Networking

Question 1

What are the different types of virtual networking cards you can attach to your EC2 instance?

Answer 1

Elastic network interface (ENI), Enhanced Networking (EN), and Elastic Fabric Adapter (EFA)

Question 2

What is the most common type of networking card?

Answer 2

Elastic network interface

Question 3

What networking card uses single root I/O virtualization to provide high performance?

Answer 3

Elastic networking

Question 4

what networking card accelerates high performance computing and machine learning applications?

Answer 4

Elastic fabric adapter

Question 5

what networking card is put on an EC2 instance by default?

Answer 5

ENI

Question 6

What can a VPC be thought of as?

Answer 6

A virtual data center in the cloud

Question 7

What are the three tiers of a VPC?

Answer 7

Web (public facing subnet), application (private subnet that can only speak to web tier and database tier), database (private subnet that can only speak to application tier)

Question 8

How many AZ can a subnet be in?

Answer 8

One

Question 9

What is a NAT gateway?

Answer 9

A network address translation gateway is used to enable instances in a private subnet to connect to the internet or other AWS services while preventing the internet from initiating a connection with those instances

Question 10

Are NAT gateways redundant within an AZ?

Answer 10

Yes

Question 11

What is the Gbps range for a NAT gateway?

Answer 11

5 to 45 gbps

Question 12

How often do YOU have to patch NAT gateways?

Answer 12

Never, Amazon does it

Question 13

How do you create a NAT gateway’s public IP address?

Answer 13

You don’t have to, one is automatically assigned

Question 14

What is a VPC endpoint?

Answer 14

Enables you to privately connect your VPC to supported AWS services and VPC endpoint services without requiring an internet gateway, NAT device, VPN connection, or AWS direct connect connection

Question 15

How often does traffic between VPC endpoints leave the Amazon network?

Answer 15

Never

Question 16

What kind of public IP address does VPC endpoints require?

Answer 16

No public IP addresses

Question 17

What are the two types of endpoints?

Answer 17

Interface endpoints and gateway endpoints

Question 18

What is an interface endpoint?

Answer 18

An elastic network interface with a private IP address that serves as an entry point for traffic headed to a supported service

Question 19

What is a gateway endpoint?

Answer 19

A virtual device you provision that supports connections to S3 and DynamoDB

Question 20

When you want to connect AWS services without leaving the AWS network, what should you use?

Answer 20

VPC endpoints

Question 21

What is an intranet?

Answer 21

A network of computers designed for a certain group of users

Question 22

What is VPC peering?

Answer 22

Allows you to connect VPC’s via a direct network route

Question 23

How does VPC peering connect VPC’s?

Answer 23

Private IP addresses

Question 24

Can you VPC peer between regions? Accounts?

Answer 24

Yes and yes

Question 25

Is VPC peering the same as transitive peering?

Answer 25

No

Question 26

What options are there to open our applications in a VPC to another VPC?

Answer 26

You can open it up to the internet, use VPC peering, or PrivateLink

Question 27

What must the service VPC have to use PrivateLink?

Answer 27

A NLB

Question 28

What must the customer VPC have to use PrivateLink?

Answer 28

An ENI

Question 29

What is direct connect?

Answer 29

A cloud service solution that makes it easy to establish a direct network connection from your premises to AWS

Question 30

What are the two types of direct connect connections?

Answer 30

Dedicated connections and hosted connections

Question 31

What is AWS Transit Gateway?

Answer 31

Connects VPC’s and on premises networks through a central hub. this simplifies your network and puts an end to complex peering relationships.It acts as a cloud router each new connection is only made once

Question 31

What is AWS Transit Gateway?

Answer 31

Connects VPC’s and on premises networks through a central hub. this simplifies your network and puts an end to complex peering relationships.It acts as a cloud router each new connection is only made once

Question 32

What AWS service allows transitive peering?

Answer 32

AWS Transit Gateway

Question 33

How can you limit how VPC’s talk to each other with Transit Gateway

Answer 33

route tables

Question 34

What AWS service supports IP multicast?

Answer 34

Transit Gateway

Question 35

What is AWS wavelength?

Answer 35

Embeds AWS compute and storage services within 5g networks

Question 35

What is AWS wavelength?

Answer 35

Embeds AWS compute and storage services within 5g networks

Question 36

At what geographical level is NAT gateway redundant at?

Answer 36

AZ

Question 37

What is the IPv4 CIDR block of the default VPC?

Answer 37

172.31.0.0/16

Question 38

What is the purpose of NAT gateways?

Answer 38

to forward traffic from your private subnets to services outside your VPC

Question 39

When would you use transit gateway over VPC peering?

Answer 39

You have too many VPC’s to reasonably peer together

Question 40

What is DNS?

Answer 40

DNS is used to convert human friendly domain names into IP addresses

Question 41

What does DNS stand for?

Answer 41

domain name system

Question 42

Where can you find the top level domain name in a URL?

Answer 42

the last phrase

Question 43

Where can you find the second level domain name?

Answer 43

the second phrase separated by periods.

Question 44

Who controls the top level domains?

Answer 44

Internet assigned numbers authority (IANA)

Question 45

What do NS records do?

Answer 45

Used by top level domain servers to direct traffic to the content DNS server that contains the authoritative DNS records

Question 46

What does SOA stand for?

Answer 46

start of authority

Question 47

What is an A record?

Answer 47

Address Record is the fundamental type of DNS record that is used by computers to translate the name of the domain to an IP address

Question 48

What is a TTL?

Answer 48

a time to live is the length that a DNS record is cached on either the resolving server or the user’s own local PC measured in seconds

Question 49

What does a lower TTL mean?

Answer 49

the changes to DNS records propagate faster throughout the internet

Question 50

What is a CNAME?

Answer 50

a canonical name can be used to map one domain name to another.

Question 51

Give an example of a CNAME

Answer 51

http://mobile.acloud.guru goes to http://acloud.guru

Question 52

Can a CNAME be used for naked domain names?

Answer 52

No

Question 53

Can Alias records be used for naked domain names?

Answer 53

Yes

Question 54

What is route 53?

Answer 54

Route 53 is Amazon’s DNS service

Question 55

What is an alias record?

Answer 55

A way to map domain names to a each other

Question 56

What are 4 common DNS record types?

Answer 56

SOA records, CNAME records, NS records, A records

Question 56

What are 4 common DNS record types?

Answer 56

SOA records, CNAME records, NS records, A records

Question 57

What does a simple routing policy do?

Answer 57

It has one record for multiple IP addresses. If multiple values are in record, route 53 returns all values in a random order

Question 58

What does a weighted routing policy do?

Answer 58

Allows you split your traffic based on weights assigned to destinations

Question 59

If a record fails a health check, what happens?

Answer 59

Removed from route 53 until it passes health check

Question 60

How can you get alerted of a failed health record check?

Answer 60

SNS notifications

Question 61

When would you use a failover routing policy?

Answer 61

When you want to create an active passive set up

Question 62

What does geolocation routing do?

Answer 62

Geolocation let’s you choose where your traffic will be sent based on the geographic location of your users

Question 63

What does route 53 traffic flow do?

Answer 63

Allows you to build routing system that uses a combination of geographic location, latency, and availability to route traffic

Question 64

What is required to use geoproximity routing?

Answer 64

A traffic flow routing policy

Question 65

What does geoproximity routing do?

Answer 65

Allows you to route traffic to your resources based on geographic location of your users and your resources

Question 66

What is a latency routing policy?

Answer 66

Allows you to route traffic based on lowest network latency for end user

Question 67

What is a multi value answer routing policy?

Answer 67

Route 53 only returns values for healthy resources

Question 68

What is ELB?

Answer 68

Elastic load balancing automatically distributed incoming traffic across multiple targets

Question 69

What are the three types of load balancers?

Answer 69

Application load balancer, network load balancer, classic load balancer

Question 70

What type of load balancer scan be configured with health checks?

Answer 70

All types

Question 71

Does an ELB automatically stop sending requests to an unhealthy instance?

Answer 71

Yes

Question 72

What does it mean to be a layer 7 load balancer?

Answer 72

It operates at the 7 the layer of the open systems interconnection model: the application level

Question 73

What does each rule regarding an ELB contain?

Answer 73

Each rule consists of a priority, at least one action, and at least one condition

Question 74

What are the two kinds of listener an application load balancer supports?

Answer 74

Http and https

Question 75

What is a listener?

Answer 75

A listener checks for connection requests from clients using the protocol and port you configure in your ELB

Question 76

What layers of the OSI model does the network load balancer operate at?

Answer 76

The fourth layer: transport layer

Question 77

What type of load balancer offers the highest performance?

Answer 77

Network load balancer

Question 78

How does network load balancers use intelligent routing?

Answer 78

They cannot do intelligence based routing because they have no rules

Question 79

What are target groups?

Answer 79

Target groups route requests to one or more registered targets

Question 80

What are network load balancers best suited for?

Answer 80

Load balancing of TCP traffic

Question 81

What does TCP stand for?

Answer 81

Transmission Control Protocol

Question 82

Can network load balancers decrypt traffic?

Answer 82

Yes

Question 83

What error means that a gateway has timed out?

Answer 83

A 504 error

Question 84

If you need the iPv4 address of end user, what should you look for?

Answer 84

The X-forwarded-for header

Question 85

What are sticky sessions?

Answer 85

Binds a user’s session to a specific EC2 instance

Question 86

What is deregistration delay?

Answer 86

Allows load balancers to keep existing connections open if the EC2 instances are deregistered or become unhealthy

Question 87

If you want to complete inflight requests made to an unhealthy or deregistered instance, what should you use?

Answer 87

Deregistration delay