S3 Flashcards
1
Q
What are you charged for with S3?
A
Storage
Requests
Data transfer within S3
Transfer Acceleration
2
Q
True or false: S3 buckets are limited to access from a single account
A
False. When setting up an S3 bucket, you can grant access to the bucket from multiple other accounts.
3
Q
What kinds of destinations can receive event notifications from an S3 bucket
A
An Amazon SNS topic
An Amazon SQS queue
A Lambda function
4
Q
What are the three kinds of server-side encryption available to S3 buckets?
A
SSE – S3
SSE – KMS
SSE – C
5
Q
What is a Distribution as it applies to cloud front?
A
A Distribution is a content delivery network, consisting of a collection of edge locations.
6
Q
True or false: cloud front is only used for reading objects
A
False. Cloud front can be used to both read and write objects to edge locations.In order to enable this feature, the Allowed HTTP Methods setting must be set properly when creating the distribution
7
Q
What is a Snowball Edge?
A
A snowball edge is similar to a regular Snowball, but it also includes computer capabilities, so that the user cannot only store data on it but also collect the data using code stored on the snowball edge.
8
Q
What is a Snowmobile
A
A Snowmobile is a data transfer device stored on a full size shipping container, pulled by a semi trailer truck. Snowmobile is used to transfer enormous amounts of data into AWS
9
Q
How do I download an S3 file using bit torrent?
A
Using the Rest API, simply add the ?torrent parameter at the end of your Get request
10
Q
Can you have an S3 bucket with the same name as another?
A
No. All S3 bucket across AWS must have a globally unique name.
11
Q
Explain how volume gateway works
A
Volume gateway stores back ups of volumes such as operating systems or databases, as point in time snapshots and are backed up asynchronously. Snapshots are backed up incrementally and compressed to minimize storage charges
12
Q
S3 stands for
A
Simple Storage Service
13
Q
How many as three buckets are allowed per account
A
The default is 100 packets per account, though this can be changed by visiting AWS Service Limits
14
Q
What is the URL format for a static website stored in S3?
A
http://bucket-name.S3–website-region-name.AmazonAWS.com
15
Q
What are the four types of storage gateways?
A
File gateway
Volume gateway (stored volumes)
Volume gateway (cached volumes)
Tape gateway
16
Q
What is a Lifecycle Rule?
A
It is a rule which indicates when objects in S3 are transition from one storage class to another
17
Q
What are the two types of cloud front distribution?
A
Web distribution, typically used for websites and
RTMP, used for streaming video
18
Q
What is the threshold for object size above which multipart upload should be considered?
A
100 MB
19
Q
How can you remove objects from cloud front edge caches?
A
You can set up an Invalidation in the distribution settings. However doing so incurs additional charges
20
Q
How can you designate a single folder within an S3 bucket to act as the origin for a CDN?
A
Set the Origin Path when creating the distribution.
21
Q
True or false: a cloud front distribution can have more than one origin
A
True
22
Q
When creating an S3 bucket, by default is it public or private
A
S3 buckets are private by default, though you can grant public read access to buckets when creating them.
23
Q
True or false: You can force users to only access your content from CDN edge locations.
A
True. By setting Restrict Bucket Access to Yes you can force users to only access content from cloud front URLs
24
Q
What is the availability for standard S3 objects?
A
99.99 percent
25
How many object tags can be added to an S3 object?
10
26
Can objects which are cashed using cloud front be cleared
Yes. You can clear cached objects in cloud front, but that incurs an additional charge.
27
How much storage is available in one S3 bucket?
An S3 bucket can support unlimited storage
28
What is the durability of objects stored in S3-IA?
11x9
29
What is the best method for configuring an S3 bucket with a unique set of permissions that will be used in the future
You can create a Bucket Policy and apply it to the S3 bucket
30
I file that has been uploaded to an S3 bucket has a URL link associated with it. However, clicking on this link brings up and “access denied” XML document. Why?
Files uploaded into an S3 bucket private by default, so clicking on the provided link will generate this message. The file must be made public before it can be accessed
31
How do you get data into S3-IA?
Two ways.
You can use lifecycle policies to automatically transition objects to IA after a specified length of time
Using the API you can put objects directly into IA by specifying so in the header.
32
What is Transfer Acceleration
Transfer Acceleration allows users in far-flung corners of the world to upload data to an edge location which is then transferred in the background by Amazon to the account’s region. Very fast.
33
What is the data consistency model for new object puts in S3?
Read after write consistency
34
True or false: the bucket owner must always pay for access to the files in the bucket.
False. The bucket can be configured with “requester pays”. This means that the requester of the data must pay for that access rather than the bucket owner
35
What does an S3 object consist of, and describe each of its constituent parts
```
Key – the name of the object
Value – the actual data, the content of the file itself
Version ID
Metadata
Subresources, including
access control lists
torrent
```
36
What is returned after a successful S3 upload?
HTTP 200
37
What is an Origin Access Identity?
A user which is created specifically for accessing content from the origin of a cloud front distribution
38
What is Glacier?
And S3 storage tear which is extremely inexpensive, but requires 3 to 5 hours to retrieve data. It is typically used for archival storage
39
True or false: lifecycle management roles cannot be used to permanently delete an
False. You can use lifecycle management rules to delete objects after a specified period of time
40
What can you do with S3 event notifications?
You can run workflows, send alerts, or perform other actions in response to changes in your objects stored in S3
41
What is Athena?
And interactive clary service that makes it easy to analyze data in S3 using standard SQL
42
What events can you be notified of using Event Notification in an S3 bucket
Object created event
Object deleted event
RRS object lost event
43
What kinds of things are stored in S3?
S3 is object based storage, meaning it stores flat files only, and cannot store an OS or a database
44
What is TTL?
TTL stands for time to live, which is the amount of time an object is cashed in an edge location when using cloud front
45
What types of encryption are available for our files stored in an S3 bucket?
AES – 256
| AWS – KMS
46
Where is S3 data stored?
When an S3 bucket is created, a region is specified. This region will include multiple availability zones across which the data will be redundantly stored
47
What is a CDN
A CDN is a content delivery network. A system of distributed servers that deliver webpages and other web content to a user based on the geographic locations of the user, the origin of the webpage and a content delivery server.
48
After using cross – replication on an S3 bucket, you discover that the replicated bucket does not contain any of the objects in the original package. Why is this?
Any objects which exist in an S3 bucket or not automatically transferred over when that bucket is replicated
49
True or false: S3 bucket’s can be replicated across different accounts
True
50
What are Cash volumes?
Cashed volumes let you use S3 as your primary data storage while retaining frequently accessed data locally in your storage gateway. This minimizes the need to scale you’re on premises storage infrastructure while still providing your applications with low latency access to their frequently accessed data
51
S3 objects are stored redundantly across multiple facilities. They are guaranteed to sustain the loss of how many facilities concurrently
2
52
True or false: you must have versioning enabled on an object before you can apply lifecycle management to it
Pulse. You can use lifecycle management on an object whether or not versioning is enabled on
53
True or false: you can use S3 to host dynamic websites which contain server-side code such as PHP or.net
False. S3 can only host static websites
54
What is S3 Inventory?
Service which provides a CSV or ORC file listing of your objects in S3 and their corresponding meta-data on a daily or weekly basis
55
True or false: you can select whether lifecycle rules apply to the current version of a document for all previous versions of a document
True
56
If you add tags to an S3 bucket, do the files uploaded to that bucket inherit those tags?
No. You must tag files individually as they do not inherit the text of the bucket they are contained in
57
What are the advantages of using SSE – KMS encryption versus SSE – S3 encryption?
SSE-KMS encryption includes an extra level of security with an envelope key, and also provides audit logs
58
How can you restrict access to certain users in a cloud front distribution?
Set the Restrict Viewer Access to Yes when setting up the distribution (Use either pre-signed URLs or signed cookies)
59
What is the scope of S3 name spaces?
S3 name spaces are globally unique
60
What is S3 – RRS?
Reduced Redundancy Storage
Storage which is guaranteed at 99.9 percent durability, typically used for data which can be reproduced easily such as thumbnails
61
What is an effective method for preventing users from deleting objects in an S3 bucket
MFA delete is a feature which requires multi factor authentication when deleting an object.
62
What is the range of sizes for S3 objects?
0 bytes to 5 TB
63
In what form are Snapshots of storage volumes store in S3
Snapshots of volume gateway store volumes are stored as EBS snapshots
64
True or false: When replicating an S3 bucket, you can specify the replication to be of a different storage class
True
65
Describe the for S3 storage tiers
S3
S3 – IA
S3 – RRS
Glacier
66
What is a VPC End point for S3?
A logical entity within a VPC that allows connectivity only to S3
67
Can S3 versioning be disabled?
No. Once versioning has been enabled, it can only be suspended, not disabled.
68
What is S3 tagging used for
Tags are used in S3 bucket’s to enable you to track costs across different projects or other criteria. You can also use them to set up lifecycle policies and IAM policies.
69
True or false: you can configure different light cycle rolls for the current and the previous versions of an object
True. When setting up lifecycle rules, there is a section for both the previous versions and the current version
70
Describe Storage Gateway
Service that connects on premise software appliances with cloud-based storage to provide seamless and secure integration between an organizations on premise IT environment and a WSs storage infrastructure. The service enables you to securely store data to the AWS cloud for scalable and cost-effective storage.
71
What is Server Access Logging?
Server Access Logging can be used to maintain a log of all access attempt to an S3 bucket. Server access logging can be enabled in the S3 bucket settings or when creating a new bucket
72
What is the minimum size for an object in order for it to be transitioned using lifecycle girls?
128 kB
73
What is Cross – Region Replication?
S3 bucket’s can be replicated across different regions or even different accounts.
74
What does Atomic mean when referring to S3?
Data which is retrieved from S3 will never be partial or corrupt
75
What is Amazon Macie?
An AI – powered security service that helps you prevent data loss by automatically discovering, classifying, and protecting sensitive data stored in S3
76
Describe S3 Lifecycle Management
You can set up S3 so that data is stored in one storage tier for a specified length of time, and then is automatically transferred to a different storage tier
77
What is “in transit” encryption?
Encryption which happens at the time and data is transferred over the Internet. Typically this is SSL
78
What is a Snowball?
A snowball is a petabyte – scale data transport device. Amazon sends the device to you, you put your data on it and return it, and the data is loaded into AWS that way, without using the Internet at all.
79
True or false: Objects stored using the file gateway can take advantage of things such as lifecycle management, permissions, and versioning.
True
80
What is a disadvantage of enabling versioning on an S3 bucket?
If you have a file which is very large and prone to many updates, AWS will store every version of that file, potentially increasing storage costs.
81
What is SSE – C?
Server side encryption with customer provided keys
82
Can an S3 bucket be replicated to multiple Destination buckets?
No. An S3 bucket can only be replicated to a single Destination bucket.
83
What did Snowball replace
Import export, service in which a user could send their own data storage device to Amazon who would then upload the data into AWS
84
How are objects smaller than 128 kB charged if stored in S3-IA?
Any object smaller than 128 kB is charged as if it were 128 kB
85
What is the minimum amount of time that must pass before an object can be moved from S3 to S3-IA?
30 days
86
What is the name of AWS’s CDN?
Cloud front
87
What is S3-IA?
Infrequently Accessed Storage
| Data is immediately retrievable, but it is less expensive and incurs a fee upon retrieval
88
True or false: individual files with in an S3 bucket can be replicated without replicating the entire bucket
True. Using file prefixes you can specify that cross region replication only operate on those
89
What is the data consistency model for override puts and delete in S3?
Eventual consistency
90
Are S3 buckets regional or global?
S3 buckets are created in a specific version, although when entering the S3 service, you can see all your buckets globally across all regions
91
How do you delete large numbers of objects in S3?
Multi – Object Delete
92
What is the availability for S3-IA?
99.9%
93
What is an Origin as it applies to Cloud front?
The Origin is where all of the files that I CDN will distribute are located. This could be an S3 bucket, and ec2 instance, an ELB or route 53.
94
How can you restrict certain geographies from accessing your cloud front distribution?
In the restrictions setting of theDistribution you can enable Geo restriction and sat by there a white list or black list of countries that are or are not able to access your distribution
95
What is a CDN and what are its advantages?
A content delivery network caches objects from the origin to geographically dispersed edge locations so that subsequent users requesting the same object in the same geographical area can receive it from that at location rather than having to go back to the origin region to retrieve it.This means that the subsequent Yuzer has a much faster retrieval time because the data is located physically much closer to them.
96
Explain the difference between a region, and edge location, and an availability zone
A region is a geographical location where an Amazon data center is located. There are about a dozen regions in the world.
And availability zone is a combination of one or more data centers in a given region. These data centers may be physically in proximity but have separate power and network capabilities and are connected with each other with fiber optic cable. Each region contains a small number of distinct availability zones.
An edge location is a data center where and users access services located at AWS. They are located in most of the major cities around the world and our specifically used by cloud front to distribute content to end-users and to reduce latency
97
How do you copy multiple objects from one S3 bucket to another
You must use commandline interface commands (Linux)
98
What are the two different ways you can set up access control to buckets?
Bucket policies
| Access control lists
99
What is the default TTL for a new objects in cloud front?
24 hours
100
True or false: non-– AWS, on premise servers can act as cloud front origins.
True. You can use your own server as a cloud front origin. It does not have to be an AWS resource
101
What is a scenario under which an S3 bucket cannot be replicated?
An S3 bucket can only be replicated if Both the source and the destination buckets have versioning enabled
102
What is the largest object size that can be uploaded to S3 in a single put request?
5 GB
103
True or false: an S3 bucket can be replicated do the same region
False. Cross region replication only works when replicating across different regions
104
What is the format for an S3 bucket DNS address?
Https://region-name.amazonaws.com/bucket-name
105
What is the durability of standard S3 objects?
11 X9 percent
106
What is “Quarry in Place”?
You can run sophisticated quarries against data stored in S3 without the need to use ETL into a separate analytics platform.
107
What is the minimum size of the files stored in an S3 bucket
Zero bytes
108
What is a storage gateway software appliance?
Storage gateway is a virtual machine which is stored on your on premise server to connect to AWS
109
Describe the difference between stored volumes and cashed
Stored volumes are snapshots of an entire hard disk, stored in an S3 bucket. Cash volumes store the entire hard disk on S3, but only frequently accessed objects are stored on premise.
110
What is Glacier Vault Lock?
It is a way to create access policies for Glacier that can be locked for a specified amount of time. It is used to enforce regulatory requirements
