Storage Services

Question 1

S3

Answer 1

Simple Storage Solution

• an object storage service for the cloud that is highly available
• regional
• has access logs to track access

Question 2

Objects

Answer 2

S3 name for files

• can be public or private
• can be uploaded via console, CLI or via code

Question 3

Bucket

Answer 3

S3 name for directories

• essentially unlimited
• can hold millions of objects

Question 4

at what level can security be set for buckets?

Answer 4

at the bucket or object level

Question 5

what are 3 ways to set security on buckets?

Answer 5

1. ACLs
2. bucket policies
3. access point policies

Question 6

ACL

Answer 6

Access Control List

Question 7

what is unique about bucket naming?

Answer 7

they must be globally unique

Question 8

how is durability achieved?

Answer 8

data stored inside a region is replicated across multiple servers

Question 9

what is the S3 standard for durability?

Answer 9

99.999999999% (11 9’s)

Question 10

S3 Standard

Storage Class

Answer 10

• general purpose storage
• stored across multiple AZs
• low latency and high throughput

Question 11

when is S3 standard recommended?

Answer 11

for frequently accessed data, with standard durability and availability needs

Question 12

what is the S3 standard for availability?

Answer 12

99.99%

Question 13

S3 Intelligent Tier

Storage Class

Answer 13

• automatically moves your data to the most cost-effective storage class
• no retrieval fees
• standard durability and availability

Question 14

what is S3 Intelligent Tier recommended for?

Answer 14

new applications or unpredictable storage needs

Question 15

S3 Standard-Infrequent Access (IA)

Storage Class

Answer 15

for data that is accessed less frequently, but that needs rapid access
- stored across multiple AZs (standard durability)

Question 16

what is S3 Standard Infrequent Access (IA) recommended for?

Answer 16

long-lived data requiring immediate access

Question 17

S3 One-Zone Infrequent Access

Storage Class

Answer 17

for data that is infrequently accessed but requires rapid access.

• only stored in one AZ
• costs 20% less than IA
• reduced durability, standard availability

Question 18

when is S3 One-Zone Infrequent Access recommended?

Answer 18

intended for use cases with infrequently accessed data that is re-creatable, such as:

• storing secondary backup copies of on-premises data
• for storage that is already replicated in another AWS Region
• for compliance or disaster recovery purposes

Question 19

S3 Glacier

Storage Class

Answer 19

long term data storage

• very cheap
• takes longer to access your data, from minutes to 12 hours depending on your price.
• stored across multiple AZs

Question 20

when is S3 Glacier recommended?

Answer 20

for long-term backups needing cheaper storage, but requiring standard durability, that can sacrifice some availability

Question 21

S3 Glacier Deep Archive

Storage Class

Answer 21

like S3 Glacier, but slower

• stored across multiple AZs
• takes 12 - 24 hours to retrieve data

Question 22

when is S3 Glacier Deep Archive recommended?

Answer 22

for archives or compliance needs that don’t need to be accessed more than 1x/year

Question 23

S3 Outposts

Storage Class

Answer 23

durably and redundantly stores data across multiple devices and servers in your on-premises environment

Question 24

what is a good choice for long-term storage of master data that is infrequently accessed?

Answer 24

S3 Standard-IA

Question 25

what storage classes distribute data across a minimum of three geographically-separated Availability Zones to offer the highest level of resilience to AZ loss

Answer 25

S3 Standard, S3 Standard-IA and S3 Glacier

Question 26

which storage class can offer customers higher availability and durability than self-managed physical data centers, with the added benefit of having to pay only for what they use, costing 20% less than Standard-IA?

Answer 26

S3 One-Zone Infrequent Access

Question 27

when is Outposts recommended?

Answer 27

- when you need to meet data residency, regulatory, or compliance requirements - for high-demand workloads that need to run locally - as a step in your cloud migration journey to set up a cloud before actually moving to the cloud

Question 28

Amazon EBS

Answer 28

Elastic Block Store - like a flash drive you attach to your instance - called a Volume - data persists when instance is not running - can only be tied to one instance in one AZ

Question 29

What is Amazon EBS recommended for?

Answer 29

- quickly accessible data - running a database on an instance - long-term data storage

Question 30

EC2 Instance Store

Answer 30

Local storage that is physically attached to a host computer and cannot be removed. - fast I/O speeds - temporary storage (data loss occurs when instance is stopped)

Question 31

What is EC2 Instance Store recommended for?

Answer 31

- temporary storage needs | data replicated across multiple instances (ex: a load-balanced pool of web servers)

Question 32

Elastic File Store (EFS)

Answer 32

serverless network file system for sharing files - only supports Linux - more expensive than EBS - accessible across different AZs in the same region

Question 33

What is EFS recommended for?

Answer 33

- main directories for business-critical apps | - to lift & shift existing enterprise apps

Question 34

Storage Gateway

Answer 34

hybrid storage for on-prem to connect to cloud data

Question 35

What is Storage Gateway recommended for?

Answer 35

- moving backups to the cloud - reducing costs for hybrid storage - low-latency access to data

Question 36

What benefits do CDNs provide?

Answer 36

- ensure fast download times | - ensure low latency

Question 37

CDN

Answer 37

Content Delivery Network | - a mechanism to deliver content rapidly & efficiently for your geographic location

Question 38

Amazon Cloud Front

Answer 38

- CDN that provides global distribution w/ low latency - your app can exist in a single region but delivered globally - data can be restricted based on a location - speeds up delivery of static and dynamic web content - uses edge locations to cache content

Question 39

What is a Cloud Front distribution?

Answer 39

a collection of edge locations where files are cached

Question 40

How does caching work?

Answer 40

- If file exists in cache, return it to the user | - Else, pull file from the origin, put it in the cache, then return file to user

Question 41

What are use case for Cloud Front?

Answer 41

- used with S3 to deploy static websites - used with DDoS to prevent attacks - IP address blocking (by location)

Question 42

AWS Global Accelerator

Answer 42

- sends users thru the AWS global network, speeding up delivery - improves latency & availability of single-region apps - automatically re-routes traffic to healthy available region endpoints - low latency

Question 43

What kind of performance boost does Global Accelerator offer

Answer 43

60%

Question 44

S3 Transfer Acceleration

Answer 44

Improves content uploads/downloads to/from S3 buckets - provides fast transfer of files over long distances - uses Cloud Front's edge locations - customers around the world can upload to a central bucket

Question 45

VPC

Answer 45

Virtual Private Cloud - a foundational service that allows you to create a secure, private network in the AWS cloud where you launch your resources

Question 46

Where can a VPC exist?

Answer 46

It can span AZs within a single region

Question 47

what does networking use to connect computers across the globe?

Answer 47

virtual routers, firewalls and network management services

Question 48

subnet

Answer 48

an isolated local network

Question 49

private subnet

Answer 49

- allows you to split your network inside the VPS | - where you launch your EC2 and private databases

Question 50

public subnet

Answer 50

- resources you want made public

Question 51

NACL

Answer 51

Network Access Control List | - ensure the proper traffic is allowed into the subnet

Question 52

Router and Route Table

Answer 52

where you can define where network traffic is directed

Question 53

Internet Gateway

Answer 53

allows public traffic to the internet from the VPC

Question 54

VPC Peering

Answer 54

allows you to connect 2 VPS together to make them behave as one in a secure manner.

Question 55

IPv4 address

Answer 55

Internet Protocol version 4 - used to route most internet traffic today - uses a 32 bit address space

Question 56

CIDR Notation

Answer 56

Combines the IP address with its routing prefix