Hybrid Environments and migration Flashcards
Routing protocol which controls the flow of data from point A through points B and C to get to point D
Border Gateway Protocol (BGP)
Routers controlled by one single entity which abstract away from the detail and only concern themselves with network routing in and out of your system
Autonomous System (AS)
BGP operates over TCP/179
True
Exchanges the best path to a destination between peers called the ASPATH
Path-vector protocol
routing withing an AS
iBGP
routing between AS
eBGP
group of protocols which set up secutre tunnels across insecure networks
IPSEC
Does IPSEC provide authentication and encryption?
Yes
Protocol for how keys are exchanged
IKE Phase 1 (Slow and heavy)
Protocol where encryption method is agreed upon and keys are used for bulk data transfer
IKE Phase 2 (Fast and Agile)
VPN with rule sets to match traffic, traffic is sent over a pair of security associations
Policy Based VPN
VPN which does target matching based on the prefix with a single pair of security associations for each network prefix
Route-based VPN
logical connection between a vpc and on-premises network encrypted using IPSEC running over the public internet
site-to-site vpn
is AWS site-to-site VPN highly available
Yes, if you implement it correctly
Target on one or more route tables
Virtual Private Gateway (VGW)
LOgical piece of configuration within AWS or the physical device the configuration represents
Customer Gateway (CGW)
Routes are added to Route Tables automatically as they are discovered
Route \Propagation
Speed limit on VPNs
1.25Gbps
Physical connection into an AWS Region
Direct Connect (DX)
DX connection consists of a connection from a business premises to a DX location to an AWS Region
True
DX provides low & consistent latency + high speeds
True
Connection from AWS Port to Customer/Partner port link
Cross Connect
DX locations are connected to AWS Region via redudant high speed connections
True
Direct connect is not resilient by default
True
Single network object used to connect VPC to on premises networks
Network Transit Hub
Does transit gateway support transitive routing
yes
Can transit gateways be shared between accounts or cross regions?
yes using AWS RAM
acts as a bridge between storage on a data center and AWS
Storage Gateway
virtual appliance presents volumes over iscsi to servers running on premises which are stored locally
Storage Gateway Volume Stored Mode
virtual appliance presents volumes over iscsi to servers running and stored in AWS (S3)
Storage Gateway Volume Cached Mode
AWS version of a tape library which is used by Storage Gateway.
Storage Gateway Tape (VTL)
Bridges on-premises file storage and S3 using NFS or SMB
Storage Gateway FIle
Name for AWS S3 Bucket & On-Premises File Share
Bucket Share
Used to move large amounts of data in and out of AWS
AWS Snow Packages
Economical Range of 10tb to 10pb
AWS Snowball
Does Snowball have compute capablity
No
Service used for remote sites where data processing on ingestion is needed
Snowball Edge
Portable Data Center within a shipping container on a truck used for data over 10PB+
Snowmobile
Service which provides a centralized managed directory, a store of users, objects and other configuration
AWS Directory Service
Most popular directory service
Microsoft Active Directory
Default AD mode with little requirements
Simple AD
AD used when Applications in AWS need Microsoft Active Directory or Trust is needed
Microsoft AD
AD Used when needing an AD buy don’t want to store any directory info in the cloud
AD Connector
Data Transfer service to and from AWS used for migrations data processing transfers, and archival/cost-effective storage that is designed to work at HUGE scale
AWS DataSync
Does data sync have built-in Data Validation?
Yes
Is DataSync installed locally on premises
Yes
DataSync communicates over?
NFS, SMB
Defines in DataSync what is being synced, how quickly, From where and to Where
Task
Software in DataSync that is used to read or write to on-premises data stores
Agent
Valid locations DataSync is linked to
SMB, EFS, FSx, and Amazon S3
Fully managed native windows File Servers/Shares that integrates with Directory service or Self-Managed AD
FSx for Windows File Server
FSx for Windows File Server is accessible using VPC, Peering, VPN and Direct Connect
True
Windows feature that allows users to perform file and folder level restores
VSS
Does FSx for Windows have a native file system accessible over SMB
Yes
Does FSx for Windows support DFS?
Yes
Managed Lustre designed for high performance computing - linux clients (POSIX)
FSx for Lustre
Used for Machine Learning, Big Data, Financial Modelling
FSx for Lustre
FSx lustre mode highly optimised for Short Term workloads
Scratch
FSx lustre mode optimized for longer term high availability workloads
Persistent
