Section 12: Leveraging the AWS Global Infrastructure Flashcards
Points of Presence is another name for E___ L________
Edge locations
What is the URL for the AWS infrastructure site
https://infrastructure.aws
The service is a managed DNS service
Route53
If mapping a URL to an IP4 address, this is called “a r_____”
a record
If mapping a URL to an IP6 address, this is called a “q_________ a_ r_____”
quadruple a record
if mapping a hostname to another hostname, this is called a C____
CNAME
If mapping a hostname to an AWS Resource, this is called an
Alias
If mapping:
- hostname to IP4
- hostname to IP6
- hostname to hostname
- hostname to AWS Resource
a. an alias
b. a record
c. CNAME
d. a quadruple record
1b
2d
3c
4a
Route 53 Routing policies:
- Simple Routing Policy
- Weighted Routing policy
- Latency routing policy
- Failover routing policy
a. looks at where user is located to then direct user to the closest DNS server
b. users a primary and failover EC2 instance for DNS server
c. assign weight (priority) to instances (ie. 10, 70, and 20) - similar to load balancing
d. no health checks, very basic
- d
- c
- a
- b
Routing Policy:
looks at where user is located to then direct user to the closest DNS server
Latency routing policy
Routing Policy:
assign weight (priority) to instances (ie. 10, 70, and 20) - similar to load balancing
Weighted routing policy
Routing Policy:
no health checks, very basic
Simple routing policy
Routing Policy:
uses a primary and failover EC2 instance for DNS server
Failover routing policy
How much does Route 53 charge for the domain?
$12/year and $.50/month for the hosted zone
Anytime you see “CDN’ on the exam, think of this service
CloudFront
What does CDN stand for?
Cloud Delivery Network
this service improves read performance by caching the content of your website at the different Edge locations
CloudFront
CloudFront is present at ___ (how many) Points of Presence globally
216
CloudFront is protected against what kind of attacks
DDoS
CloudFront is protected against DDoS attacks due to integration with which two services
Web Application Firewall
Shield
What is a CloudFront origin?
the location where content is stored, and from which CloudFront gets content to serve to viewers.
what is the term for the location where CloudFront content is stored, and from which CloudFront gets content to serve to viewers.
origin
What is the term used for when CloudFront can be used to upload files to S3
ingress
what is an ingress?
CloudFront can be used to upload files to S3
what is CloudFront Origin Access Control (OAC)
enhanced security for CloudFront
what is the name of the enhanced security for CloudFront?
CloudFront Origin Access Control (OAC)
CloudFront Origin Access Control (OAC) is replacing what previous security system?
Origin Accentuate Identify (OAI)
Access Identity Origin (AIO)
Origin Access Identity (OAI)
Origin Access Identity (OAI)
What type of AWS service does CloudFront use to distribute files and cache them at the edge
S3
What are two type of CloudFront origins (pick two)
S3
Elastic Block store
Elastic File store
Custom Origin (HTTP)
S3 and Custom Origin (HTTP)
CloudFront, when a file is cached, it is cached at each Edge location. About how long is the file cached (roughly)?
a day
Does this describe CloudFront or S3 Cross Replication?
Global Edge network
Files cached
Great for static content that needs to be available everything
CloudFront
Does this describe CloudFront or S3 Cross Replication?
must be setup for each region you want replication to happen
files are updated in near real time
read only
better for dynamic content that needs to be available at low-latency in a few regions
S3 Cross Region replication
CloudFront is a (regional/global) service
Global
When you want to upload or download a file that’s in an S3 bucket that is far away from you, what service might you consider for improving performance?
S3 Transfer accelerator
This service allows you to optimize the route to your application by about 60%
AWS Global Accelerator
In order to improve connection speed to an application, traffic can be routed through an E___ location
Edge
The An_c___ IP are created for your application and traffic is sent through Edge locations
Anycast IP
What type of service is this?
No caching
proxying packets at the Edge locations to applications running in one or more AWS Regions
Good for HTTP use cases that require static IP address
Good for HTTP use cases that require deterministic, fast regional failover
AWS Global Accelerator
The URL for a small tool that allows you to do a speed test for Global Accelerator
https://speedtest.globalaccelerator.aws/#/
This service allows traffic to/from an application to travel over the private AWS network instead of the public internet to help improve traffic speed
AWS Global Accelerator
This service offers server racks that offer the same AWS infrastructure, services, APIs & tools to build your own applications on-prem just as in the cloud
AWS Outposts
W___L_____ Zones are infrastructure deployments embedded within the telecommunications providers’ datacenters at the edge of 5G networks
WaveLength Zones
WaveLength Zones provide ultra (high/low) latency through (3G/4G/5G) networks
Low/5G
Wavelength Zones provide a (low/high) bandwidth and (insecure/secure) connection to the parent region
High/Secure
AWS L____ Zones places AWS computer, storage, database and other selected AWS services closer to end users to run latency-sensitive applications
Local Zones
As it relates to Global Applications Architecture:
1 Single Region, Single AZ
2. Single Region, Multi AZ
3. Multi Region, Active-Passive
4. Multi-Region, Active-Active
A - write to only “active”, replication to “read”, users can read from “read”, “write” does not have global latency (as writing is to only one region) but “read” is global as it can be done from multiple regions
B - has high availability, lack of global latency, relatively easy to setup
C - read and write to multiple regions, global latency for read and write, most difficult to setup
D - lack of high availability, lack of global latency, easy to setup
1 - D
2 - B
3 - A
4 - C
