Services and more

Question 1

What is the usable HDD Storage for:

1. Snowcone
2. Snowball
3. Snowmobile

Answer 1

1. Snowcone: 8 TB
2. Snowball: 80 TB
3. Snowmobile: 100 PB

Question 2

Explain Route 53 Simple routing policy

Answer 2

Use for a single resource that performs a given function for your domain, for example, a web server that serves content for the example.com website. You can use simple routing to create records in a private hosted zone.

Question 3

Explain Route 53 Failover routing policy

Answer 3

Use when you want to configure active-passive failover. You can use failover routing to create records in a private hosted zone.

Question 4

Explain Route 53 Geolocation routing policy

Answer 4

Use when you want to route traffic based on the location of your users. You can use geolocation routing to create records in a private hosted zone.

Question 5

Explain Route 53 Geoproximity routing policy

Answer 5

Use when you want to route traffic based on the location of your resources and, optionally, shift traffic from resources in one location to resources in another.

(Uses bias to set a weight)

Question 6

Explain Route 53 Latency routing policy

Answer 6

Use when you have resources in multiple AWS Regions and you want to route traffic to the region that provides the best latency. You can use latency routing to create records in a private hosted zone.

Question 7

Explain Route 53 IP-based routing policy

Answer 7

Use when you want to route traffic based on the location of your users, and have the IP addresses that the traffic originates from.

Question 8

Explain Route 53 Multivalue routing policy

Answer 8

Use when you want Route 53 to respond to DNS queries with up to eight healthy records selected at random. You can use multivalue answer routing to create records in a private hosted zone.

Question 9

Explain Route 53 Weighted routing policy

Answer 9

Use to route traffic to multiple resources in proportions that you specify. You can use weighted routing to create records in a private hosted zone.

Question 10

Explain CIDR range 192.168.10.255/32

Answer 10

/32 means that that the IP range selected only a single IP address 192.168.10.255

+0.0.0.0
addresses: 1 = 2 to the 0

Question 11

Explain CIDR range 192.168.10.255/31

Answer 11

/31 means that that the IP range selected only 2 IP addresses 192.168.10.254 and 192.168.10.255

+0.0.0.1
addresses: 2 = 2 to the first

Question 12

Explain CIDR range 192.168.10.255/30

Answer 12

/30 means that that the IP range selected only 4 IP addresses 192.168.10.252, 192.168.10.253, 192.168.10.254 and 192.168.10.255

+0.0.0.3
addresses: 4 = 2 to the second

Question 13

Explain CIDR range 192.168.10.255/24

Answer 13

/24 means that that the IP range selected only 4 IP addresses 192.168.10.0 to 192.168.10.255

+0.0.0.255
addresses: 256 = 2 to the eight

Question 14

What is AWS Proton?

Answer 14

AWS Proton allows you to deploy any serverless or container-based application with increased efficiency, consistency, and control

Question 15

Is it possible to assign an Elastic IP to an Application Load Balancer?

Answer 15

No

Question 16

Name 3 types of Network Adapters

Answer 16

1. ENI - basic type
2. ENA - for enhanced networking, high bandwidth and low latency
3. EFA (fabric adapter) - for high performance computing

Question 17

Can an ASG with predictive scaling policy contains instances of different types and sizes?

Answer 17

No. Predictive scaling assumes that your Auto Scaling group is homogenous, which means that all EC2 instances are of equal capacity.

Question 18

Using the default settings, which will be the first instance that will be terminated when the scale-in policy triggers?

Answer 18

The EC2 instance launched from the oldest launch configuration

Question 19

In Auto Scaling, the following statements are correct regarding the cooldown period.

Answer 19

1. It ensures that the Auto Scaling group does not launch or terminate additional EC2 instances before the previous scaling activity takes effect.
2. Its default value is 300 seconds.
3. It is a configurable setting for your Auto Scaling group.

Question 20

What can you do to create an asynchronous copy of a S3 bucket?

Answer 20

Enable Replication. Either Cross-Region Replication (CRR) or Same-Region Replication (SRR). Buckets can be in different AWS accounts. Ensure versioning is enabled and to give S3 proper IAM permissions.

Question 21

What are use-cases for using S3 Pre-Signed URLs?

Answer 21

1. Give someone temporary access to a file in a private bucket.
2. Allow only logged in users to download premium content.
3. Allow a user to upload a file to a bucket for temporary time.

Question 22

A company is hosting a static website on S3. The assets are hosted from a different S3 bucket. The website is not displaying the images. What can be the cause?

Answer 22

CORS is probably not enabled on the assets bucket, so the CORS headers are not sent as a response to the preflight request.

Question 23

Which service can be used to perform a lift-and-shift migration to the cloud?

Answer 23

AWS Application Migration Service (AWS MGN) is the primary migration service recommended for lift-and-shift migrations to AWS

Question 24

What’s the difference between Amazon S3 server access logs and CloudTrail Logs?

Answer 24

AWS CloudTrail logs provide a record of actions taken by a user, role, or an AWS service in Amazon S3, while Amazon S3 server access logs provide detailed records for the requests that are made to an S3 bucket.

Question 25

What's the difference between the Personal Health Dashboard and the Service Health Dashboard?

Answer 25

The Personal Health Dashboard shows the health of the services used in your account while the Service Health Dashboard shows the health of the services within AWS for all customers.

Question 26

Which service can be used to extract text from PDF documents saved on S3?

Answer 26

Amazon Textract

Question 27

What is AWS Trusted Advisor?

Answer 27

AWS Trusted Advisor is an online tool that provides you with real-time guidance to help you provision your resources following AWS best practices. It inspects your AWS environment and makes recommendations for saving money, improving system performance and reliability, or closing security gaps.

Question 28

You need to create a subnet that can contain 64 instances in the range 10.0.0.0. How do you define the CIDR?

Answer 28

10.0.0.0/25 = 128 addresses - 5 = 123, leaves enough room for 64 instances. 10.0.0.0/26 would give us 64 addresses, but since AWS preserves 5 of them, it's not enough to hold 64 instances.

Question 29

What's the difference between VPC Endpoint types Interface Endpoint (PrivateLink) and Gateway Endpoint?

Answer 29

Gateway Endpoints can only be used for S3 and DynamoDB. Gateway Endpoints are easy to use as it's just a change in the route table. Interface Endpoints provision an ENI (private IP address) as entry point and support most AWS services.

Question 30

What do you need to create a VPN from your on-premise site to AWS?

Answer 30

1. Define Customer Gateways in AWS (Referring to the gateway on your on-premise site) 2. Define a Virtual Private Gateway in AWS (Referring to the VPC in AWS) 3. Then connect both Site-to-Site VPN Connections

Question 31

How can we establish a high resilient private connection from an on-premise data center to a AWS?

Answer 31

Setup 2 (multiple) Direct Connect locations. The downside is that direct connect can take months to setup and is expansive.

Question 32

How can we establish a maximum resilient private connection from an on-premise data center to a AWS?

Answer 32

Setup 2 (multiple) Direct Connect locations with multiple connections. The downside is that direct connect can take months to setup and is expansive.

Question 33

What can we use as a backup connection from our on premise data center to AWS if we already have Direct Connect?

Answer 33

Use a Site-to-Site VPN connection as a backup. This is using the public internet so the stability should be more reliable than a private connection.

Question 34

What is the minimum storage duration of Amazon S3 Standard-IA and One Zone IA?

Answer 34

30 days

Question 35

What is the minimum storage duration of Amazon S3 Glacier Deep Archive

Answer 35

180 days

Question 36

What are the benefits of using IAM database authentication?

Answer 36

– Network traffic to and from the database is encrypted using Secure Sockets Layer (SSL). – You can use IAM to centrally manage access to your database resources, instead of managing access individually on each DB instance. – For applications running on Amazon EC2, you can use profile credentials specific to your EC2 instance to access your database instead of a password, for greater security

Question 37

Amazon Athena supports a wide variety of data formats like CSV, JSON, .. Which format can give better query performance?

Answer 37

Apache Parquet

Question 38

How can you invoke a Lambda function from Amazon Aurora?

Answer 38

You can invoke an AWS Lambda function from an Amazon Aurora MySQL-Compatible Edition DB cluster with a native function or a stored procedure.

Question 39

How can we store objects in S3 using a WORM model?

Answer 39

With S3 Object Lock, you can store objects using a write-once-read-many (WORM) model

Question 40

A simplified alternative to SQS?

Answer 40

Amazon Simple Workflow (SWF) is a web service that makes it easy to coordinate work across distributed application components.

Question 41

What is AWS Control Tower?

Answer 41

AWS Control Tower provides a single location to easily set up your new well-architected multi-account environment and govern your AWS workloads with rules for security, operations, and internal compliance.

Question 42

What is the minimum and maximum retention period for an SQS message?

Answer 42

In Amazon SQS, you can configure the message retention period to a value from 1 minute to 14 days. The default is 4 days. Once the message retention limit is reached, your messages are automatically deleted.

Question 43

IAM database authentication is supported for?

Answer 43

MySQL and PostgreSQL database engines

Question 44

Explain the Lambda Limits?

Answer 44

Function memory allocation : 128 MB to 10,240 MB, in 1-MB increments. Function timeout : 900 seconds (15 minutes) Package size : 50mb zipped, 250mb unzipped Function layers : 5 layers Function burst concurrency : 500 - 3000 (varies per Region)