Networking

Question 1

Route53 Record Types

Answer 1

• A - maps a hostname to IPv4
• AAAA - maps hostname to IPv6
• CNAME - maps a hostname to another hostname
• NS - Name Servers for the Hosted Zone (indicates which DNS server is authoritative for that domain)

Question 2

Route53

CNAME vs Alias

Answer 2

• CNAME: Points a hostname to any other hostname (can’t be use with root domain)
• Alias: Points a hostname to an AWS resource (works with root domain) and is free of charge.

Question 3

Route53

Alias Records Targets

Answer 3

• ELB
• CloudFront Distributions
• API Gateway
• Elastic Beanstalk
• S3 websites
• VPC Interface endpoints
• Global Accelerator
• Route53 record in the same hosted zone

Question 4

Routing Policies

Simple

Answer 4

Route traffic to a single resource, can’t be associated with Health Checks. If a record has multiple values, a random one is chosen by the client.

Question 5

Routing Policies

Weighted

Answer 5

Control de % of the requests that go to each resource. Can be associated with Health Checks.

Question 6

Route Policy

Latency based

Answer 6

Redirect to the resource that has the least latency, based on traffic between users and AWS regions. Can be associated with Health Checks.

Question 7

Routing Policies

Failover (Active-Passive)

Answer 7

You have a primary and secondary record for disaster recovery.

Question 8

Routing Policies

Geolocation

Answer 8

Based on user location by continent, country or US state Can be associated with Health Checks.

Question 9

Routing Policies

Geoproximity

Answer 9

Based on the geographical location of users and resources. Ability to shift more traffic to resources based on the defined bias.

Must use Route53 Traffic Flow

Question 10

Route53 Traffic Flow

Answer 10

Visual editor to
* Manage complex routing trees
* Create and mantain records in complex configurations.
* Configurations can be saved as Traffic Flow Policies

Question 11

Routing Policies

Multi-Value

Answer 11

Can be associated with Health Checks, returns up to 8 healthy records.

Question 12

Routing Policies

IP-based Routing

Answer 12

You provide a list of CIDRs for your clients and the corresponding endpoints. Optimizes performance and reduces network costs.

Question 13

Route 53

Hosted Zones

Answer 13

Container for records that define how to route traffic.

• Public: specify how to route traffic on the Internet
• Private: specify how to route traffic within one or more VPCs

Question 14

DNS Security Extensions (DNSSEC)

Answer 14

Verifies DNS data integrity and origin. Works only with Public Hosted Zones.

Question 15

Route53 Health Checks

Answer 15

• Health checks that monitor a public endpoint
• Health checks that monitor up to 256 other health checks (calculated health checks)
• Health checks that monitor CloudWatch alarms (efective for private resources)

Question 16

Route53 Resolver

Answer 16

Answers DNS queries for:
1. Local domain names for EC2 instances
2. Records in Private Hosted Zones
3. Records in public Name Servers

Question 17

Route 53

Resolver Endpoints for Hybrid DNS

Answer 17

Can be associated with one or move VPCs in the same region
* Inbound Endpoint forward external DNS queries of domain names, for AWS resources and records in Private Hosted Zones to Route 53 resolver.
* Outbound Endpoint Conditionally forwards DNS queries to other DNS resolvers.

Question 18

AWS Global Accelerator

Answer 18

Leverage AWS internal network to route traffic. 2 Anycast IPs are created that send traffic directly to Edge Locations and from there privately to your application.

Question 19

With which resources does AWS Global Accelerator works?

Answer 19

• Elastic IP
• EC2 instances
• ALB
• NLB

Supports Client IP Address Preservation except EIPs endpoints.

Question 20

CloudFront vs Global Accelerator

Answer 20

CloudFront
* Improves performance for both cacheable content
* Dynamic content served at the edge

Global Accelerator
* Improves performance for a wide range of apps
* Proxying packets at the edge to apps in one or more Regions.