Load Balancer Flashcards

Question 1

Q

Means that an application / system can handle greater loads by adapting.

Answer

A

Scalability

Question 2

Q

What are the 2 types of Scalability

Answer

A

Vertical
Horizontal

Question 3

Q

Icreasing the size of the instance

Answer

A

Vertical Scalability

Question 4

Q

Vertical scalability is very common for ___________, such as a ____________.

Answer

A

non distributed systems
database

Question 5

Q

What are 2 types of services that can scale vertically?

Answer

A

RDS
ElastiCache

Question 6

Q

Is there’s usually a limit to how much you can vertically scale and WHY????

Answer

A

YES
Hardware limit

Question 7

Q

Means increasing the number of instances / systems for your application

Answer

A

Horizontal Scalability

Question 8

Q

____________ scaling implies distributed systems.

Answer

A

Horizontal

Question 9

Q

Very common for web applications /
modern applications

Answer

A

Horizontal Scalability

Question 10

Q

___________ usually goes hand in hand with horizontal scaling

Answer

A

High Availability

Question 11

Q

Means running your application / system in at least 2 data centers (== Availability Zones)

Answer

A

High Availability

Question 12

Q

What is the goal of high availability?

Answer

A

survive a data center loss

Question 13

Q

The high availability can be _________ (for RDS Multi AZ for example)

Question 14

Q

The high availability can be _______ (for horizontal scaling)

Question 15

Q

Are servers that forward traffic to multiple servers (e.g., EC2 instances) downstream

Answer

A

Load Balances

Question 16

Q

READ ALL OF THESE
* Spread load across multiple downstream instances
* Expose a single point of access (DNS) to your application
* Seamlessly handle failures of downstream instances
* Do regular health checks to your instances
* Provide SSL termination (HTTPS) for your websites
* Enforce stickiness with cookies
* High availability across zones
* Separate public traffic from private traffic

Answer

A

Load Balances

Question 17

Q

They enable the load balancer to know if instances it forwards traffic to are available to reply to requests

Answer

A

Health Checks

Question 18

Q

The health check is done on a ______ and a ________

Answer

A

port
route

Question 19

Q

If the response is not __________ (OK), then the instance is unhealthy

Question 20

Q

AWS has 4 kinds of managed Load Balancers

Answer

A

Classic Load Balancer
Application Load Balancer
Network Load Balancer
Gateway Load Balancer

Question 21

Q

(v1 - old generation) – 2009 – * HTTP, HTTPS,TCP,SSL(secureTCP)
* Supports TCP (Layer 4), HTTP & HTTPS (Layer 7)
* Health checks are TCP or HTTP based
* Fixed hostname XXX.region.elb.amazonaws.com

Answer

A

Classic Load Balancer

Question 22

Q

(v2 - new generation) – 2016 – * HTTP, HTTPS,WebSocket
* Is Layer 7 (HTTP)
* Load balancing to multiple HTTP applications across machines (target groups)
* Load balancing to multiple applications on the same machine (ex: containers)
* Suppor t for HTTP/2 and WebSocket
* Support redirects (from HTTP to HTTPS for example)

Answer

A

Application Load Balancer

Question 23

Q

(v2 - new generation) – 2017
* TCP,TLS(secureTCP),UD

Answer

A

Network Load Balancer

Question 24

Q

2020 –
* Operates at layer 3 (Network layer) – IP Protocol

Answer

A

Gateway Load Balancer

Question 25

Q

What are the 3 ways of Application Load Balancer routing tables to different target groups

Answer

A

Routing based on path in URL
Routing based on hostname in URL
Routing based on Query String, Headers

Question 26

Q

are a great fit for micro services & container-based application (example: Docker & Amazon ECS)

Answer

A

Application Load Balancer (ALB)

Question 27

Q

Does ALB have a port mapping feature to redirect to a dynamic port in ECS?

Question 28

Q

Application Load Balancer (v2) Target Groups (4)

Answer

A

EC2 instances (can be managed by an Auto Scaling Group) – HTTP
ECS tasks (managed by ECS itself) – HTTP
Lambda functions – HTTP request is translated into a JSON event
IP Addresses – must be private IPs

Question 29

Q

Can ALB’s route to multiple target groups

Question 30

Q

For ALB’s, Health checks are at what level?

Answer

A

target group level

Question 31

Q

READ EVERYTHING
* Fixed hostname (XXX.region.elb.amazonaws.com)
* The application servers don’t see the IP of the client directly
* The true IP of the client is inserted in the header X-Forwarded-For
* We can also get Port (X-Forwarded-Port) and proto (X-Forwarded-Proto)

Answer

A

Application Load Balancer (v2)

Question 32

Q

(Layer 4) allow to:
* Forward TCP & UDP traffic to your instances
* Handle millions of request per seconds
* Less latency ~100 ms (vs 400 ms for ALB)

Answer

A

Network Load Balancer (v2)

Question 33

Q

Are used for extreme performance,TCP or UDP traffic

Question 34

Q

NLB has ______ static IP per AZ, and supports assigning Elastic IP (helpful for whitelisting specific IP)

Question 35

Q

Is NLB included in the AWS free Tier????

Question 36

Q

Network Load Balancer – Target Groups (4)

Answer

A

EC2 instances
IP Addresses – must be private IPs
Application Load Balancer
Health Checks support the TCP, HTTP and HTTPS Protocols

Question 37

Q

Deploy, scale, and manage a fleet of 3rd party network virtual appliances in AWS
Example: Firewalls, Intrusion Detection and Prevention Systems, Deep Packet Inspection Systems, payload manipulation, …

Answer

A

Gateway Load Balancer

Question 38

Q

Operates at Layer 3 (Network Layer) – IP Packets

Answer

A

Gateway Load Balancer

Question 39

Q

GLB Combines 2 of the following functions

Answer

A

Transparent Network Gateway – single entry/exit for all traffic
Load Balancer – distributes traffic to your virtual appliances

Question 40

Q

GLB uses the _________ protocol on port ______?

Answer

A

GENEVE
6081

Question 41

Q

Gateway Load Balancer –Target Groups (2)

Answer

A

EC2 instances
IP Addresses – must be private IPs

Question 42

Q

READ EVERYTHING
* It is possible to implement stickiness so that the same client is always redirected to the same instance behind a load balancer
* This works for Classic Load Balancer, Application Load Balancer, and Network Load Balancer
* For both CLB & ALB, the “cookie” used for stickiness has an expiration date you control
* Use case: make sure the user doesn’t lose his session data
* Enabling stickiness may bring imbalance to the load over the backend EC2 instances

Answer

A

Sticky Sessions (Session Affinity)

Question 43

Q

2 types of Sticky Sessions – Cookie Names

Answer

A

Application-based Cookies
Duration-based Cookies

Question 44

Q

2 types of Application-based Cookies

Answer

A

Custom cookie
Application cookie

Question 45

Q

Generated by the target
Can include any custom attributes required by the application
Cookie name must be specified individually for each target group
Don’t use AWSALB, AWSALBAPP, or AWSALBTG (reserved for use by the ELB)

Answer

A

Custom cookie

Question 46

Q

Generated by the load balancer
Cookie name is AWSALBAPP

Answer

A

Application cookie

Question 47

Q

Cookie generated by the load balancer
Cookie name is AWSALB for ALB, AWSELB for CLB

Answer

A

Duration-based Cookies

Question 48

Q

Enabled by default (can be disabled at the Target Group level)
No charges for inter AZ data

Answer

A

Cross-Zone Load Balancing for Application Load Balancer

Question 49

Q

Disabled by default
You pay charges ($) for inter AZ data if enabled

Answer

A

Cross-Zone Load Balancing for Network Load Balancer & Gateway Load Balancer

Question 50

Q

Disabled by default
No charges for inter AZ data if enabled

Answer

A

Cross-Zone Load Balancing for Classic Load Balancer

Question 51

Q

Allows traffic between your clients and your load balancer to be encrypted in transit (in-flight encryption)
Used to encrypt connections

Answer

A

An SSL Certificate

Question 52

Q

What does SSL stand for??

Answer

A

Secure Sockets Layer

Question 53

Q

What is the newer version of SSL??

Question 54

Q

What does TLS stand for??

Answer

A

Transport Layer Security

Question 55

Q

You can manage SSL/TLS certificates using ________?

Answer

A

ACM (AWS Certificate Manager)

Question 56

Q

You must specify a default certificate
You can add an optional list of certs to support multiple domains
Clients can use SNI (Server Name Indication) to specify the hostname they reach
Ability to specify a security policy to support older versions of SSL /TLS (legacy clients)

Answer

A

SSL Certificates - HTTPS listener

Question 57

Q

Only works for ALB & NLB (newer generation), CloudFront
Does not work for CLB (older gen)

Answer

A

SSL – Server Name Indication (SNI)

Question 58

Q

solves the problem of loading multiple SSL certificates onto one web server (to serve multiple websites)
It’s a “newer” protocol, and requires the client to indicate the hostname of the target server in the initial SSL handshake
The server will then find the correct certificate, or return the default one

Answer

A

SSL – Server Name Indication (SNI)

Question 59

Q

Support only one SSL certificate
Must use multiple CLB for multiple hostname with multiple SSL certificates

Answer

A

Classic Load Balancer

Question 60

Q

Supports multiple listeners with multiple SSL certificates
Uses Server Name Indication (SNI) to make it work

Answer

A

Elastic Load Balancers – SSL Certificates for Application Load Balancer (v2)

Question 61

Q

Which 2 Load Balancers

Supports multiple listeners with multiple SSL certificates
Uses Server Name Indication (SNI) to make it work

Answer

A

Network Load Balancer
Application Load Balancer

Question 62

Q

Time to complete “in-flight requests” while the instance is de-registering or unhealthy
Stops sending new requests to the EC2 instance which is de-registering
Between 1 to 3600 seconds (default: 300 seconds)
Can be disabled (set value to 0)
Set to a low value if your requests are short

Answer

A

Deregistration Delay

Question 63

Q

In real-life, the load on your websites and application can change
In the cloud, you can create and get rid of servers very quickly

Answer

A

What’s an Auto Scaling Group?

Question 64

Q

READ EVERYTHING
* Scale out (add EC2 instances) to match an increased load
* Scale in (remove EC2 instances) to match a decreased load
* Ensure we have a minimum and a maximum number of EC2 instances running
* Automatically register new instances to a load balancer
* Re-create an EC2 instance in case a previous one is terminated (ex: if unhealthy)

Answer

A

Auto Scaling Group (ASG)

Answer 56

A

YES .. (you only pay for the underlying EC2 instances)

Answer 57

A

A Launch Template
Min Size / Max Size / Initial Capacity
Scaling Policies

Answer 58

A

Target Tracking Scaling
Simple / Step Scaling
Scheduled Actions

Answer 59

A

Target Tracking Scaling

Answer 60

A

Simple / Step Scaling

Answer 61

A

Scheduled Actions

Answer 62

A

Predictive scaling

Answer 63

A

CPUUtilization: Average CPU utilization across your instances
RequestCountPerTarget: to make sure the number of requests per EC2 instances is stable
Average Network In / Out (if you’re application is network bound)
Any custom metric (that you push using CloudWatch)

Answer 64

A

cooldown period

Answer 65

A

300 seconds

Answer 66

A

not launch or terminate additional instances (to allow for metrics to stabilize)

Answer 67

A

Target tracking scaling

Answer 68

A

Step scaling

Answer 69

A

Simple scaling

Brainscape's Knowledge GenomeTM

Load Balancer Flashcards

Brainscape's Knowledge Genome^TM