S3

Question 1

What is S3?

Answer 1

Safe place to store files and its object based.

Question 2

What is a S3 bucket

Answer 2

A bucket is basically a folder where we store files. Identified by an uri. Bucket names are unique

Question 3

How to secure information in S3

Answer 3

IAM policies
Access Control Lists
Bucket policies
Query string authentication (URL to an Amazon S3 object which is only valid for a limited time)

Question 4

What is an S3 standard storage

Answer 4

It is the standard way to store data with very high availability and durability with data being stored across multiple devices and places.

99. 99 % availablity
100. 11’9s surability

Question 5

What is S3 IA

Answer 5

Its a bucket for storing Infrequently needed data, but needs a fast retrieval. There is a retrieval fee associated with it.

Question 6

what is S3 One Zone IA

Answer 6

It is storage for infrequently accessed data, stored in one zone

Question 7

what is s3 Intelligent Tiering?

Answer 7

It uses machine learning and moves the files to S3 Standard or One Zone or IA based on the usage of those files

Question 8

What is S3 Glacier?

Answer 8

Glacier is used to archive data. Low cost solution and retrieval time sis configurable from minutes to hours

Question 9

S3 Glacier Deep Archiving

Answer 9

Low-cost archiving solution where a retrieval time of over 12 hours is acceptable

Question 10

Fundamentals of S3

Answer 10

Key,
Value,
Version Id,
Metadata
Sub Resources:
Access Control List and Torrent

Question 11

What are the consistency modes in S3

Answer 11

Read After PUT

Eventual consistency

Question 12

How is server-side encryption achieved in S3

Answer 12

S3 Managed Keys: SSE-S3. These keys are managed by Amazon, themselves.
AWS key management Service, Managed Keys -SSE-KMS the keys are managed by AMAZON and the user.

Server-side encryption with customer-provided keys SSE-C

Client side encrytion where we encrypt the object and upload it

Question 13

How to automate moving objects around tiers

Answer 13

Use lifecycle management to object and its version to move them to different tiers based on their usage.We can set rules for objects to be moved to IA after certain days of being inactive or even clean up multipart form updates after certain amount of time

Question 14

Explain replication in S3

Answer 14

Versioning should be enabled for objects in the source bucket
The region where we are going to replicate should be different from the original region
Existing objects in Source are not automatically copied over, its a manual step.
Adding new objects automatically copies them in the destination bucket
Deleting an object in source or a version doesn’t delete an object from Destination

Question 15

What is S3 Transfer acceleration?

Answer 15

Instead of uploading directly to S3 bucket, the users would upload their content o an edge location and then from there the content would get uploaded to main S3 bucket using Amazons backbone network.

Question 16

Explain CloudFront

Answer 16

It is the CDN where data is cached from Origin(Another s3, EC2, Elastic Load balancer or Route 53) and server to users
Basically acts like a cache between the user and the source. The lifetime of the cache can be set and there is a cost associated when we attempt to clear the cache.

Question 17

What is snowball

Answer 17

when you have large amounts of data to move into AWS. then we use SnowMobile. we can export and import data into it

Question 18

What is a storage Gateway

Answer 18

The AWS Storage Gateway service enables hybrid storage between on-premises environments and the AWS Cloud. It provides low-latency performance by caching frequently accessed data on premises, while storing data securely and durably in Amazon cloud storage services.

It is a physical or virtual device used in premise to export data from client side to AWS. Once data is migrated to AWS, they can be used as standard S3 objects.

Question 19

What are the types of Storage Gateway

Answer 19

File Gateway(NFS &SMB):
Whole data in the data center could be replicated in the cloud by using this. File gateway could again be virtual or Physical.

Volume Gateway(Stored Volume and Cached Volume):

Unlike Filegateway, it doesn’t transfer the whole data, rather only the most frequently used ones

Tape Gateway:
This one is used to transfer information in Tapes to AWS.

Question 20

What are the VM’s supported by Storage Gateway

Answer 20

VM ware and HyperV

Question 21

What is the file size supported?

Answer 21

0 bytes to 5 TB.
The largest object that can be uploaded in a single PUT is 5 gigabytes.For objects larger than 100 megabytes use theMultipart Uploadcapability

Question 22

What are the different groups to which permission can be granted to access S3 buckets and Objects?

Answer 22

Authenticated users groups(all authentocated aws accounts)
All User Group(Anyone in the world)
Log Delivery Group(Enables S3 to write server access logs)

Question 23

What happens when Read permission is give to an account on a Bucket?

Answer 23

It only allows to view the ist of objects in the bucket.

Question 24

What is cross region replication?

Answer 24

Data uploaded to a bucket can be automated to replicated to a bucket in another region asynchronously.Versioning must be enable for source and destination buckets.

Question 25

How does glacier work?

Answer 25

It is not designed for Real time data access, it is designed to sustain the loss of two facilities and there is no SLA.
To access data in Glacier a request is made first and within 24 hours, data makes it way to S3 IA one zone for access and it stays there for 24 hours.
The metadata associated with objects is not stored in Glacier, There should be a client side database to store them.

Question 26

Costing difference between EFS and EBS ?

Answer 26

In EFS you pay for what you use, whereas in EBS you pay for what you provision.

Question 27

What is EFS file sync?

Answer 27

A tool to copy existing files into EFS, it is 5 times faster than normal linux copy tools.
With EFS File Sync, you pay per-GB for data copied to EFS