solutions architect professional Flashcards
Amazon kinesis use case
large amount of data
Kinesis is SQS on steroids
asynchronous tasks
single direction only
Kinesis firehose
is more for archiving. Proessing latency of 60seconds or higher.
Kinesis datastreams
custom processing per incoming record
sub-1 second processing latency
Choice of stream processing frameworks
Amazon SQS queues
Queues in each direction,
Changing the instance type will require restart
Use multi-az to reduce impact
With alias record points to one of the services
User is going to make the first request. Everything in the backgroupd Route53 will get the IP address and return the ip address. With alias you cannot return multiple ip addresses
redis is similar to multi-AZ
redis can scale up but not out. Once scaled up , cannot scale down( this may change)
Amazon DynamoDB
Can scale-out..
DynamoDB cache
You can use elastic cache. lower latency.
DynamoDB accelerator(DAX)
write-through cache. Lot of times elastic cache is cheper. But with elastic cache your application has to manage the cache but DAX is transparent
DynamoDB accelerator(DAX)
write-through cache. Lot of times elastic cache is cheper. But with elastic cache your application has to manage the cache but DAX is transparent
Amazon SQS and Dynamo DB
Stick SQS in front of Dynamo DB instead of scaling out Dynamo Db
DynamoDB global tables
it is kind of multi-master. app access the gloal table
OAI
Origin access identity
AWS cloud formation stack policy
can stop stack updates not stack deletion. This stack can still be deleted
AWS config is an inventory service. It runs when there is changes in your account and runs and finds out what is running on your system
create c
Amazon congnito
signup , password reset,
user pools
authenticate who are you. it will return the access keys that an application can use to access services. Handout credentials for anonymous users.
security trip A model
authentication, authorization and
How many IAM users can you create
5000 Max.
Amazon Cognito identity pool
allows unauthenticated users.
Enable cloud trail log flie integrity validation
generates a hash along with the file
Enable cloud trail log flie integrity validation
generates a hash along with the file
Can elastic beanstack automatically delete all application versions?
No
6 Rs of migrating
Retain, Re-host, Refactor(making a cloud read app), Re-platform, Replace, Retire( because it is not applicable or redundant)
APp mi9gration process
Plan, Bulid, run
What is hte limit for 1 VPN tunnel
1.5 Gig
Tag everything
great for auditing and cost estimation
Types of tags
Resource tags
Cost allocation tags
config is inventory service
Can be used to setup rules to apply remediation to non-conformant systems
Operational excellence prepare
AWS trusted advisor, AWS cloud formation, AWS systems manager, CloudWatch, Lambda for event response, Elasticsearch service, CodeCommit
Architect for component failure
Auto scaling groups, Instance auto recovery, route53 resource record sets
Amazon EBS snapshots help minimize the RPO
EBS volumes are stored in AZ. Move it to s3
WAF
cloudfront, api gateway, ALB