Monitoring

Question 1

gp2

Answer 1

General Purpose SSD 
Boot Volumes
- minimum of 100 IOPS 
- 3 IOPS/GB -> max of 16,000 IOPS
Virtual Desktops
Low-latency interactive apps
Dev and Test environments

Question 2

io1

Answer 2

Provisioned IOPS
Boot Volumes
More than 10,000 IOPS or 160 MiB/s of throughput per volume
50 IOPS/GB -> max of 64,000 IOPS.
Large database workloads:
MongoDB, Cassandra, Microsoft SQL Server

Question 3

Which EBS Volumes can be used as Boot volumes?

Answer 3

gp2 and io1 (SSD volumes)

Question 4

EBS Volume (?)

Streaming workloads requiring consistent, fast throughput at a low price.

• Big Data
• Data Warehouse
• Log processes

Answer 4

st1

Question 5

Throughput-oriented storage for large volumes of data that is infrequently accessed.

Scenarios where the lowest storage cost is important

Answer 5

sc1

Question 6

VolumeReadOPS
VolumeWriteOPS

What do they calculate?
How do you calculate it?

Answer 6

Used to calculate IOPS performance.

Total number of IO Ops in a specified period of time.
1000 in 1 minute => 1000/60 = 16,66 IOPS

Question 7

Number of read and write ops waiting to be completed in a specified period of time. (EBS)

Answer 7

Volume Queue Length

Question 8

Warning Volume Status

Answer 8

Degraded

Severly Degraded

Question 9

Impaired Volume Status

Answer 9

Stalled

Not Available

Question 10

4 Different Ways to Monitor ELBs

Answer 10

CloudWatch metrics
Access Logs
Request Tracing
CloudTrail logs

Question 11

Monitor ELB - Access Logs

Answer 11

IT SHOWS WHO IS ACCESSING YOUR LOAD BALANCER.
Captures detailed info about REQUESTS sent to your LB.
You can use it to analyze traffic patterns and troubleshoot issues.
Info like:
- The time the request was received
- Client’s IP address
- Latencies
- Request Paths
- Server Responses
Desabled by default - intervals of 5 or 60 minutes.
Logs are stored in S3, so you can recover logs even after ec2 was terminated.

Question 12

Track HTTP requests from client to targets or other services.
When the LB receives a request from a client, it adds or updates the X-Amzn-Trace-Id header before sending the request to the target.
APPLICATION LOAD BALANCER only.

Answer 12

Monitor ELB - Request Tracing

Question 13

Capture detailed info about the calls made to the ELB API and store them as log files in S3.
Used to determine which:
- calls were made
- the source IP address where the call came from
- who made the call
- when the call was made, etc.

Answer 13

Monitor ELB - CloudTrail logs

Question 14

CloudWatch Dashboards are multi-region, but to create a widget you need to be in the correct region for the service. True or False?

Answer 14

True

Question 15

How to get automatic notification if your account goes over $1,000?

Answer 15

Go into CloudWatch and create a Billing Alarm, billing alarm uses a SNS Topic, which it will email you letting you know.

Question 16

Allows you to manage multiple AWS accounts at once.

• centrally manage policies across multiple AWS accounts
• control access to your AWS services
• automate AWS account creation and management
• consolidate your billing across multiple accounts

Answer 16

AWS Organizations

Question 17

SCPs

Answer 17

service control policies
- allow or deny accounts to use individual AWS services
Example:
- you might deny the use of Kinesis or DynamoDB to your HR group within your AWS Organization

Question 18

Resource Groups

Answer 18

Lets you manage and automate tasks on large numbers of resources at one time.
Examples:
- Applying updates or security patches.
- Upgrading applications.
- Opening or closing ports to network traffic
- Collecting specific log and monitoring data from your fleet of instances.

Use Resource Groups with AWS Systems manager for automation.

Question 19

AWS Systems Manager

Answer 19

Allows you to centralize operational data from multiple AWS services and automate tasks across your AWS resources.

Question 20

Tool that enables you to view and analyze your costs and usage.

- You can view data for up to the last 13 months
- Forecast how much you're likely to spend in the next 3 months
- Get recommendations for Reserved Instances to purchase.

Answer 20

Cost Explorer

Question 21

How to use Cost Explorer? 3 Steps

Answer 21

1. Use tags to tag resources
2. Configure tags for cost centers (dpt, employee id, etc)
3. Activate cost allocation tags to track your costs by tags (Billing & Cost Management)

Question 22

4 Different Ways to Monitor ElastiCache

Answer 22

ElastiCache

• CPU Utilization
• Swap Usage
• Eviction
• Concurrent Connections

Question 23

Memcached CPU Utilization

Answer 23

Multi-threade

• Can handle loads of up to 90%
• Add more nodes to the cluster

Question 24

Redis CPU Utilization

Answer 24

Not Multi-threaded
Scale = 90 / num of cores
Example: cache.m1.xlarge node = 4 cores
90/4 = 22.5% -> when to scale

Question 25

Should be around 0 and should not exceed 50Mb.

• If exceeds:
• memcached_connections_overhead parameter.

What does memcached_connections_overhead parameter defines?

Answer 25

memcached_connections_overhead → defines the amount of memory to be reserved for memecached connections and other miscellaneous overhead.

SWAP USAGE

Question 26

Does Redis have SwapUsage metric?

Answer 26

No SwapUsage metrics, instead use reserved-memory

Question 27

What is Eviction? (Monitoring ElastiCache)

Answer 27

An eviction occurs when a new item is added and an older item must be removed due to a lack of free space in the system.

• Memcached:
  
  • You just basically choose a threshold off your application.
  • Scale up → Increase the amount of memory of existing nodes.
  • Scale out → Adding more nodes.
• Redis:
  
  • Scale out only.

Question 28

Monitoring ElastiCache - Concurrent Connections

Answer 28

Memcached & Redis:

• If there’s a large and sustained spike in the number of concurrent connections, this can either mean:
  
  • a large traffic spike
  • your application is not releasing connections as it should be.
• Set an alarm on the number of concurrent connections for elasticache. So if there’s anything wrong you can go in and configure your application.

Question 29

It’s a fully managed service that provides you with an AWS resource inventory, configuration history, and configuration change notifications to enable security and governance.

Answer 29

AWS Config

Question 30

Your audtiors need to know how was your EC2 Security groups 2 weeks ago, which service should they use?

Answer 30

AWS Config - STATE OF YOUR ENVIRONMENT -> Who did it, what were the changes

Question 31

You need to know who changed the rules on your EC2 Security Group 2 weeks ago, which service can you use?

Answer 31

AWS CloudTrail - API CALLS

Question 32

Which service can I use to monitor my AWS resources, as well as the applications that I run on AWS.

Answer 32

AWS CloudWatch - PERFORMANCE RELATED

Question 33

Shows the health of each aws service as a whole per region

Answer 33

Service Health Dashboard

Question 34

Provides alerts and remediation guidance when AWS is experiencing events that may impact you.

Answer 34

Personal Health Dashboard

Question 35

I CANNOT retrieve data from any terminated EC2 or ELB instance after its termination. CloudWatch does not store data indefinitely.
True or false?

Answer 35

FALSE.
You CAN retrieve data from any terminated EC2 or ELB instance after its termination. CloudWatch Logs by default are stored indefinitely.

Question 36

How can I use CloudWatch on-premises?

Answer 36

Download and install the SSM agent and CloudWatch agent.

Question 37

___________________________ is a volume metric used with Provisioned IOPS SSD volumes only. It provides the percentage of I/O operations per second (IOPS) delivered of the total IOPS provisioned for an Amazon EBS volume.

Answer 37

VolumeThroughputPercentage