Others Flashcards
How does AWS Budgets work?
AWS Budgets allows you to create budgets and sends you alarms when those budgets are exceeded
What are the types of budgets on AWS Budgets?
-Usage budget
-Cost budget
-Reservation budget
-Savings Plan budget
What AWS services can a Savings Plan budget be created for?
EC2, Elasticache, RDS, Redshift
True or false: AWS Budgets are free
False, 2 budgets are free, the rest is $0.02/day
When a budget is exceeded, AWS budget can automatically perform an action to deal with it. What are the 3 types of action that AWS budgets can perform?
-Apply an AM policy to a user, group or IAM role
-Apply an SCP to an OU
-Stop an EC2 or RDS instance
True or False: You can implement a manual approval process before AWS Budgets performs an action
True
What is AWS Cost Anomaly Detection
It is an AWS cost management feature that allow you to create a cost monitor for specific AWS services and use ML to detect any anomalous spending on those services
What is AWS Wavelength?
It is an AWS Service that allows comunication with AWS Services using 5G
AWS Wavelength Zones are the base of AWS Wavelength. What are they?
Wavelength Zones are infrastructure deployments located at the 5G communication providers’ data centers at the edge of the 5G network. This infrastructue then communicates with AWS servers so as to bring AWS functionalities to the 5G network.
True or False: Traffic inside a Wavelength Zone leaves the CSP’s network whenever it communicates with AWS
False, it never leaves the network
What are AWS Local Zones?
They are extensions of AWS regions in certain locations so that applications can function on AWS while sporting low-latency
What are some examples of AWS Local Zones?
Inside us-east-1 (Virginia) you have Boston, Chicago, Dallas, Miami, etc
What is an example of an use case where AWS Local Zones would be useful?
If multiple local offices needed low latency and they were all far from AWS zones.
True or False: AWS RAM allows youy to share VPCs with other accounts
False, only subnets
True or False: It is possible to check for idle RDS and Redshift Instances on Trusted Advisor
True
Complete: AWS API Gateway has a maximum _________ payload size and _________ timeout
-10 MB
-29 seconds
True or False: API Gateway changes are rolled deployed to stages, hich can have any name you wish and can be rolled back to previous versions
True
What can an API Gateway point to?
-HTTP
-Lambda Functions
-AWS Resources (SQS, Step Functions, etc)
What is an API Gateway Edge-Optimized Endpoint?
It’s an endpoints that routes requests through Edge Locations to improve latency.
What are the API Gateway Endpoint Types?
-Edge-Optimized (Default)
-Regional
-Private
True or False: API Gateway Edge-Optimizaed Endpoints can be accessed from any region
False, they still live in only a single region
What is an API Gateway Regional Endpoint?
It’s an endpoint for clients within a single region. Can be manually combined with Cloudfront.
What is an API Gateway Private Endpoint?
It’s an endpoint that can only be reached using interface VPC endpoints
How much is the default, the max and the min API Gateway Cache TTL
-Default: 300s
-Max: 3600s
-Min: 0s
True or False: API Gateway Cache is configured per Stage, but can be overrode per method
True
For an API Gateway request to ignore cache what request header should it send?
Cache-Control: max-age=0
What is the request code for throttled requests on API Gateway
Error 429
True or False: API Gateway is compatible with SSL certificates and CORS
True
What are the existing authentication strategies for API Gateway?
-IAM Based authentication (IAM Credentials through Sid V4)
-Lambda Authorizer (Use Lambda to verify authentication)
-Cognito User Pools (Client passes Cognito Token)
The resources most commonly used for Logging, Monitoring and Tracing on AWS are, respectively, ____________
Gloudwatch logs, Cloudwatch metrics, X-ray
What is an API Gateway Usage Plan?
It’s a configuration of how much and how fast a cleint can access an API Gateway through Throtling and Quota Limits.
How does API Gateway Usage Plans recognise a client?
Through their API Key
What is an API Gateway API Key?
Is an optional configuration that makes it so you need to pass an Access Key to use an API
What is AWS App Sync?
It is an AWS Service that uses GraphQL to supply the data need by web application from multiple different sources.
True or False: AppSync has a Cognito integration that allows Cognito to authorize AppSync based on the user’s groups.
True
API gateway can perform _________ requests per second
10.000
It is possible to check how AWS outages will affect your application and list actions to prevent that impact by using _________
AWS Personal Health Checkboard
What is AWS Cloud Map?
It is a service that maps the backend resources your application depends on and monitors their status.
Cost Allocation Tags can be created either automatically by AWS or by the user. What is the prefix for each of these tags?
AWS: ‘aws:’
User: ‘user:’
How long do Cost Allocation Tags take to appear on billing reports?
Up to 24 hours
True or False: AWS Tag Editor allows you to visualize all tags within your account and edit them one at a time
False, you can edit multiple tags at once
What is an AWS Savings Plan
It’s a discount you get by commiting to a certain level of usage over a certain time (Ex: $10 per hour for 1 year)
What types of AWS Savings Plans are there?
-EC2 Instance Savings Plan
-Compute Savings Plan
-SageMaker Savings Plan
True or False: Both EC2 Instance Savings Plan and
Compute Savings Plan offer the same discount as standard Reserved Instance
True
What are the differences between EC2 Savings Plan and a Compute Savings plan?
In an EC2 Savings Plan, you can change instance size (ex: m5.large to m5.xlarge), OS or tenancy (Dediacted or Default), but are locker regarding instance family, region and compute (Only EC2. On a Compute Savings Plan, none of those restrictions apply, being additionally able to be applied to EC2, Lambda and Fargate
How many SNS notifications can you have per AWS Budgets budget?
5
What is AWS Cost Explorer?
It is a Service that allows you to analyse and create dashboards for your costs on AWS
True or False: AWS Cost Explorer can predict your spending for the next 12 months and help choose an optimal Savings Plan
True
What is AWS Fault Injector Simulator (FIS)?
It is a service that performs fault injection on your AWS architecture to discover system improvements regarding availability
What are some examples of disruption created by AWS FIS?
Increasing Memory demands, turning EC2 instances off, increasing CPU
How do you configure FIS’ disruptions?
There are pre-built templates that control the disruptions generated
What is AWS Backup?
It is a managed AWS service that automates backups accross AWS Services
True or False: AWS Backup supports Cross-account and Cross-region backups
True
What AWS services are compatible with AWS Backup?
-EC2
-EBS/EFS/FSx for Luster and WFS
-S3
-RDS/Aurora/DynamoDB
-DocumentDB/Neptune
-Storage Gateway
AWS Backup works based on backup plans. What are some parameters specified by those plans?
-Backup Frequency
-Backup window
-Retention period
-Time until transition to cold storage
True or False: AWS Backup, just like S3, has a a feature called Backup Lock, which makes it so that once a Backuo is created it cannot be altered or deleted
True
What is Amazon WorkSpaces?
Its a service for Secure Cloud Desktop, and it is used in place of VDIs (Virtual Desktop Infrastructure)
True or False: Microsoft AD has integrations with WorkSpaces
True
How do you control who can access your AWS WorkSpaces desktops?
You can configure IP Access Control Groups that restrict which IPs ca access the work spaces (Similar to security group)
What is AWS AppStream 2.0?
It is a service that allows you to stream your desktop to any web browser
What is AWS Device Farm?
It is a service that allows you to test your mobile and web applications
What is Amazon SES?
It is a service that allows you to send emails to users in large scale.
What is EC2 Image Builder?
It is a service that automates the creation of VMs, container images and EC2 AMIs.
True or False: EC2 Image Builder can publish AMI to multiple regions and accounts, and it’s payment is by number of EC2 Image Builder Invocations + the underlying services used by it
False, cost is only underlying services
What is AWS IoT Core?
It is a service that allows IoT devices to connect to AWS
