Set1(31-35) Flashcards
Q33: application load balancer vs network load balancer
The main difference between ALB and NLB is the layer at which they operate. ALB operates at the application layer (Layer 7) of the OSI model, while NLB operates at the network layer (Layer 4).
ALB is designed to handle HTTP/HTTPS traffic and provides advanced routing and load balancing features such as content-based routing, host-based routing, and path-based routing. It also supports SSL/TLS termination, which allows HTTPS traffic to be decrypted at the load balancer and then forwarded to the backend targets in plaintext.
NLB, on the other hand, is designed to handle TCP/UDP traffic and provides simple and efficient load balancing with high throughput and low latency. It is ideal for applications that require high network throughput, such as gaming and video streaming.
In summary, ALB is suitable for applications that require advanced routing and load balancing features at the application layer, while NLB is suitable for applications that require high network throughput at the transport layer.
Q34: CloudFront Geo Location
Amazon CloudFront is a content delivery network (CDN) offered by Amazon Web Services (AWS) that can be used to distribute content globally with low latency and high data transfer speeds.
One of the security features provided by CloudFront is Geo restriction, which allows you to restrict access to your content based on the geographic location of the viewer.
You can use Geo restriction to allow or deny access to your content based on the following criteria:
Whitelist: You can create a whitelist of countries or regions from which you want to allow access to your content. Users from countries or regions not on the whitelist will be denied access.
Blacklist: You can create a blacklist of countries or regions from which you want to deny access to your content. Users from countries or regions on the blacklist will be denied access.