SQS, SNS, Kinesis

Question 1

• Oldest offering (over 10 years old)
• Fully managed service, used to decouple applications
• Attributes:
  
  • Unlimited throughput, unlimited number of messages in queue
  • Default retention of messages: 4 days, maximum of 14 days
  • Low latency (<10 ms on publish and receive)
  • Limitation of 256KB per message sent
• Can have duplicate messages (at least once delivery, occasionally)
• Can have out of order messages (best effort ordering)

Answer 1

Amazon SQS – Standard Queue

Question 2

Produced to SQS using the ______?

Answer 2

SDK (SendMessage API)

Question 3

The message is ___________ in SQS until a consumer deletes it

Answer 3

persisted

Question 4

SQS – Producing Messages - Message retention

Answer 4

default 4 days, up to 14 days

Question 5

What is the SQS standard

Answer 5

unlimited throughput

Question 6

SQS Consumers run on ____?

Answer 6

EC2 instances
On-premise servers
AWS Lambda

Question 7

How many messages can a SQS Consumer receive at a time?

Answer 7

10

Question 8

SQS Consumer - Delete the messages using the __________ API

Answer 8

DeleteMessage

Question 9

• Consumers receive and process messages in parallel
• At least once delivery
• Best-effort message ordering
• Consumers delete messages after processing them
• We can scale consumers horizontally to improve throughput of processing

Answer 9

SQS – Multiple EC2 Instances Consumers

Question 10

Amazon SQS - Encryption

Answer 10

• In-flight encryption using HTTPS API
• At-rest encryption using KMS keys
• Client-side encryption if the client wants to perform encryption/decryption i

Question 11

Amazon SQS - Access Controls

Answer 11

IAM policies to regulate access to the SQS API

Question 12

2 uses for SQS Access Policies?

Answer 12

• Useful for cross-account access to SQS queues
• Useful for allowing other services (SNS, S3…) to write to an SQS queue

Question 13

After a message is polled by a consumer, it becomes _______ to other consumers

Answer 13

invisible

Question 14

By default, the “message visibility timeout” is __________?

Answer 14

30 seconds

Question 15

If a message is not processed within the visibility timeout, it will be processed ___________?

Answer 15

TWICE

Question 16

A consumer could call the ____________ API to get more time

Answer 16

ChangeMessageVisibility

Question 17

What happens if a visibility timeout is high (hours)?

Answer 17

consumer crashes, re-processing will take time

Question 18

What happens if visibility timeout is too low (seconds)?

Answer 18

we may get duplicates

Question 19

If someone wants to decrease the latency and increase efficiency and decrease there API calls to a SQS Queue .. what should they do?

Answer 19

Long Polling

Question 20

• Limited throughput: 300 msg/s without batching, 3000 msg/s with
• Exactly-once send capability (by removing duplicates)
• Messages are processed in order by the consumer

Answer 20

Amazon SQS – FIFO Queue

Question 21

What if you want to send one message to many receivers?

Answer 21

Amazon SNS

Question 22

• The “event producer” only sends message to one SNS topic
• As many “event receivers” (subscriptions) as we want to listen to the SNS topic notifications
• Each subscriber to the topic will get all the messages (note: new feature to filter messages)
• Up to 12,500,000 subscriptions per topic
• 100,000 topics limit

Answer 22

Amazon SNS

Question 23

What are the 2 types of publishing for AWS SNS?

Answer 23

Topic Publish (using the SDK)
Direct Publish (for mobile apps SDK)

Question 24

Amazon SNS –
* Create a topic
* Create a subscription (or many)
* Publish to the topic

Answer 24

Topic Publish (using the SDK)

Question 25

Amazon SNS –
* Create a platform application
* Create a platform endpoint
* Publish to the platform endpoint
* Works with Google GCM, Apple APNS, Amazon ADM…

Answer 25

Direct Publish (for mobile apps SDK)

Question 26

What is SNS Encryption?

Answer 26

• In-flight encryption using HTTPS API
• At-rest encryption using KMS keys
• Client-side encryption if the client wants to perform encryption/decryption itself

Question 27

2 uses for the SNS Access Policies

Answer 27

• Useful for cross-account access to SNS topics
• Useful for allowing other services ( S3…) to write to an SNS topic

Question 28

• Push once in SNS, receive in all SQS queues that are subscribers
• Fully decoupled, no data loss
• SQS allows for: data persistence, delayed processing and retries of work
• Ability to add more SQS subscribers over time
• Make sure your SQS queue access policy allows for SNS to write
• Cross-Region Delivery: works with SQS Queues in other regions

Answer 28

SNS + SQS: Fan Out

Question 29

For the same combination of: event type (e.g. object create) and prefix (e.g. images/) you can only have one S3 Event rule.
What do you use if you want to send the same S3 event to many SQS queues?

Answer 29

Fan Out Method

Question 30

With SNS - FIFO Topics, what type of SQS queues can you have as subcribers?

Answer 30

SQS FIFO

Question 31

Does Amazon SNS – FIFOTopic have limited throughput?

Answer 31

YES! Just like SQS FIFO

Question 32

• JSON policy used to filter messages sent to SNS topic’s subscriptions
• If a subscription doesn’t have a filter policy, it receives every message

Answer 32

SNS – Message Filtering

Question 33

• Makes it easy to collect, process, and analyze streaming data in real-time
• Ingest real-time data such as: Application logs, Metrics, Website clickstreams, IoT telemetry data…

Answer 33

Kinesis

Question 34

capture, process, and store data streams

Answer 34

Kinesis Data Streams

Question 35

load data streams into AWS data stores

Answer 35

Kinesis Data Firehose

Question 36

analyze data streams with SQL or Apache Flink

Answer 36

Kinesis Data Analytics

Question 37

capture, process, and store video streams

Answer 37

Kinesis Video Streams

Question 38

What are the 4 Kinesis Products?

Answer 38

Kinesis Data Streams
Kinesis Data Firehose
Kinesis Data Analytics
Kinesis Video Streams

Question 39

Kinesis Data Streams - Retention

Answer 39

between 1 day to 365 days

Question 40

Does Kinesis Data Streams have the ability to reprocess (replay) data??

Answer 40

YES

Question 41

Once data is inserted in Kinesis, it ________?

Answer 41

can’t be deleted (immutability)

Question 42

Does data that share the same partition go to the same shard?

Answer 42

YES

Question 43

What is it called when data shares the same partition and goes to the same shard?

Answer 43

Ordering

Question 44

What are 3 examples of Kinesis Data Streams Producers?

Answer 44

AWS SDK, Kinesis Producer Library (KPL), Kinesis Agent

Question 45

What are the 2 different types and they’re examples of Kinesis Data Streams Consumers?

Answer 45

Write your own: Kinesis Client Library (KCL), AWS SDK
Managed: AWS Lambda, Kinesis Data Firehose, Kinesis Data Analytics,

Question 46

Kinesis Data Streams – Capacity Modes (2)

Answer 46

Provisioned mode
On-demand mode

Question 47

Kinesis Data Streams – Capacity Modes:
* No need to provision or manage the capacity
* Default capacity provisioned (4 MB/s in or 4000 records per second)
* Scales automatically based on observed throughput peak during the last 30 days
* Pay per stream per hour & data in/out per GB

Answer 47

On-demand mode

Question 47

Kinesis Data Streams – Capacity Modes:
* You choose the number of shards provisioned, scale manually or using API
* Each shard gets 1MB/s in (or 1000 records per second)
* Each shard gets 2MB/s out (classic or enhanced fan-out consumer)
* You pay per shard provisioned per hour

Answer 47

Provisioned mode

Question 48

• Control access / authorization using IAM policies
• Encryption in flight using HTTPS endpoints
• Encryption at rest using KMS
• You can implement encryption/decryption of data on client side (harder)
• VPC Endpoints available for Kinesis to access within VPC
• Monitor API calls using CloudTrail

Answer 48

Kinesis Data Streams Security

Question 49

Fully Managed Service, no administration, automatic scaling, serverless

Answer 49

Kinesis Data Firehose

Question 50

What are 3 consumers (and examples) for Kinesis Data Firehose

Answer 50

• AWS: Redshift / Amazon S3 / OpenSearch
• 3rd party partner: Splunk / MongoDB / DataDog / NewRelic / …
• Custom: send to any HTTP endpoint

Question 51

How do you get charged for using Kinesis Data Firehose

Answer 51

Pay for data going through Firehose

Question 52

What is Kinesis Data Firehose latency?

Answer 52

• Near Real Time
• 60 seconds latency minimum for non full batches
• Or minimum 1MB of data at a time

Question 53

Does Kinesis Data Firehose support many data formats, conversions, transformations, compression

Answer 53

YES

Question 54

Does Kinesis Data Firehose support custom data transformations using AWS Lambda

Answer 54

YES

Question 55

Where can Kinesis Data Firehose send failed or all data?

Answer 55

a backup S3 bucket

Question 56

Kinesis Data Streams vs Firehose

Answer 56

Kinesis Data Streams:
* Streaming ser vice for ingest at scale
* Write custom code (producer / consumer)
* Real-time (~200 ms)
* Manage scaling (shard splitting / merging)
* Data storage for 1 to 365 days
* Supports replay capability

Kinesis Data Firehose:
* Load streaming data into S3 / Redshift / OpenSearch / 3rd party / custom HTTP
* Fully managed
* Near real-time (buffer time min. 60 sec) * Automatic scaling
* No data storage
* Doesn’t support replay capability

Question 57

How is data sent into Kinesis?

Answer 57

using a Partition Key

Question 58

Does the same key always go to the same shard?

Answer 58

YES

Question 59

What is similar to Partition Key in SQS?

Answer 59

Group ID

Question 60

• Consumer “pull data”
• Data is deleted after being consumed
• Can have as many workers (consumers) as we want
• No need to provision throughput
• Ordering guarantees only on FIFO queues
• Individual message delay capability

Answer 60

SQS

Question 61

• Push data to many subscribers
• Up to 12,500,000 subscribers
• Data is not persisted (lost if not delivered)
• Pub/Sub
• Up to 100,000 topics
• No need to provision throughput
• Integrates with SQS for fan- out architecture pattern
• FIFO capability for SQS FIFO

Answer 61

SNS