TD Exam 3 - Short review

Question 1

Does Fargate have ephemeral storage by default

Answer 1

Yes, 20 GiB

Question 2

Can you use any docker image in Lambda

Answer 2

No, you have to refactor the code and build app from AWS-provided base image

Question 3

Is there downtime when using AWS Database Migration Service

Answer 3

There is virtually none.

Question 4

Are ongoing changes replicated when using Database Migration Service

Answer 4

Yes

Question 5

Does taking a snapshot to migrate a database entail downtime

Answer 5

Yes

Question 6

Can you change an Aurora instance class to serverless

Answer 6

No

Question 7

Are you billed when your on-demand EC2 instance is preparing to hibernate with a “stopping” state

Answer 7

Yes

Question 8

Are you billed when your on-demand EC2 is in “pending” state

Answer 8

No

Question 9

Are you billed when your reserved instance is in “Terminated” state

Answer 9

Yes

Question 10

Are you billed when your Spot instance is preparing to stop with a “stopping” state

Answer 10

No

Question 11

Can you have a retention period of 90 days for RDS automated backups

Answer 11

No, max is 35 days

Question 12

Can you configure RDS to automatically export a backup to S3 customer-managed bucket

Answer 12

No, this has to be done manually

Question 13

What should you use to have an RDS backup with 90 days retention policy

Answer 13

AWS Backup

Question 14

What is S3 Glacier expedited retrieval

Answer 14

Allows you to access Glacier data rapidly (1-5 mins for below 250 MB)

Question 15

What is provisioned retrieval capacity for S3

Answer 15

It ensures that capacity for expedited retrieval is available when you need it

Question 16

What is the capacity of an expedited retrieval unit

Answer 16

3 expedited retrieval every five minutes and 150 MB/s

Question 17

What is the length of bulk retrieval

Answer 17

5-12 hours

Question 18

What is active-passive failover

Answer 18

When you want the secondary to be on standby

Question 19

What is active-active failover

Answer 19

When you want all of your resources to be available the majority of the time

Question 20

Can you have active-active failover with one primary and one secondary

Answer 20

No

Question 21

Can you use healthchecks with R53 weighted routing

Answer 21

Yes

Question 22

What happens when you use Healthcheck with R53 weighted routing

Answer 22

If a selected record is unhealthy, the process of selection is repeated until a healthy record is selected

Question 23

Is it true that EC2 instances in a private subnet can communicate with the internet only if they have an elastic IP

Answer 23

No, it can also have a public IP via a NAT instance or NAT gateway

Question 24

What is every subnet created automatically associated with

Answer 24

The main route table of the VPC

Question 25

What makes a subnet public

Answer 25

If it’s traffic is routed to an internet gateway

Question 26

What is the allowed block sizes for a VPC

Answer 26

/16 (65536 IPs and /28 (16 IPs)

Question 27

Which is more cost-effective, Parameter Store or Secrets Manager?

Answer 27

Parameter store

Question 28

What should you use if you are storing mostly application parameters, Parameter Store or Secrets Manager?

Answer 28

Parameter Store

Question 29

Are you still billed for a stopped reserved instance

Answer 29

Yes

Question 30

What should you do to avoid being billed from a no-longer needed Reserved instance

Answer 30

Terminate it
If it is still running after reservation term, you get charged on-demand
If it is only stopped, it could be started up again
Also, you would be charged if you had Elastic IP adresses

Question 31

Can you sell EC2 reservations

Answer 31

Yes, using the AWS Reserved Instance Marketplace

Question 32

What is AWS Glue job bookmarking

Answer 32

It is a mechanism that allows AWS Glue to keep track of where a job is left off in case it gets interrupted or fails for any reason

Question 33

How does Glue Job bookmarking work

Answer 33

By storing the state of a job in a data store independant from the job itself

Question 34

What is instance hibernation

Answer 34

Allows you to pause and resume instances, reduces startup time

Question 35

What do you pay for when an instance is in hibernation

Answer 35

EBS volumes and Elastic IP

Question 36

How do you enable hibernation for an existing ec2 instance

Answer 36

You have to migrate your app to a new EC2 instance

Question 37

Can you enable or disable hibernation on an instance after it has been created

Answer 37

No

Question 38

Why would requests fail when you use the EC2 API to launch 50 instances in an AZ

Answer 38

There is a vCPU-based on-demand instance limit per region

Question 39

How do you increase the limit of EC2 instances you can launch in a region

Answer 39

Submit a limit increase form to AWS to increase the vCPU-based limit per region

Question 40

What is Amazon DynamoDB Accelerator (DAX)

Answer 40

Fully managed, HA, in-memory cache for dynamodb that delivers up to 10x performance improvement

Question 41

Is Auto-scaling enabled by default in DynamoDB

Answer 41

No

Question 42

How do you increase performance of a serverless app based on Dynamodb, API Gateway and lambda

Answer 42

Turn on caching (API Gateway)
Enable DynamoDB global replication
Enable DynamoDB Accelerator (DAX) and ensure Auto Scaling is enabled and increase maximum provisioned reand and write capacity

Question 43

What is AWS Transit Gateway

Answer 43

It provides a hub and spoke design for connecting VPCs and onprem networks

Question 44

Can VPN provide consistent and dedicated access to onprem network

Answer 44

No

Question 45

If a company has DX connection and wants its AWS accounts to have consistent and dedicated access to its network services, what should it do?

Answer 45

Create new DX Gateway and integrate it with existing DX Connection
Set up Transit Gateway between AWS accounts and associate it with Direct Connect gateway

Question 46

What is Firehose used for

Answer 46

Load streaming data into data stores and analytics tools

Question 47

What is AppSync used for

Answer 47

It makes it easy to build collaborative apps that keep shared data updated in RT

Question 48

What is CReationPOlicy used for in CloudFormation

Answer 48

Prevent a resource status from reaching create complete until success signals received (or timeout)

Question 49

How do you send a success signal with CloudFormation

Answer 49

cfn-signal helper script

Question 50

What do you do to ensure read requests are load balanced between read replicas in Aurora

Answer 50

Use built-in reader endpoint

Question 51

Which is cheaper, interface endpoint or gateway endpoint

Answer 51

Gateway endpoint

Question 52

What do you pay for when using a gateway endpoint

Answer 52

No additional charge, you still pay standard charges for data transfer and resource usage

Question 53

What do you pay for when using interface endpoint

Answer 53

Hourly rate for every provisioned Interface endpoint + standard rates

Question 54

What should you do to increase disk space without impacting performance in RDS

Answer 54

Modify db instance settings to enable storage autoscaling

Question 55

Is there downtime when using RDS autoscaling

Answer 55

No

Question 56

What is a potential downside of manually increasing allocated db instance storage for RDS

Answer 56

Might cause performance degradation during the change

Question 57

How do you enforce different permissions to IAM users that do not have MFA

Answer 57

You can use an IAM policy

Question 58

What happens to EBS root volumes by default when an instance is terminated

Answer 58

They are deleted

Question 59

How can you prevent EBS root volume deletion on instance termination

Answer 59

Set DeleteOnTermination attribute of EBS volumes

Question 60

What is SNI Custom SSL

Answer 60

Allows multiple domains to serve SSL over same IP

Question 61

When can you use an IAM policy to allow access to KMS key

Answer 61

If key policy explicitly allows it

Question 62

What is AWS Cost Explorer

Answer 62

Service that helps ou visualize, understand and analyze AWS costs and usage

Question 63

What should you use if you want to programmatically query cost and usage data

Answer 63

Cost Explorer API

Question 64

How long are data records kept for in Kinesis by default

Answer 64

24h

Question 65

What is the maximum data retention period for kinesis

Answer 65

365 days

Question 66

What is a limitation when running lambda inside a VPC

Answer 66

It will need an appropriate number of subnet IPs and ENIs

Question 67

What kind of exception will you get if your lambda inside a subnet runs out of IP or ENI

Answer 67

EC2ThrottleException

Question 68

What is an Elastic Fabric Adapter

Answer 68

Network device to accelerate HPC and machine learning applications