Module 1-5

Question 1

Client-Server Model

Answer 1

A relationship in which one program, the client, requests a service or resource from another program, the server

Question 2

Cloud Computing

Answer 2

-A model that provides on-demand access to computing resources, such as storage, databases, and processing power, over the internet
-On-demand delivery of IT resources and applications through the Internet with pay-as-you-go pricing

Question 3

IaaS

Answer 3

-Infrastructure as a Service
-A cloud computing service that allows users to rent access to computing resources like storage, servers, and networking on demand

Question 4

PaaS

Answer 4

-Platform as a Service
-A cloud computing model that provides a complete environment for developing, running, and managing applications

Question 5

SaaS

Answer 5

-Software as a Service
-A cloud-based model for delivering software applications to users over the internet

Question 6

EC2

Answer 6

-Amazon Elastic Compute Cloud
-The service you use to gain access to virtual servers when working with AWS, using EC2 instances
-A web service that provides secure, resizable compute capacity in the cloud

Question 7

Multitenancy

Answer 7

-Architecture that allows a single instance of a software application to serve multiple tenants, or groups of users, simultaneously
-Does not affect speed, privacy, security…

Question 8

Hypervisor

Answer 8

-A software program that allows a single physical computer to run multiple virtual machines (VMs)
-Also known as a virtual machine monitor or VMM, -Software that creates and runs virtual machines (VMs).

Question 9

General Purpose EC2 Instance

Answer 9

A balance of compute, memory, and networking resources

Question 10

Compute Optimized EC2 Instance

Answer 10

Ideal for compute-bound applications that benefit from high-performance processors

Question 11

Memory Optimized EC2 Instance

Answer 11

Designed to deliver fast performance for workloads that process large datasets in memory

Question 12

Accelerated Computing EC2 Instance

Answer 12

Use hardware accelerators, or coprocessors, to perform some functions more efficiently than is possible in software running on CPUs

Question 13

Storage Optimized EC2 Instance

Answer 13

Designed for workloads that require high, sequential read and write access to large datasets on local storage

Question 14

Amazon EC2 Auto Scaling

Answer 14

-Enables you to automatically add or remove Amazon EC2 instances in response to changing application demand
-Dynamic or predictive scaling policies let you add or remove EC2 instance capacity to service established or real-time demand patterns

Question 15

Amazon ELB

Answer 15

-Amazon Elastic Load Balancing
-Acts as a single point of contact for all incoming web traffic to your Auto Scaling group
-AWS service that automatically distributes incoming application traffic across multiple resources, such as Amazon EC2 instances
-Remember, we always strive for decoupled architecture

Question 16

Tightly vs loosely coupled architecture

Answer 16

-A monolithic application vs a microservices approach

Question 17

Amazon SQS

Answer 17

-Amazon Simple Queue Service
-Lets you send, store, and receive messages between software components at any volume, without losing messages
-A message queue service that enables asynchronous communication between decoupled components of a distributed application
-A pull-based message queuing system

Question 18

Amazon SNS

Answer 18

-Amazon Simple Notification Service
-Publish/subscribe or pub/sub model
-A pub/sub service for instant, push-based message distribution to multiple subscribers
-A messaging service that allows you to send notifications or messages to multiple subscribers

Question 19

AWS Lambda

Answer 19

-An AWS service for serverless computing
-A serverless compute service for running code without having to provision or manage servers

Question 20

Amazon ECS

Answer 20

-Amazon Elastic Container Service
-A highly scalable, high-performance container management system
-Enables you to run and scale containerized applications on AWS
-Supports Docker containers

Question 21

Amazon EKS

Answer 21

-Amazon Elastic Kubernetes Service
-A fully managed service that you can use to run Kubernetes on AWS

Question 22

AWS Fargate

Answer 22

-A serverless compute engine for containers
-Works with both Amazon (ECS) and Amazon (EKS)

Question 23

Availability Zone (AZ)

Answer 23

-A single data center or a group of data centers within a Region
-Located tens of miles apart from each other
-With redundant power, networking, and connectivity
-Best Practice: Run across at least two AZs in a Region

Question 24

Edge Location

Answer 24

-A site that Amazon CloudFront uses to store cached copies of your content closer to your customers for faster delivery
-Content Delivery Network (CDN)

Question 25

Amazon CloudFront

Answer 25

-AWS version of a CDN -A service that helps deliver data, GIFs, video, applications, and APIs to customers around the world with low latency and high transfer speeds -Uses a network of edge locations to cache content and deliver content to customers all over the world

Question 26

AWS Outposts

Answer 26

-A pool of AWS compute and storage capacity deployed at a customer site -AWS operates, monitors, and manages this capacity as part of an AWS Region -Think of it as its own little mini-region within an AWS Region -Isolated within your own company's building

Question 27

API

Answer 27

-Application Programming Interface -A software intermediary that allows different programs to communicate with each other -A key component of the connected world -Enables users to perform actions like making reservations, placing orders, and booking flights

Question 28

AWS Management Console

Answer 28

-Provides an easy-to-use interface that allows you to manage your resources through a web browser -Easily create and manage instances, databases, storage, and other resources -Provides a visual representation of your infrastructure, making it easier to understand and manage -AWS Console mobile application -Includes wizards and automated workflows that can simplify the process of completing tasks

Question 29

AWS CLI

Answer 29

-AWS Command Line Interface -Allows you to make API calls using the terminal on your machine -A unified tool to manage your AWS services. With just one tool to download and configure, you can control multiple AWS services from the command line and automate them through scripts

Question 30

AWS SDK

Answer 30

-AWS Software Development Kit -Provide APIs and libraries to connect to cloud storage services or access cloud computing services like databases, analytics, or machine learning -Developers use them to integrate with a cloud environment in their preferred language of choice -Allows you to interact with AWS resources through various programming languages

Question 31

AWS Elastic Beanstalk

Answer 31

-Managed tool -Automatically handles the deployment—from capacity provisioning, load balancing, and auto scaling to application health monitoring -Provide your application code and desired configurations to the AWS Elastic Beanstalk service, which then takes that information and builds out your environment for you

Question 32

AWS CloudFormation

Answer 32

-Infrastructure as Code (IaC) -Model a collection of related AWS and third-party resources, provision them, and manage them throughout their lifecycles -Allows you to define what you want to build without specifying the details of exactly how to build it

Question 33

Amazon VPC

Answer 33

-Amazon Virtual Private Cloud -A service that allows users to create and manage virtual networks for their AWS accounts -Lets you provision a logically isolated section of the AWS Cloud where you can launch AWS resources in a virtual network that you define -These resources can be public facing so they have access to the internet, or private with no internet access

Question 34

Subnets

Answer 34

-A range of IP addresses in your Virtual Private Cloud (VPC) -Operational, not perimeter, security -You launch AWS resources, such as Amazon EC2 instances, into your subnets -Connect a subnet to the internet, other VPCs, and your own data centers -Route traffic to and from your subnets using route tables -Along with networking rules control whether resources are either publicly or privately available

Question 35

IGW

Answer 35

-Internet Gateway -Attach an internet gateway to your VPC to allow public traffic from the internet to access your VPC -Check the image in your notes

Question 36

Virtual Private Gateway

Answer 36

-Only allows people in if they are coming from an approved network, not the public internet -Allows you to create a VPN connection between a private network, like your on-premises data center or internal corporate network, to your VPC -Enables you to establish a virtual private network (VPN) connection between your VPC and a private network, such as an on-premises data center or internal corporate network

Question 37

AWS Direct Connect

Answer 37

-A cloud service that links your network directly to AWS -Bypasses the public Internet and establishes a dedicated, private connection between on-premises infrastructure and an AWS Location

Question 38

AWS Gateways

Answer 38

-There are many different types -Different use cases (Public vs Private) -Different levels of security (Public vs AWS Direct Connect) -One VPC can have multiple types of gateways attached for multiple types of resources in one VPC, just in different subnets

Question 39

ACL

Answer 39

-Network ACLs (Access Control List) -A virtual firewall that controls inbound and outbound traffic at the subnet level -Think of them as passport control -Your account’s default ACL allows all traffic, but you can modify it

Question 40

Stateless Packet Filtering

Answer 40

-Inspect packets in isolation, without considering the context of the traffic flow. -Evaluates each packet against the firewall policy's stateless rules, and then applies the rule's specified action to the packet -Remember nothing and check all packets that cross the subnet border each way -Like an ACL, or passport control

Question 41

Security Groups

Answer 41

-Instance-level network security (not subnet-level like an ACL) -Evaluates all inbound traffic and allows all outbound traffic -Acts as a virtual firewall for your EC2 instances

Question 42

Stateful Packet Filtering

Answer 42

-Keeps a record of all active network connections and transactions, and uses this information to determine which traffic to allow or block -VS Stateless: stateful firewalls track the state of network connections, while stateless firewalls do not

Question 43

DNS

Answer 43

-Domain Name System -Essential part of a global networking -Enter a web address into a browser and access a site -DNS Resolver: the process of translating a domain name to an IP address

Question 44

Amazon Route 53

Answer 44

-A DNS web service -A reliable way to route end users to internet applications hosted in AWS -Manage the DNS records for domain names -Streamlines the setup of DNS routing by providing domain name registration, with intuitive visual traffic flow tools

Question 45

Instance Store

Answer 45

-A storage volume that acts as a physical hard drive -Provides temporary storage for Amazon EC2 instance -The data in an instance store persists during the lifetime of its instance -If an instance reboots, data in the instance store will persist

Question 46

EBS

Answer 46

-Amazon Elastic Block Store -Allows you to create and attach storage volumes to Amazon EC2 instances -When you use your laptop or personal computer, you are accessing block-level storage

Question 47

EBS Snapshot

Answer 47

-An incremental backup -Only the blocks of data that have changed since the most recent snapshot are saved

Question 48

Amazon S3

Answer 48

-Amazon Simple Storage Service -Object storage; each object consists of data, metadata, and a key -Stores data as objects in buckets -Variety of storage classes I need to get fluent in

Question 49

Amazon EFS

Answer 49

-Amazon Elastic File System -Provides shared file storage for use with EC2 instances and on-premises servers -Multiple clients can access data that is stored in shared file folders simultaneously -Ideal for use cases in which a large number of services and resources need to access the same data at the same time (unlike block or object storage)

Question 50

Amazon EBS

Answer 50

-Amazon Elastic Block Storage -Accessible to only a single EC2 instance at a time -Also known as per-instance storage -Most like your physical hard drive -An EBS volume stores data in a single AZ -The EC2 instance and the EBS volume must be in the same AZ)

Question 51

Amazon RDS

Answer 51

-Amazon Relational Database Service -Automates the undifferentiated administrative tasks of managing a database, such as provisioning, patching, and backups -Opposed to manual, lift-and-shift, Database migration

Question 52

RDBMS

Answer 52

-Relational Database Management System -Amazon Relational Database Service -Data is stored in a way that relates it to other pieces of data -A way to store and access data in tables with defined relationships between data points -Uses SQL to store and query data

Question 53

Amazon Aurora

Answer 53

-An enterprise-class relational database -Consider if your workloads require high availability -Data is replicated across facilities, so you have six copies at any given time and can deploy up to 15 read replicas -Continuous backups to S3 and point-in-time recovery

Question 54

Amazon DynamoDB

Answer 54

-Non-relational databases: you create tables where you can store and query data -Sometimes referred to as “NoSQL databases” -Use structures other than rows and columns to organize data, like the key-value pair -Tend to have simple flexible schemas

Question 55

Amazon RDS vs. Amazon DynamoDB

Answer 55

-Amazon RDS: Relational, you control the data/schema/network, built for analytics -Amazon DynamoDB Non-relational, NoSQL, flexible schema, built for not-analytics, built for where you have not-joint functionality

Question 56

Amazon Redshift

Answer 56

-Data warehousing, but also data analytics (historical, not operation analytics -Uses SQL to analyze structured and semi-structured data across data warehouses, operational databases, and data lakes -Think of it as Data-Warehousing-as-a-Service (DWaaS)

Question 57

AWS DMS

Answer 57

-AWS Database Migration Service -Migrate relational databases, data warehouses, NoSQL databases, and other types of data stores -Other use cases for AWS DMS; Development and Test Database Migrations, Database Consolidation, Continuous Replication

Question 58

Homogenous and Heterogeneous Migrations

Answer 58

-Homogenous: between the same database type, one step -Heterogeneous: different database types, two steps -AWS Schema Conversion Tool: converts everything to the targets database type

Question 59

Amazon DocumentDB

Answer 59

-makes it easy and cost effective to operate critical document workloads at virtually any scale without managing infrastructure -A document database service -Supports MongoDB workloads -Great for content management, catalogs, user profiles

Question 60

Amazon Neptune

Answer 60

-Quickly analyzes graph data for insights and trends -From data stored in Amazon S3 buckets or Neptune Database -Use it to build and run applications that work with highly connected datasets -Social Networking, recommendation engines, fraud detection, knowledge graphs....

Question 61

Amazon QLDB

Answer 61

-Amazon Quantum Ledger Database -A transparent, immutable, and cryptographically verifiable transaction log -A record where any entry can never be removed from the audits

Question 62

Amazon Managed Blockchain

Answer 62

-A distributed ledger system -Entire networks of a supply chain can document updates to a single shared ledger, which provides total data visibility and a single source of truth -Transactions are always time-stamped and up to date, companies can query a product's status and location at any point in time

Question 63

Amazon ElastiCache

Answer 63

-A service that adds caching layers on top of your databases to help improve the read times of common requests -Makes it easy to set up, manage, and scale a distributed in-memory data store or cache environment in the cloud

Question 64

Amazon (DAX)

Answer 64

-Amazon DynamoDB Accelerator -An in-memory cache for DynamoDB -Helps improve response times from single-digit milliseconds to microseconds