CloudFront Regional Edge Cache and Edge Locations?
- -a regional edge cache has a larger cache bandwidth and an edge location
- -there are more edge locations than regional edge caches
- -an edge location sits between a CloudFront Distribution and a regional edge cache
- -a regional edge cache sits between a CloudFront Distribution and an edge location
–an edge location sits between a CloudFront Distribution and a regional edge cache
Which services does Route53 provide?
- -Domain registration, DNS, firewall protection
- -Health checking, DNS, domain registration
- -Health checking, DNS, IP routing
- -Domain registration, DNS, content distribution
–Health checking, DNS, domain registration
Three main categories of AMIs?
–community AMIs
–AWS martketplace AMIs
–My AMIs
Which of the following will affect how much you are charged for storing objects in S3?
choose 2
- -creating and deleting S3 buckets
- -using default encryption for any number of S3 buckets
- -the storage class used for the objects stored
- -total size in gigabytes of all objects stored
- -the number of EBS volumes attached to your instances
–the storage class used for the objects stored
–total size in gigabytes of all objects stored
What is AWS Tag Editor
It is used to add edit or delete tags from AWS resources
Config vs CloudTrail
–CloudTrail records user API activity on your account and allows you to access information about this activity
–Config records point-in-time configuration details for your AWS resources as Configuration Items (CIs)
–You can use Config to answer ‘what did my AWS resources look like’ at a point in time
–you can use CloudTrail to answer ‘who made an API call to modify this resource’
Key points about S3 versioning
- -S3 versioning maintains multiple variants of an object in the same bucket
- -can be used to preserve, retrieve, and restore every version of every object in an S3 bucket
- -can be enabled at any time
- -once enabled can be suspended
You need to migrate a large number of on-premises workloads to AWS. Which AWS service is the most appropriate?
- -AWS Application Discovery Service
- -AWS Server Migration Service
- -AWS Database Migration Service
- -AWS Files Transfer Acceleration
AWS Server Migration Service
What is the AWS service that enables AWS architects to manage infrastructure as code?
- -CloudFormation
- -SES
- -Config
- -EMR
CloudFormation
A company wishes to restrict the applications users can launch to an approved list. Which service should they use?
AWS Service Catalog
What are placement groups?
they are logical groups or clusters of EC2 instances within a single AZ. They are recommended for applications that require low network latency, high network throughput, or both
What can you use to assign permissions directly to an IAM user?
- -IAM Role
- -IAM Identity
- -IAM Policy
- -IAM Group
IAM Policy
A policy is an object in AWS that, when associated with an identity or resource, defines their permissions.
Glacier vs Glacier Deep Archive
In order to keep costs low yet proper for differing retrieval requirements, Amazon S3 Glacier offers three choices for access to archives, from certain minutes to many hours. On the other hand, S3 Glacier Deep Archive offers two access choices varying from 12 to 48 hours.
What is AWS Cloud9
it is a cloud-based integration development environment (IDE) that lets you write, run, and debug you code with just a browser.
How can an application be configured to send a notification to multiple SQS queues?
- -use a FIFO queue
- -use a SNS topic
- -create an AWS Step Function state machine
–use a SNS topic
multiple SQS queues can be subscribed to a single SNS topic
