Stephane Flashcards
Direct Connect
bypasses the public Internet and establishes a secure, dedicated connection from your infrastructure into AWS
Site to Site VPN
VPN that enables you to create an encrypted connection over the public Internet between your Amazon VPC and your private IT infrastructure
Direct Connect vs Site to Site VPN
both gives a secure connection but direct connect is more secure because it bypasses the public internet unlike the Site to Site VPN
CloudTrail vs S3 Server access logging
CloudTrail tracks API access for infrastructure-changing events, in S3 this means creating, deleting, and modifying bucket while S3 Server access provides web server-style logging of access to the objects in an S3 bucket
The minimum capacity to be highly available is?
2
EMR
Elastic Map Reduce - helps creating Hadoop clusters (Big Data) to analyze and process vast amount of data
ASG has a dynamic Elastic IPs attachment feature - true or false
false; ASG does not have a dynamic Elastic IPs attachment feature
Application and Classic Load Balancers exposes ? as URL
fixed DNS
NLB exposes ? to the public web
fixed IP
Lambda’s timeout limit
15mins
S3 pre-signed URLs vs CloudFront signed URL
both restrict content but with CloudFront and OAI, the users are forced to go through Cloudfront and not use the S3 url
A SSL Wildcard certificate is a
single certificate with a wildcard character in the domain name field
AWS Lambda has no native in memory caching capability - T or F
true
Athena support the GLACIER storage class - True or False
False; Athena does not support the GLACIER storage class
How to decrease the Elastic Beanstalk deployment time?
- Create a Golden AMIwith the static installation components already setup
- Use EC2 UserData to customize the dynamic installation parts at boot time
