Stephane PE #6

Question 1

EC2 + DDB table + same AWS acct =

Answer 1

IAM service role + IAM role

Question 2

EC2 + EBS maxing out + licensing =

Answer 2

GP2 to IO1

Question 3

OTL + unpredictable spikes =

Answer 3

Aurora

Question 4

Rabbit MQ + quick migration =

Answer 4

MQ

Question 5

On prem + small traffic + quick turn around + cost =

Answer 5

Site to site VPN

Question 6

On prem + python + migrate =

Answer 6

Spot instance + spot block

Question 7

Monolith app + failure AZ + cost =

Answer 7

EC2 instance role +
Elastic IP +
ASG min=1, max=1, desired=1

Question 8

S3 + SQS + prem members =

Answer 8

2 SQS stan queues

Question 9

ETL + S3 + Redshift + serverless =

Answer 9

Glue

Question 10

Root + CloudTrail + new dev accounts not mod =

Answer 10

SCP

Question 11

Multi AZ + RDS MySQL DB + sched maintenance =

Answer 11

Downtime until upgrade complete

Question 12

RDS PostgreSQL + analytics + slowdown + cost =

Answer 12

Read replica + same region

Question 13

RDS MySQL DB + DB analytics + cost optimal =

Answer 13

Read replica + point read replica

Question 14

RDS + Multi AZ + on prem =

Answer 14

RDS + OS updates +
RDS auto standby failover standby

Question 15

Cloudfront + restricted content =

Answer 15

Signed URLs + signed cookies

Question 16

Caching + multi threading + RDB =

Answer 16

Elastic Memcached

Question 17

Caching layer replication + archival support =

Answer 17

Elastic redis

Question 18

Json + on prem + S3 =

Answer 18

On prem file gateway

Question 19

EC2 + low latency + Key Char Instance store vol =

Answer 19

AMI + instance store vol not preserved
Can’t detach from 1 instan and attach to diff instan

Question 20

EC2 + incorrectly config + True root EBS =

Answer 20

DeleteOnTermination + False

Question 21

EC2 + RDS MySQL DB + maintenance =

Answer 21

ASG + 2 EC2 + 2 AZ

Question 22

EC2 + EBS + heavy I/O =

Answer 22

RAID 0 +I/O performance more important than fault

Question 23

EC2 + same AZ + EBS =

Answer 23

Prov IOPS SSD EBS vol

Question 24

ECS cluster + EC2 + storage under 1 TB =

Answer 24

EFS Prov

Question 25

EC2 + 2 Private subnets + patch + 3rd party software + 2 NAT gateways + HA =

Answer 25

2 NAT gateways + N1 public subnet + N2 public subnet

Question 26

EC2 + private subnet + VPC + S3 + DDB table + private access =

Answer 26

Sep gateway endpt

Question 27

EC2 + DDB table + same AWS acct =

Answer 27

IAM service role + IAM role

Question 28

EC2 + EBS maxing out + licensing =

Answer 28

GP2 to IO1

Question 29

EC2 + on prem + minimize hardware failures =

Answer 29

Partition

Question 30

EC2 + CRM + ELB +Not =

Answer 30

2 instances zone A + 2 instances zone B

*Config not allowed for ELB also- can’t distrib incoming traffic for targets deployed in diff regions

Question 31

EC2 + ALB + attack =

Answer 31

WAF + rate based rule

Question 32

EC2 + single tenant + comply + cost =

Answer 32

Dedicated Insta

Question 33

EC2 + custom script =

Answer 33

Custom scripts + user data

Question 34

EC2 + unauthorized =

Answer 34

GuardDuty

Question 35

EC2 + ASG + TLS termination =

Answer 35

NLB public

*ALB = also supports TLS offloading + CLB = SSL offloading

Question 36

EC2 + ASG + 2 AZ =

Answer 36

New insta to replace terminated insta +
Rebalance doesn’t compromise performance

Question 37

EC2 + EFS =

Answer 37

IAM policy to control access + mount files
VPC security

Question 38

S3 + all objects uploaded encrypted =

Answer 38

-side-encrypyt

Question 39

S3 + SSE + AES 256 + no managed encrypt keys + cost =

Answer 39

SSE-S3

Question 40

S3 + RDS PostgreSQL + index =

Answer 40

App transverse S3 + RDS

Question 41

S3 + Redshift + after 30 d “not hot” + SQL query + Cost =

Answer 41

Cold data Athena + S3 Stan IA after 30 d

Question 42

S3 + EC2 + Analysis =

Answer 42

S3 Event Noti + SQS

Question 43

S3 + big data analysis =

Answer 43

EMR + Glue

Question 44

S3 encrypt + default data at rest + in transit =

Answer 44

Glacier

Question 45

S3 + cloudfront =

Answer 45

OAI

Question 46

EC2 + ASG + TLS termination =

Answer 46

NLB public

*ALB = also supports TLS offloading + CLB = SSL offloading

Question 47

Bastion host sol + HA =

Answer 47

NLB public

Question 48

Custom domain + private hosted zones R53 + VPC =

Answer 48

Dnssupport + Dnshostnames

Question 49

Sync trans + 3 tier + traffic spikes =

Answer 49

Horizontal + ASG + ALB

Question 50

POSIX + achieved =

Answer 50

EFS IA

Question 51

VPC + on prem + DC =

Answer 51

2 Sep DC

Question 52

S3 + encrypt + Proprietary encrypt algo =

Answer 52

Client side encrypt

Question 53

Windows + on prem =

Answer 53

FSX windows

Question 54

20 PB + shortest time + remote location =

Answer 54

Snowmobile

Question 55

S3 + freq access & sit idle + cost =

Answer 55

S3 Intell-Tier

Question 56

Real time + high latency + serverless =

Answer 56

KDS + Fargate

Question 57

SQS Que + saves time & costs + high throu + resp msg =

Answer 57

SQS temp

Question 58

EC2 + HPC =

Answer 58

Cluster + Fab

Question 59

Org + Firewall =

Answer 59

WAF + VPC security + Shield Adv

Question 60

Active directory + on prem + Microsoft =

Answer 60

Microsoft AD

Question 61

DDB major spikes + decouple + middleware =

Answer 61

SQS

Question 62

Lambda + S3 + 15m fail =

Answer 62

Lambda timed out

Question 63

2 insta + 2 AZ + EC2 public subnets + public IP addresses =

Answer 63

EC2 private IP

Question 64

EC2 + multi AZ + HA + EBS =

Answer 64

EBS +EC2 + config S3

Question 65

EC2 same instan ECS + Mircro service =

Answer 65

ALB + dynamic port map

Question 66

IAM user + S3 write & read + minimal changes =

Answer 66

Change group + attach policy

Question 67

Spot blocks =

Answer 67

allow 1-6 hrs no interruption

Question 68

Spot instan =

Answer 68

spare EC2 cap saves 90% off On-Demand + interrupt w 2m notification

Question 69

Spot fleet =

Answer 69

set of spot instan & on demand instan to meet target cap