Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS Solutions Architect Associate > Network & Content Delivery > Flashcards

Network & Content Delivery Flashcards

1
Q

What are the two different types of VPC endpoints?

A
  • Gateway Endpoints rely on creating entries in a route table and pointing them to private endpoints used for S3 or DynamoDB.
  • Interface Endpoints use AWS PrivateLink and leverage the new Network Load Balancer capabilities.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

True or False. Amazon S3 and DynamoDB use interface endpoints.

A

False. Amazon S3 and DynamoDB use gateway endpoints.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

True or False. You can access Amazon DynamoDB Streams through a VPC endpoint.

A

False. You cannot access Amazon DynamoDB Streams through a VPC endpoint.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Multi True and False. If False, why?

  • Endpoints are supported within the multi Regions. You can create an endpoint between a VPC and a service in a different Region.
  • Endpoints support IPv6 traffic only.
  • You cannot transfer an endpoint from one VPC to another, or from one service to another.
A
  • False. Endpoints are supported within the same Region only. You cannot create an endpoint between a VPC and a service in a different Region.
  • False. Endpoints support IPv4 traffic only.
  • True. You cannot transfer an endpoint from one VPC to another, or from one service to another.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Does Cloudfront have a geo restriction functionality? And if yes, how does it work?

A
  • Allow your users to access your content only if they’re in one of the countries on a whitelist of approved countries.
  • Prevent your users from accessing your content if they’re in one of the countries on a blacklist of banned countries.

For example, if a request comes from a country where, for copyright reasons, you are not authorized to distribute your content, you can use CloudFront geo-restriction to block the request.

This is the easiest and most effective way to implement a geographic restriction for the delivery of content.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Can security groups block traffic based by country?

A

No, they cannot.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

True or False. Geo restriction applies to an entire web distribution. If you need to apply one restriction to part of your content and a different restriction (or no restriction) to another part of your content, you must either create separate CloudFront web distributions or use a third-party geolocation service.

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

True or False. One subnet can only connect with a single ACL but a single ACL can have multiple subnets.

A

True.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

True or False. A subnet can only be associated with one or more route table at a time.

A

False. A subnet can only be associated with one route table at a time, but you can associate multiple subnets with the same route table.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AWS Solutions Architect Associate (12 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions