Set2(1-10) Flashcards
Q1:Amazon Athena
Amazon Athena is an interactive query service that makes it easy to analyze data directly in Amazon Simple Storage Service (Amazon S3) using standard SQL. It is a serverless, interactive analytics service built on open-source frameworks, supporting open-table and file formats. With Athena, you can analyze data or build applications from an Amazon Simple Storage Service (S3) data lake and 25-plus data sources.
Q2:S3 Client Side Encryption
Client-side encryption is the act of encrypting your data locally to ensure its security as it passes to the Amazon S3 service. The Amazon S3 service receives your encrypted data; it does not play a role in encrypting or decrypting it .
you can keep the keys either within your application or in AWS KMS, but it is recomended to use KMS
Q5: AWS Storage Gateway usecases
AWS Storage Gateway is a set of hybrid cloud storage services that provide on-premises access to virtually unlimited cloud storage . Storage Gateway supports four key hybrid cloud use cases:
- Move backups and archives to the cloud.
- Reduce on-premises storage with cloud-backed file shares.
- Provide on-premises applications low latency access to data stored in AWS.
- Data lake access for pre and post processing workflows
Q8: AWS Storage Gateway
AWS Storage Gateway is a hybrid cloud storage service provided by Amazon Web Services (AWS). It allows on-premises applications to use cloud storage seamlessly by providing a virtualized storage appliance that runs on-premises and connects to AWS cloud storage services.
The Storage Gateway service provides three types of gateways:
- File Gateway: This type of gateway provides file-based storage accessible through industry-standard file protocols such as NFS and SMB. It allows on-premises applications to access files stored in Amazon S3 using a virtual file server.
- Volume Gateway: This type of gateway provides block-based storage through iSCSI protocol. It allows on-premises applications to use Amazon EBS (Elastic Block Store) volumes as a virtual hard disk.
- Tape Gateway: This type of gateway provides a virtual tape library (VTL) interface that allows backup applications to archive their data to Amazon S3 and Amazon Glacier. It supports most of the popular backup software and provides secure, durable, and low-cost backup storage.
Q8: aws file gateway virtual appliance
AWS File Gateway is a type of Storage Gateway that provides file-based storage accessible through industry-standard file protocols such as NFS and SMB. The File Gateway service is delivered as a virtual appliance that runs on a hypervisor in the customer’s data center or in the cloud.
The AWS File Gateway virtual appliance is available as a VMware ESXi or Microsoft Hyper-V virtual machine image. Customers can download the virtual machine image from the AWS Management Console and install it on their local hypervisor. Once installed, the virtual appliance is registered with the AWS Storage Gateway service and can be managed through the AWS Management Console.
The virtual appliance provides a file interface to Amazon S3, allowing on-premises applications to access files stored in S3 as if they were stored locally. This enables customers to leverage the benefits of cloud storage, such as scalability and durability, while still using their existing on-premises applications.
The File Gateway virtual appliance supports a range of use cases, such as backup and archiving, disaster recovery, and file sharing. It also provides features such as caching, compression, and encryption to optimize performance and security.
AWS Storage Virtual Appliance, on the other hand, is a software-only version of the AWS Storage Gateway service that is designed to run on a virtual machine in your on-premises environment
Overall, the AWS File Gateway virtual appliance provides a seamless and scalable solution for integrating on-premises applications with cloud storage services.
Q8: should EBS be always attached to an EC2
In general, Elastic Block Store (EBS) volumes are used as persistent storage for Amazon Elastic Compute Cloud (EC2) instances, and they are typically attached to an EC2 instance when it is launched. However, EBS volumes do not always need to be attached to an EC2 instance.
It is possible to create EBS volumes independently of EC2 instances and store data on them separately from EC2 instances. This is known as an unattached EBS volume. Unattached EBS volumes can be created, attached, and detached from EC2 instances as needed. They can also be backed up and restored independently of EC2 instances.
Unattached EBS volumes can be useful for a variety of purposes, such as storing backups, archiving data, or serving as a data store for other AWS services. For example, unattached EBS volumes can be attached to Amazon Elastic Container Service (ECS) instances or Amazon Elastic Kubernetes Service (EKS) nodes to provide persistent storage for containerized applications.
In summary, while EBS volumes are typically used as persistent storage for EC2 instances, they can also be created and used independently of EC2 instances as unattached EBS volumes. The decision to attach or not attach an EBS volume to an EC2 instance depends on the specific use case and requirements
Q9: aws private link endpoint
AWS PrivateLink is a service that enables you to access AWS services over a private endpoint within your Virtual Private Cloud (VPC), rather than over the public internet. AWS PrivateLink provides secure and scalable connectivity between your VPC and AWS services, without exposing your traffic to the public internet.
Q10: S3 Standard-IA
S3 Standard-IA is suitable for data that is accessed less frequently but still needs to be available quickly. It can be used for storing backups, archives, disaster recovery data, or any other infrequently accessed data that needs to be stored in a cost-effective way.
- Retrieval fee: This fee is charged whenever you access your objects in S3 Standard-IA. The fee varies based on the retrieval request type, such as standard or bulk retrieval.
- Minimum storage duration fee: This fee is charged if you delete an object in S3 Standard-IA before it has been stored for a minimum duration of 30 days.
Q10: S3 One Zone-IA
S3 One Zone-IA is designed for infrequently accessed data that can be recreated if lost, or data that is already stored elsewhere and can be easily reproduced. It is less expensive than S3 Standard-IA and is intended for customers who want to store non-critical data in a single AZ at a lower cost.
