HW_HCIA-Cloud Service V3.0 Course Flashcards
1
Q
abstraction of the internet and the infrastructure that underpins it.
A
Cloud
2
Q
enables access to comprenhensive public services through the internet and serves as an extensive service platform with software, application and information resources provisioned for governmental bodies.
A
E-Gov cloud
3
Q
software technology that makes it easy to build, deploy, and manage software robots that emulate humans actions interacting with digital systems and software.
A
RPA - Robotic Process automation
4
Q
application, data, runtime environment middleware, OS, {users need to focus on the system and application layers} we as cloud providers, work with virtualization, server,storage, network
A
Iaas
5
Q
Unlike IaaS or SaaS service models, PaaS solutions are specific to application and software development and typically include:
A
Cloud infrastructure:Data centers, storage, network equipment, and servers
Middleware software: Operating systems, frameworks, development kits (SDK), libraries, and more
User interface:A graphical user interface (GUI), a command line interface (CLI), an API interface, and in some cases, all three
6
Q
We handle all resources
A
Saas
7
Q
on demand self-service, elasticity, resource pooling, metered services, quick deployment, broad network access
A
Benefits of cloud computing
8
Q
common features of cloud computing
A
massive scale, homogenity, virtualization, resilient computing, low cost software, advanced security technologies, geographical distribution, service orientation.
9
Q
Building a fully connected world
A
HW
10
Q
compute, network, storage
A
tech used in cloud
11
Q
virtualization, container
A
compute
12
Q
classic network, virtual network
A
network
13
Q
storage services include
A
block storage (high performance, low latency), file storage(file sharing among multiple servers and enterprise depts) , object storage (flat easy to scale - architecture , data backup)
14
Q
refers to the process of creating multiple VM’s that share the hardware resources of a physical server)
A
Virtualization
15
Q
scalable, distributed and available resources
A
offer of virtualization
16
Q
partitioning, isolation, encapsulation and independence
A
main features of virtualization
17
Q
a physical server can run multiple vm’s
A
partitioning
18
Q
isolation
A
sandbox
19
Q
encapsulation
A
Because of this isolation, if one virtual instance crashes, it has no impact on the other virtual machines or the host system. Furthermore, data is not exchanged from one virtual instance to the next.
20
Q
ECS
A
elastic cloud server
21
Q
two challlenges in the development of container technology:
A
unified platform
usability
22
Q
computing essentially refers to
A
the process of obtaining information.
23
Q
container
A
lightweight, portable technology for application packaging. Standard unit that packages an application code and all it’s dependencies.
24
Q
HUAWEI CLOUD services
A
elastic cloud server (ecs), auto scalling (AS) - increases or decreases number of ECS dinamically, image management service (IMS) provide OS images for ECs
25
Study further: container timelines
26
whats the main difference between a container and a VM
containers virtualize OS instead of hardware.
27
startup speed in a container
seconds
28
OS dependency in a container
all containers share the host OS
29
HUAWEI Cloud container Services
cloud container engine, cloud container instance, software repository for container. (study these concepts further)
30
Kubernetes
often abbreviated as K8s is an open-source platform designed to automate the deployment, scaling, and management of containerized applications. It was originally developed by Google and is now maintained by the Cloud Native Computing Foundation (CNCF). Kubernetes provides a framework for automating the deployment, scaling, and management of containerized applications.
31
Network
they bridge devices and vm's helping them communicate between them.
32
this device it acts as a gateway for data access and decides how to forward it
router
33
gateway
device that connects a subnet to an external network
34
what layer does the router operate on?
Routers operate on the third layer of the OSI Model, the Network-Control Layer. the router is an interconnection device on the network layer
35
study further: switching protocols
36
two common virtual switch models
OVS and EVS
37
whats the ovs switch model?
Open vSwitch is a production quality, multilayer virtual switch licensed under the open source Apache 2.0 license. The main purpose of Open vSwitch is to provide a switching stack for hardware virtualization environments, while supporting multiple protocols and standards used in computer networks.
38
whats the evs switch model?
EVS is a virtual switch that spans one or more compute nodes and their VMs, hence its 'elastic' character. Through the switch, VMs connect to one another from anywhere in the network.
39
huawei cloud network services
- Virtual Private Cloud (VPC)
- Elastic IP (EIP)
- NAT Gateway
- Elastic Load Balance (ELB)
- Direct Connect
- VPN
- Enterprise Switch
- Cloud Connect
- VPC Endpoint (VPCEP)
- VPC Peering
40
storage
vm's access storage thorugh the virtuaization layer.
41
mainstream storage types
block storage, file storage, object storage
42
Block storage
is a type of storage that divides data into evenly sized blocks, typically accessed through protocols like iSCSI or Fibre Channel, and is commonly used for applications requiring high-performance, low-latency access to data, such as databases and virtual machines.
43
is a type of storage that organizes data into files and folders, accessible through network file system (NFS) or server message block (SMB) protocols, and is suitable for storing unstructured data like documents, images, and videos, often used in file servers and network-attached storage (NAS) systems.
file storage
44
Object storage
is a type of storage that stores data as objects within a flat namespace, accessed via HTTP-based APIs like Amazon S3 or OpenStack Swift, and is ideal for storing large volumes of unstructured data such as media files, backups, and archives, offering scalability, durability, and flexibility.
45
https://www.jscape.com/blog/12-file-transfer-protocols-businesses
study further: file transfer protocols
46
enterprise storage and distributed storage
study further
47
HUAWEI cloud storage services
elastic volume service, scalable file service, object storage service
48
REST API
Representational State Transfer Application Programming Interface, is an architectural style for designing networked applications. It is an approach used in web services development where APIs are designed to utilize the principles of REST. It emphasizes a stateless client-server interaction where each request from the client contains all the necessary information for the server to understand and fulfill it.
49
Study further
protocolos de enrutamiento
50
Bare Metal Server (BMS)
provides dedicated physical servers in single-tenant environments. It provides excellent computing performance and data security for core databases, key application systems, and high performance computing. It also offers the high scalability of a cloud-based service. NO LOSS PERFORMANCE
51
Alkalid three key capabilites that deliver an amazingly simplied experience
dynamic negotiation and governance, global scheduling, a way top select the most appropiate computing power.
52
Huawei cloud provides the following delivery modes
public cloud, hybrid, edge cloud
53
how does the product centric approach work?
- Provide products, applications, and services.
- A large number of such enterprises.
- Poor anti risk capabilities
54
Platform centric approach
- Provide industry specific platform services.
- Market share of over 30%.
- Fierce competition.
55
Ecosystem centric
- Few of these exist
- Large-scale, cross-industry , and influential in the society, unique ways of surviving and developing competence.
56
the following billing modes are available for ECS
pay per use, spot price, yearly billing
57
AZ?
contains one or more physical data centers.
58
IAM?
Identity Access Management
59
Project?
a project is used by IAM to group and isolate resources in the same region. A project is used for physical isolation. Resources cannot be transferred between IAM projects. They can only be deleted and then provisioned again.
60
Why ECS?
auto scaling, stability and reliability, competitive edge, security
61
application scenarios for ECS
Website and RyD and testing, and small-scale databases
62
memory optimized ecs
large memory size and performance
63
essentially, ECS is
a virtual machine runnning on cloud
64
IMS?
Image Management Service
65
AS?
Auto scaling
66
BMS
physical server, BMS can be configured and purchased on the cloud platform. It combines the scalability of VMs with the high performance of physical servers. Provides dedicated servers on the cloud
67
why BMS?
- high security: dedicated servers, vpc network and security group.
Server security protection.
Disk backup and restoration
Dedicated storage
- Agile development
- High performance
- Quick integration
-Low latency storage
68
Elastic Volume Service (EVS) in Huawei Cloud
is a block storage service provided by Huawei Cloud that allows users to create and manage elastic volumes (block storage) for their cloud instances. EVS provides features such as scalability, high availability, and data persistence.
69
Study further
BMS architecture
70
BMS network - VPC
is a logically isloated, configurable and manageable virtual network. It helps to improve the security of BMSs in the cloud system and simplifies network deployment. Seamless interconnection and high speed access.
71
BMS network - High speed network
self explanatory (provides high speed for AZ)
72
BMS - User defined VLAN
these cannot communicate with each oher
73
BMS-InfiniBand Network
have low latency and high bandwitdth
74
IMS?
Image Management Service (IMS) allows you to manage the entire lifecycle of your images. You can create ECSs or BMSs from public, private or shared images.
75
Why IMS?
you can share images between accounts, regions. It is secure, centralized, convenient, flexible. Image management using APIs.
76
IMS: image types - public
standard image provided by the cloud platform. It contains an OS and is available for everyone.
77
IMS: image types - private
created by users and available to the one person who created it.
78
IMS: image types - Marketplace image
a third party image published in the Marketplace. It has an OS, various applications, and custom software preinstalled.
79
IAM?
Identity authentication management
80
IMS?
Image management service
81
Scenarios where AS can be utilized
e-commerce: during big promotions
Heavy-traffic portals: service load changes are difficult to predict for heavy-traffic web portals, that's where AS comes into play.
82
What is the Cloud Computing engine
is a highly scalable, high performance, enterprise class Kubernetes service for you to run containers and applications. With CCE, you can easily deploy, manage and scale containerized applications on Huawei Cloud.
83
cluster
collection of cloud resources required for running containers, such as cloud serves and load balancers.
84
pod
consists of one more related containers that share the same storage and network space.
85
node
server (VM or PM) on which containerized pplications run.
86
service
abstraction which defines a logical set of pods and a policy by which to access them.
87
container
running isntance of a docker image.
88
image
binary that includes all of the requirements for running a contaiiner.
89
theres no opportunity of rollback when updating a cluster
true
90
OLAP database
Study further
91
RDS (RELATIONAL DATABASE SERVICE)
BASES DE DATOS ALOJADAS EN LA NUBE, ESTABLES, CONFIABLES Y ESCALABLES OUT OF THE BOX
92
MOST COMMON RDS
MYSQL, POSTGRE
93
4 MOST IMPORTANT RELATIONAL DATABASE FEATURES
ATOMICITY, CONSISTENCY ISOLATION AND DURABILITY
94
DRS online migration and synchronization diagram
study further
95
disaster recovery
can only be done with mysql
96
from data wharehouses to data lakes
a datawharehouse was used to sdtorage information where you could have external information (extract, transform and load)
97
repositorio centralizado que nos permite almacenar nuestros datos sin estructurar a cualquier escala
data lake
98
sobre el obs del Huawei cloud
99
- Study further: Gauss DB
- Study further: cloud search service
-Huawei's web application firewall
-Anti DDoS(AAD)
-todas las direcciones de Hawei Cloud traen proteccion anti DDoS cuando el ancho de Banda del cliente excede el tera hay que utilizar anti DDoS avanzado
- Host security service
-Database security service
-CBH: your security O&M manager on cloud
hybrid transactional analytical processing (base de datos OLAP)
100
what does AZ stand for?
Availability zone
101
kunpeg : CPU developed by Huawei
102
provides access control for ECs
Security group
103
Automatically distributes incoming traffic across multiple backend servers based on configured listening rules also expands the capacities of your applications and improves their availability by eliminating single points of failure (SPOFs).
ELB (Elastic Load Balance)
104
can establish uo to a 100 million concurrent connecitons, the deploiyment is simple and takes effect immediately.
ELB which can also be used with AS
105
ELB consists of three components
load balancers, listeners and backend server groups.
106
A load balancer is
an instance that ditributes incoming traffic across the backend servers in different availability zones.
107
ELB supports the following load balancing algorithms
round robin (the weight has to be 0) , least connections, source IP hash, Connection
108
health checks have to be sent starting from the following IP address
100.125.0.0/ 16 ----> 16 is the mask
109
establishes secure, reliable, and cost-effective encrypted connections between your on-premises network or data center and a virtual network on Huawei Cloud.
VPN (Virtual Private Network)
110
VPN involves three key components:
VPN gateway: a virtual gateway of VPN on the cloud. It establishes secure private connections with a customer gateway in your on-premises network or data center.
Customer gateway: a resource that provides information to Huawei Cloud about your customer gateway device. It can be a physical device or software application in your on-premises data center.
VPN connection: a secure channel between a VPN gateway and a customer gateway. VPN connections use the Internet Key Exchange (IKE) and IPsec protocols to encrypt the transmitted data.
111
VPN tunnels support three protocols
PPTP, L2TP and IPsec
112
uses a secure network protocol suite that authenticates and encrypts data packets to provide secure encrypted communications between different.
Internet protocol security (IPsec) VPN
113
if we have two ECSs using the same VPC they are able to access each other directly, if we have ECSs in different VPCs but within the same region, we can use
VPC peering for connection (if they are in different regions, vpn has to be used)
114
provides network address translation service for servers in a VPC and enables servers to share an EIP to access the internet. These can be either public or private.
(NAT) Gateway
115
public NAT gateways provide SNAT and DNAT, what do these do?
SNAT(source network address translation) translates private IP's into EIP's allowin servers in different AZs in a VPC , (Destination source netowrk address translation) DNAT it is generally used to redirect packets destined for specific IP address or specific port on IP address, on one host simply to a different address mostly on different host.
116
RPO stands for
Recovery Point objective
117
various disk tyoes, elastics scalability, real time monitoring
EVS advantages
118
A shared EVS disk can be attached to a maximum of
16 servers
119
what is an EVS snapshot?
a complete copy or image of the disk data taken at a specific point in time. They are used for disaster recovery. Meaning you can restore the disk data to the state from ehere the snapshot was taken.
120
Both EVS disk backup and EVS snapshot provide redundancy for the EVS disk data, improving reliability. can you list three differences between them?
data storage: in backup, the data is stored in OBS; instead of EVS disks. Data can be restored even when the EVS disk is damaged. In snapshot, the snapshots are stored with the disk data.
121
