Serverless

Question 1

What does AWS X-Ray do?

Answer 1

it allows you to scan Lambda architecture and debug issues with AWS Lambda

Question 2

Does AWS Lambda scale out automatically?

Answer 2

Yes

Question 3

Does AWS Lambda scale up automatically?

Answer 3

No

Question 4

Can an AWS Lambda function trigger another AWS Lambda Function?

Answer 4

No

Question 5

What does SAM stand for?

Answer 5

Serverless Application Model

Question 6

What is AWS SAM?

Answer 6

A superset of Cloudformation functionality that allows you to run serverless applications locally

Question 7

What does ECS stand for?

Answer 7

Elastic Container Service

Question 8

What is a container?

Answer 8

A container is a package with an application, libraries, runtime, and the tools required to run it

Question 9

What are the benefits of using containers?

Answer 9

• Containers provide isolation benefits of virtualization with less overhead and faster start times than VMs
• Containers are portable, and offer a consistent environment

Question 10

At a high level, what does ECS do?

Answer 10

• ECS is a managed container orchestration service
• It creates clusters to manage fleets of container deployments
• Schedules containers for optimized placement within a cluster

Question 11

What is the pricing structure of ECS?

Answer 11

ECS is free

_{(although the EC2/Fargate instances that you spin up in it have standard charges)}

Question 12

In the context of ECS, What is a cluster?

Answer 12

In ECS, A cluster is a logical connection of ECS resources

Question 13

In the context of ECS, what is the difference between a task definition and a container definition?

Answer 13

• A task definition defines your application (think Dockerfile but for ECS)
• A container definition defines the individual containers a task uses (think CPU, malloc, port mappings)

Question 14

Suppose you have two containers that always need to run together. How would you ensure this in ECS?

Answer 14

put their container definitions under the same task definition

Question 15

In the context of ECS, what is a task?

Answer 15

A single running copy of any containers defined in a task definition

(One working copy of your application)

Question 16

In the context of ECS, what is a service?

Answer 16

A service allows task definitions to scale by adding tasks.

Sets a min/max number of tasks that varies with autoscaling

Question 17

In the context of ECS, what is a registry?

Answer 17

storage for container images

Used to download images to create containers

Question 18

At a high level, what is Fargate?

Answer 18

Fargate is a serverless container engine

Question 19

What is the pricing structure for Fargate?

Answer 19

You specify and pay for resources per application

Question 20

In what instances would you use EC2 instances instead of Fargate?

Answer 20

• Strict compliance requirements
• Your use case requires broader customization (since you can’t actually get in to the Fargate instance)
• Your use case requires GPUs

Question 21

What does EKS stand for?

Answer 21

Elastic Kubernetes Service

Question 22

What does K8s stand for?

Answer 22

Kubernetes

Question 23

At a high level, what is Kubernetes?

Answer 23

Kubernetes is an open-source software that lets you deploy and manage containerized applications at scale

Question 24

In the context of EKS, what is a pod?

Answer 24

In EKS, containers are grouped into pods

It is roughly analagous to a task in ECS

Question 25

What is the use case for EKS?

Answer 25

* You are **already using Kubernetes and want to migrate to AWS**

Question 26

What does **ECR** stand for?

Answer 26

**E**lastic **C**ontainer **R**egistry

Question 27

How does ECR ensure high availability?

Answer 27

It is **deployed across multiple AZs within a region**

Question 28

What is the price structure of ECR?

Answer 28

With ECR, you pay for **storage** and **data transfer**

Question 29

At a high level, what is ECR?

Answer 29

ECR is a **managed Docker container registry**

Question 30

How does ECS benefit from ELB?

Answer 30

with ELB, you can **distribute traffic evenly across tasks in your service**

Question 31

What is the difference between **EC2 Instance Roles** and **Task Roles**?

Answer 31

* An _EC2 Instance Role_ **applies a policy to _all tasks_ running in that EC2 instance** * A _Task Role_ **only applies to that task** So, Task Roles respect Least Priviledges better than EC2 instance Roles

Question 32

When configruing SQS as event source for AWS Lambda function, what is the maximum batch size supported by AWS SQS `RecieveMessage` API call?

Answer 32

**10**

Question 33

What Amazon CloudFront events can be used to trigger a Lambda Function?

Answer 33

* Viewer Request * Viewer Response * Origin Request * Origin Response _{(Source: https://github.cloud.capitalone.com/puggles/deposits-accounts-bankcard-pin/blob/develop/settings.xml#L9)}

Question 34

Suppose you change code and upload a new version of code to an AWS Lambda Function. What will happen to requests sent immediately after the code change?

Answer 34

For **a brief period (usually less than one minute**) requests **might be served by either the old or new version**

Question 35

What poll-based services are supported by AWS Lambda?

Answer 35

* Kinesis * DynamoDB * SQS _{(Source: https://docs.aws.amazon.com/lambda/latest/dg/lambda-invocation.html?shortFooter=true%23streaming-event-source-mapping)}

Question 36

What are the limitations on what memory can be allocated to an AWS Lambda Function?

Answer 36

**128MB** to **3008MB**, in **increments of 64 MBs** _{(Source: https://docs.aws.amazon.com/lambda/latest/dg/gettingstarted-limits.html)}

Question 37

Are Lambda environment variables automatically encrypted?

Answer 37

They are **encrypted when deployed**, and **decrypted when invoked** (so your code can use them)

Question 38

What actions are required by Lambda Execution Role in order to write logs in CloudWatch?

Answer 38

* **CreateLogGroup** * **CreateLogStream** * **PutLogEvents**

Question 39

When a lambda is synchronously invoked and errors, what is returned?

Answer 39

A **200** status code A **FunctionError** field in the response

Question 40

What is the pricing model for AWS Lambda?

Answer 40

* **Requests** (per million) * **Total Duration and Hardware** (per GB-s)

Question 41

In the context of ECS, what is a **task definition**?

Answer 41

A **JSON template that describes containers which form your application**

Question 42

What are the key features offered by ECS?

Answer 42

* Containers and Images * Task Definitions * Tasks and Scheduling * Clusters * Container Agent

Question 43

Can you add additional security capabailities to your ECS containers?

Answer 43

**Yes, you have root access to the OS of your container instances**

Question 44

What should you do for monitoring and alerting with ECS?

Answer 44

Utilize **Cloud**_Trail_****

Question 45

Can Lambda be used for monitoring?

Answer 45

**No**

Question 46

How do ECS clusters get permissions to access your AWS resources?

Answer 46

They use **container instance roles** **in IAM**