Miscellaneous Flashcards
CloudFormation Drift Detection
Used to detect changes made to AWS resources outside of CloudFormation templates
Only checks property values explicit set by stack templates or by specifying template parameters.
Does not check:
-default property values
AWS datasync
service used to transfer data between on-prem storage to S3, EFS, FSx
can be used for huge amounts of data transfer
migration
Redshift enhanced VPC routing
provides VPC resources access to Redshift
Compute saving plan
save up to 66% and applies to both fargate and ec2
HTTP RANGE header
Allows you to specify a specific portion of the object to be downloaded
DynamoDB streams
an ordered flow of info about changes to an item in a table
CodeBuild
CI service that compiles code, runs tests, and produces software packages
CodeDeploy
service that automates app deployments to compute services
protects app from downtime during deployments via rolling updates and health tracking
DynamoDB global tables
solution for multiregion database
EC2 volume gateways
cloud backed storage volume
DMS engine vs schema conversion tool
engine - homogenous db migration
schema - heterogenous db migration
step functions
S3 bucket policy vs endpoint policy
endpoint policy - controls access to the service to which you are connecting; applied to a VPC
bucket policy - controls access to a bucket; applied to individual buckets
STS - Security token service
provide trusted users with temp security creds
EC2 default cooldown period
300 seconds
Why is there a cooldown period
to ensure EC2 instances are not launched or terminated before previous scaling activity takes place
gateway vs interface endpoint
interface endpoint:
-Most services
gateway endpoint:
- S3
- DyanmoDB
launch configurations
SNI multiple domains
bind multiple certs to same listener on load balancer
ALB will choose optimal TLS cert for each clinet
EC2 billing | When are you billed?
on-demand hibernate | stopping state
reserved instance terminated | terminated state
Direct connect Transit gateway
hub and spoke design for connecting VPCs and on-prem networks
EBS volume vs S3 durability
EBS is not highly durable
AWS Backup
backup service can configure and audit resources to backup.
Schedule backups, set retention policies, and monitor all recent backup and restore activity
Aurora parallel query
enables aurora to push down and distribute computational load of a single query across thousands of CPUs
AppSync
makes it easy to develop GraphQL APIs by taking care of connecting to data sources like DynamoDB, Lambda, and more
AWS data pipeline
RedShift DR
AWS step function
serverless orchestration
Cloudwatch default monitors
CPU utiliztion
Network utilization
Disk performance
Disk read/writes
does NOT monitor memory
-need to install the agent
AWS transit gateway
enables customers to connect VPCs an on-prem networks to a single gateway
regional
EC2 batch jobs
CloudTrail logs encryption
Turned on by default
Storage Gateway
gives you on-prem access to cloud storage
integration
ParallelCluster
makes it easy to deploy and manage HPC clusters
does NOT increase performance
Aurora failover
Basic - will try to recreate Aurora in same instance
Replica - will flip CNAME to point to replica and promote to primary
Serverless - recreate DB in new AZ
Autoscaling scale down OOO
AZ w/ most instances
oldest launch config
closest to next billing hour
random
EC2 run command
allows you to configure instances from the console w/out having to login to an instance
TrustedAdvisor
provides real-time guidance to help provision resources
Glue
ETL
extract transform and load data for analytics
