Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS > Set2(51-65) > Flashcards

Set2(51-65) Flashcards

1
Q

Q51: What EBS does not do

A

EBS is not fully managed, it does not scale automatically, rather you should do it manually

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Q52: AWS PrivateLink

A

AWS PrivateLink is a networking technology that allows you to securely access AWS services over a private network, without using the public internet. Here are some common use cases for AWS PrivateLink:

  • Private access to AWS services: AWS PrivateLink allows you to access AWS services such as Amazon S3, Amazon EC2, and Amazon RDS over a private network, providing an additional layer of security for your data and applications.
  • Integration with third-party services: You can use AWS PrivateLink to securely integrate with third-party services that are hosted in AWS, such as AWS Marketplace, AWS Partner Network (APN) partners, and software as a service (SaaS) providers.
  • Cross-account access: If you have multiple AWS accounts, you can use AWS PrivateLink to securely access resources across different accounts, without having to expose them to the public internet.
  • Compliance requirements: Some compliance requirements mandate that certain data cannot traverse the public internet. AWS PrivateLink can help you meet these requirements by providing a private network connection to the services you need.
  • High-performance applications: AWS PrivateLink provides a high-bandwidth, low-latency connection to AWS services, which can be beneficial for high-performance applications that require real-time data processing.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Q53: what is passthrough mode in NLB

A

Pass-through mode is a networking configuration option for an AWS Network Load Balancer (NLB) that allows the NLB to forward traffic directly to the target instances without modifying the source IP address or port.

When the NLB is configured in pass-through mode, the traffic flows directly to the target instances without any changes to the network packets. This means that the source IP address and port remain unchanged, and the target instances can see the original IP address and port of the client that initiated the connection.

Pass-through mode is particularly useful for applications that require end-to-end visibility of the source IP address, such as when you need to perform IP-based authentication, logging or auditing.

However, it is important to note that pass-through mode can only be used when the target instances are located in the same VPC as the NLB. If the target instances are located in a different VPC or on-premises, you will need to use a different networking configuration option, such as the NLB’s default mode, which modifies the source IP address of the incoming traffic.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Q53: Does ALB support passthrough mode
(end-2-end encryption scenario)

A

Terminating the SSL connection at the web servers requires you to change the load balancer listener from HTTPS to TCP. ALB doesn’t support this, only classic ELB. Further, if you were terminating the SSL at the web server the load balancer wouldn’t be able to inspect the request since it wouldn’t be able to decrypt it, so it wouldn’t be able to do all the fancy new routing stuff that the ALB supports.

If you actually want to use an ALB for the new features it provides, and you need end-to-end encryption, you will have to terminate SSL at the ALB and also have an SSL certificate installed on the web servers. The web server certificate could be something like a self-signed cert since only the ALB is going to see that certificate, not the client.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Q57: Athena

A

serverless service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Q59: RedShift

A

it can improve performance for repeat queries by caching the results.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Q59: AWS ElastiCache

A

AWS Elasticache is a fully-managed, in-memory data store service that makes it easy to deploy and manage high-performance, in-memory data stores in the cloud. Elasticache provides two popular open-source, in-memory caching engines: Redis and Memcached.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Q60: Amazon DynamoDB Accelerator (DAX)

A

Amazon DynamoDB Accelerator (DAX) is a fully-managed, in-memory cache for DynamoDB that can significantly improve the performance of read-heavy DynamoDB workloads. DAX provides a fast, highly available, and scalable in-memory caching solution that allows applications to retrieve data from DynamoDB with single-digit millisecond latencies.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Q65: AWS Cross-Region Replication (CRR)

A

AWS Cross-Region Replication (CRR) is a feature of Amazon Web Services that enables you to replicate data from a source Amazon S3 bucket to a destination S3 bucket located in a different AWS Region. CRR can be used to achieve several objectives, such as data backup and disaster recovery, data distribution across geographic regions, and compliance with data retention regulations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Q65: ElastiCache

A

ElastiCache redis has a good usage for auto-complention

How well did you know this?
1
Not at all
2
3
4
5
Perfectly

AWS (31 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions