Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
107 Cards in this Set
- Front
- Back
A logical group of instances within a single availability zone |
placement group |
|
RDS Database Types |
Aurora, PostgreSQL, mysql, mariadb,oracle, sqlserver |
|
A managed NoSQL database that offers extremely fast performance, seamless scalability and reliability, low cost and more.
|
DynamoDB |
|
A managed in-memory cache cloud service
|
ElastiCache |
|
A managed relational database service that offers , scale compute & storage, Multi-AZ availability, Read Replicas, and more. |
RDS |
|
A fast, highly scalable nonrelational database service
|
DynamoDB |
|
A relational database service with minimal administration |
RDS |
|
An easy-to-operate in-memory cache
|
ElastiCache |
|
A fast, petabyte-scale data warehousing service
|
Amazon RedShift |
|
This service delivers fast query performance by using columnar storage technology to improve I/O efficiency and parallelizing queries across multiple nodes
|
RedShift |
|
Provides developers with a highly scalable, flexible, and cost-effective capability to publish messages from an application and immediately deliver them to subscribers or other applications
|
SNS Simple Notification Service |
|
What protocols can SNS use? (7) |
HTTP/HTTPS Email-JSON Application SMS Lambda Email SQS |
|
Services to load and analyze streaming data, and also providing the ability for you to build custom streaming data applications for specialized needs.
|
Kinesis |
|
AWS DB platform most suitable for OLTP
|
RDS/Dynamo DB |
|
What happens to the I/O operations while you take a database snapshot
|
I/O is suspended for the duration |
|
What are SWF Domains? |
All the components of a workflow It is possible to have more than one workflow in a domain; however, workflows in different domains cannot interact with each other. |
|
S3 the durability of my files is
|
99.99999999 |
|
AWS Support Times |
Critical Urgent High Normal Low Enterprise 15min 1 4 12 24 Business ---- 1 4 12 24 Developer ---- ------ ----- 12 24 |
|
Custom VPC Default Communication external and internal |
By default, an instance in a nondefault VPC is not assigned a public IP address. When you create new subnets within a custom VPC, by default they can communicate with each other, across availability zones. |
|
What HTTP code would indicate that the upload was successful?
|
HTTP 200 |
|
Which RDS database engines support Read Replicas?
|
Oracle, Aurora, PostGreSql |
|
You require a custom Cloud Watch metric to monitor what?
|
Memory Usage |
|
URL for the newly created bucket?
|
NVA: http://s3.amazonaws.com/bucket http://buket.s3.amazonaws.comOther: http://bucket.s3-aws-region.amazonaws.com http://s3-aws-region.amazonaws.com/bucket |
|
In a 2-tier architecture what does the web-tier commonly represent in terms of the applications three logical components; |
UI and Business Intelligence (BI) |
|
Which DBs support Multi AZ deployment |
MySQL, Oracle, PostgreSQL, and Aurora |
|
Which DBs support Read Replica |
MySQL, PostgreSQL, and Aurora |
|
Which DBs are ideal for apps with low latency and predictable performance but don't need complex querying like joins or transactions? |
DynamoDB |
|
Which DBs support both document and key-value data models? |
DynamoDB |
|
What is memcached? |
Memory object caching system |
|
What is Redis? |
In-memory key-value store that supports sets and lists |
|
What is ElastiCache? |
Alternative to disk-based DB; provides fast managed in-memory cache with two engines: memcached and redis |
|
Use this instance when you know the amount of usage you will need |
Reserved Instance |
|
If you need an instance 100% of the time, purchase this type of instance |
Reserved Instance |
|
This type of instance is used only when you need an instance at the moment for as long as you need |
On-demand Instances |
|
Type of instance best for non-production instances |
Spot Instances |
|
S3 durability and availability |
11 9s durability 99.999999 99.99 availability |
|
Simple key-value store designed for unlimited object storage |
S3 Simple Storage Service |
|
Best storage choice for "easily reproducible data" |
RRS Reduced Redundancy Storage |
|
Storage that connects local data center software appliances to AWS S3 |
Amazon Storage Gateway |
|
How is data stored on Gateway-cached Volumes |
Data stored in amazon s3 and will cache frequently access data on-premise in the storage device Cloud-based storage solution |
|
How is data stored in Gateway-Stored Volume |
Stores all data locally in volumes; takes snapshots of the data and stores them on S3 More of a backup or disaster recovery solution |
|
Whats the difference between the two Amazon Storage Gateway types |
Gateway-cached volumes are cloud-based storage; Gateway-stored volumes are more disaster recovery/backup solution |
|
A service to take large amounts of on-premise data and physically transfer it to AWS |
AWS Import/Export |
|
Cheaper alternative to MySQL with better performance |
Amazon Aurora |
|
Alternative to MongoDB |
Amazon DynamoDB |
|
Hadoop clustering tool for big-data analytics |
Elastic Map Reduce (EMR) |
|
Which service guarantees execution of workflows |
Simple Work Flow Service (SWF) |
|
Which service is used to decouple infrastructure systems |
Simple Queue Service (SQS) |
|
Which service coordinates and manages the delivery of messages |
Simple Notification Service SNS |
|
Service to deploy complete application environments Automatically |
Elastic Beanstalk |
|
Service to allows you to "code" your infrastructure and deploy resources based off of pre-built templates |
CloudFormation |
|
What code does CloudFormation use |
JSON |
|
Used for monitoring logs |
CloudTrail |
|
Used for monitoring AWS services |
CloudWatch |
|
Allows the ability to connect on-premise Active Directory |
Directory Services |
|
How many IAM roles can an EC2 instance have? |
1 |
|
How do you add/remove IAM roles on an instance? |
You can't |
|
What is the S3 file limit? |
Unlimited objects/storage, but the file limits are 0 Bytes to 5 TB |
|
When to use S3 |
- hosting static files - Origin for CloudFront CDN - Hosting static websites - File shares for networks - Backup/Archiving (AWS Storage Gateway) |
|
Where are snapshots stored? |
S3 |
|
Where can you view snapshots? |
EC2 |
|
Public IP vs Elastic IP |
The public IP you get when an instance is created is ephemeral. If you stop that instance, when you start it up you'll get another random public IP; could be same, could be different. Elastic IP is "permanent" in the sense that you own it and you associate it to a specific AWS instance ID. |
|
To get NAT to work on a NAT instance what must you disable? |
Source/Destination check must be disabled on NAT instance |
|
What is a DB Subnet Group in RDS |
When you add an RDS instance to VPC, you need a subnet group: 3 Subnets located in 3 different AZs |
|
DB Security Group |
Was used in RDS for EC2 Classic; now RDS just uses VPC Security groups |
|
How can you keep a CloudFormation resource from being deleted by default? |
Configure "Retain" deletion policy: { "AWSTemplateFormatVersion" : "2010-09-09", "Resources" : { "myS3Bucket" : { "Type" : "AWS::S3::Bucket", "DeletionPolicy" : "Retain" } }} If a resource has no DeletionPolicy attribute, AWS CloudFormation deletes the resource by default. |
|
Configure linux Bastion Host |
Configure the security group on the bastion to allow SSH connections (TCP/22) only from known and trusted IP addresses. |
|
Connect via Bastion Host |
ssh -A user@BastionIPAddress Then ssh user@Instance |
|
Proactive Cycle Scaling |
Scaling that occurs at a fixed Interval |
|
Proactive Event-based Scaling |
Scaling that occurs in antiicpation of event |
|
Amazon Elastic Transcode |
Create a transcoding pipeline that specifies the input Amazon S3 bucket, the output Amazon S3 bucket, and an AWS IAM role
Create a transcoding job by specifying the input file, output files, and transcoding presets to use Optionally, you can specify thumbnails and job specific transcoding parameters like frame rate and resolution. |
|
Route 53 Resource Types |
A SOA AAAA SPF CNAME SRV MX TXT NS PTR |
|
Route 53 Conditional Routing Types |
Health Check, WRR (weighted round robin), LBR (latency-based routing) and Geolocation routing. |
|
What is GeoLocation |
Resource record for public hosted sites; set these attributes Location and Sublocation |
|
When should you use export/import? |
If data tx will take longer than one week. |
|
Can I monitor the network traffic in my VPC?
|
You can use the Amazon VPC Flow Logs feature to monitor the network traffic in your VPC
|
|
How do you create a peering connection to a VPC in a different Region?
|
You can't; peering VPCs must be in the same region |
|
Health Check Protocols |
TCP, HTTP, HTTPS, and SSL |
|
Explain Simple Routing Policy |
Use a simple routing policy when you have a single resource that performs a given function for your domain, Ex: one web server that serves content for the example.com website. |
|
Explain Weighted Routing Policy |
Use the weighted routing policy when you have multiple resources that perform the same function (for example, web servers that serve the same website) and you want Amazon Route 53 to route traffic to those resources in proportions that you specify |
|
Latency Routing Policy |
you have resources in multiple Amazon EC2 data centers that perform the same function and you want Amazon Route 53 to respond to DNS queries with the resources that provide the best latency. (You can create latency resource record sets using any record type that Amazon Route 53 supports except NS or SOA.) |
|
Failover Routing Policy |
(Public Hosted Only) Use the failover routing policy when you want to configure active-passive failover, in which one resource takes all traffic when it's available and the other resource takes all traffic when the first resource isn't available. |
|
Geolocation Routing Policy |
Use the geolocation routing policy when you want Amazon Route 53 to respond to DNS queries based on the location of your users. You can specify geographic locations by continent, by country, or by state in the United States: priority goes to the smallest geographic region |
|
DNS Active-Active Failover |
Use this failover configuration when you want all of your resources to be available the majority of the time. When a resource becomes unavailable, Amazon Route 53 can detect that it's unhealthy and stop including it when responding to queries. |
|
DNS Active-passive Failover |
Use this failover configuration when you want a primary group of resources to be available the majority of the time and you want a secondary group of resources to be on standby in case all of the primary resources become unavailable. |
|
Active-active-passive and other mixed configurations: |
You can combine alias and non-alias resource record sets to produce a variety of Amazon Route 53 behaviors. |
|
Route 53 Failover |
You create a group of resource record sets that all have the same name and type. You then configure Amazon Route 53 to check the health of the corresponding resources. Amazon Route 53 responds to DNS queries based on the health of your resources. |
|
Cloudwatch monitoring |
Basic Data is available automatically in 5-minute periods at no charge.
Detailed Data is available in 1-minute periods at an additional cost |
|
Kenisis Firehose |
Amazon Kinesis Firehose is the easiest way to load streaming data into AWS. It loads the Delivery Stream data into Amazon S3 and Amazon Redshift enabling real-time analytics |
|
Kenisis Streams |
Amazon Kinesis Streams allows for real-time data processing. With Amazon Kinesis Streams, you can continuously collect data as it is generated and direct it towards EC2 instances |
|
What are the two types of Directory Services |
Simple AD AWS Directory Service for Microsoft Active Directory (Enterprise Edition) |
|
When do you use Simple AD |
best choice if you have 5,000 or less users and don’t need the more advanced Microsoft Active Directory features. |
|
AWS Directory Service for Microsoft Active Directory (Enterprise Edition) |
Microsoft AD is your best choice if you have more than 5,000 users and need a trust relationship set up between an AWS hosted directory and your on-premises directories. |
|
What Record Type for 1 - CloudFront CDN 2 - ELB 3 - EC2 Instance 4 - Website in an S3 Bucket 5 - RDS Database 6 - Workmail |
1 - CloudFront CDN - ALIAS 2 - ELB - ALIAS 3 - EC2 Instance - A Record 4 - Website in an S3 Bucket - ALIAS 5 - RDS Database - CNAME 6 - Workmail- MX |
|
Route 53 Rules |
1) Do not CNAME your root domain. 2)Do not use A records for www.domain.com 3) Always redirect your naked domain.com to www.domain.com. |
|
What types of data are encrypted on an EBS volume |
Data at rest in the volume All snapshots created from the volume All disk I/O |
|
DynamoDB Client Side |
DynamoDB is available as a free, downloadable client-side application that you can run on your own computer. This edition of DynamoDB lets you write applications that use the DynamoDB API, but without actually using the Amazon DynamoDB web service. |
|
Launch Configuration Rules |
- Singlelaunch configuration with Multiple Auto Scaling groups. - Auto Scaling group can ONLY have 1 Launch Config Rule -you CANT MODIFY a launch configuration after you'vecreated it. |
|
Launch Config items (5) |
- ID of the AmazonMachine Image (AMI) - the instance type - a key pair - one or more security groups - block devicemapping. |
|
Auto Scaling group items (4) |
- you must specify a name - launch configuration - minimum numberof instances - maximum number of instances. |
|
What is an AD Connector |
AD Connector is a proxy service for connecting your on-premises Microsoft Active Directory to the AWS cloud without requiring complex directory synchronization or the cost and complexity of hosting a federation infrastructure. |
|
When should you use AD Connector |
When to useAD Connector is your best choice when you want to use your existing on-premises directory with AWS services. |
|
ENI behavior on termination. Diff between console created and cli created |
By default, elastic network interfaces that are automatically created and attached to instances using the console are set to terminate when the instance terminates. However, network interfaces created using the command line interface aren't set to terminate when the instance terminates. |
|
What happens when an RDS runs out of storage? |
When an RDS DB instance reaches the STORAGE_FULL state, there is not enough space available for performing basic operations, eventually preventing you to make connections or restart the instance.
|
|
Tag rule on RDS Resources |
If you add a tag to an Amazon RDS resource that has the same key as an existing tag on resource, the new value overwrites the old value.
A tag set can contain as many as ten tags, or it can be empty. |
|
RDS data charges between primary and standby |
Data transfer – You are not charged for the data transfer incurred in replicating data between your primary and standby. |
|
Amazon VPC provides three features that you can use to increase and monitor the security for your VPC:
|
Security groups Network access control lists (ACLs) Flow logs |