Exam 2022

Question 1

Prometheus is an open source monitoring tool. Prometheus server uses the following approach:

Answer 1

The correct answer is “pull”. Prometheus server uses a pull-based approach, where it periodically scrapes metrics from monitored targets, rather than using a push-based or event-driven approach.

Question 2

An Amazon EC2 instance type defines:

Answer 2

The correct answer is “the hardware of the VM”. An Amazon EC2 instance type defines the hardware configuration of the virtual machine (VM), such as the number of virtual CPUs, amount of memory, and network performance, but does not directly define the amount of block storage in EBS or the software configuration of the VM.

Question 3

Which of the following is not a supported CRI implementation of the lastest version of Kubernetes (>1.24)

• cri-o
  -cri-dockerd
  -dockershim
  -containerd

Answer 3

dockershim

Docker shim was a component in Kubernetes for supporting Docker as the Container Runtime Interface (CRI). However, starting from Kubernetes version 1.20, Docker is no longer a supported runtime for Kubernetes. The Docker shim was deprecated in favor of other CRI implementations such as cri-o, cri-dockerd, and containerd.

Hence, dockershim is no longer a supported CRI implementation in the latest version of Kubernetes.

Question 4

Which of the following is not a serverless compute platform (FaaS)?

• openFaaS
• Knative
• OpenWhisk
• AWS Lambda
• OpenStack

Answer 4

• OpenStack

Question 5

A service registry is a database containing the network location of service instances. Which of the following is not a service registry tool?

• Netflix Eureka
• etcd
• istio

Answer 5

• istio

Question 6

What is the deployment model of a private cloud?

• It is a part of the public cloud only accessible to your computer
• Resources in your own data center are offered via a network.
• You run a cloud infrastructure such as open stack on the resource of your own data center accessible to your own users.
• it is a private subnet in a data center of a cloud provider

Answer 6

• You run a cloud infrastructure such as open stack on the resource of your own data center accessible to your own users.

Question 7

Which type of virtualization implementation is Docker based on?

• Function virtualization
• OS level virtualization
• Hosted virtualization
• Bare metal virtualization

Answer 7

• OS level virtualization

Question 8

What is Blue/Green?

Answer 8

the green version is deployed alongside the blue version without any traffic being sent to the green version. After testing of the green version, the LB is updated to send traffic to the green version.

Question 9

What is the main function of the jailer component in Firecracker?

Answer 9

• Limiting the available system calls for accessing the host kernel.

Question 10

Which of the following K8s autoscalers is not valid?

• Cluster Autoscaler
• Vertical Pod Autoscaler
• Scheduled Pod Autoscaler
• Horizontal Pod Autoscaler

Answer 10

• Scheduled Pod Autoscaler

Question 11

What is the purpose of command: docker rmi <image-name></image-name>

Answer 11

Delete an image from the local storage

Question 12

Which service is used for:

• IP address and port only accessible inside the cluster:
• Allow to route traffic to systems outside the K8s cluster:

NodePort Service
LB service
ClusterIP Service
ExternalName Service

Answer 12

• IP address and port only accessible inside the cluster:
  ClusterIP Service
• Allow to route traffic to systems outside the K8s cluster:
  ExternalName Service

Question 13

• PID
• mount
• network
• cgroup
• user

Answer 13

Question 14

What is Keystone in OpenStack?

Answer 14

Identity Management Service
(IMS)

Question 15

What is Neutron in OpenStack?

Answer 15

• responsible for managing networks, ports, and attachments on infrastructure for virtual resources.

Question 16

What does kubelet do?

Answer 16

Manages the lifecycle of every pod on the node

Question 17

What is IoTCloud?

Answer 17

The sensors are connected via an IoT network to a gateway. Data are streamed to the cloud where an IoT platform stores the data and allows processing. Rule-based on AI-based analysis might lead to actuations which are sent to actuators via a gateway and the IoT network.

Question 18

IoT Edge:

Answer 18

At the edge of the internet, edge servers are connected to the gateway and allow preprocessing of data from the sensors to reduce bandwidth and latency for actuations. The edge servers are mainly passively cooled with limited capabilities. IoT devices are connected through IoT Networks which can be short distance like bluetooth or wide area networks with low power characteristics like LoRa.

Question 19

IoT Fog

Answer 19

Consists of a distributed continuum of scaled computing resources. Fog nodes are location aware and thus computation can be flexibly done at a suited location. Fog nodes can be managed as stand-alone resources or as a federated set of resources. The fog service models are the same as for the cloud: SaaS, PaaS, IaaS.

Question 20

What is an example of IoT Fog?

Answer 20

Autonomous driving. Services might aggregate information from several cars over time and provide just-in-time low latency messages to the driver (like warnings). Fog is used for high computation so to predict how fast other cars will get to the free space or to integrate information from multiple edge systems.

Question 21

Compare FaaS and IaaS on performance

Answer 21

This means that the performance of FaaS is optimized for short, stateless, and isolated function invocations, with automatic scaling and low latency.

IaaS can offer higher performance compared to FaaS for long-running, stateful, and resource-intensive workloads.

In summary, the performance of FaaS and IaaS depends on the use case and the workload being run.

Question 22

Compare FaaS and IaaS on ease of application deployment

Answer 22

FaaS is designed to make it easy to deploy small, single-purpose functions that are triggered by events. This means that deploying an application on FaaS typically involves breaking down the application into individual functions, and deploying each function to the FaaS provider. This can simplify the deployment process and make it faster, as well as making it easier to scale and manage the application.

Deploying an application on IaaS involves setting up a virtual machine, configuring the operating system and application stack, and deploying the application.

Question 23

Compare FaaS and IaaS on costs.

Answer 23

FaaS can reduce costs because you do not pay for idle VMs and do not run replicas for resilience.

This can be more cost-effective if you have long-running, stateful, and resource-intensive workloads, as you can reserve and pay for the resources you need in advance. However, if your resource usage is variable or unpredictable, you may end up paying for resources that are not being used, leading to higher costs compared to FaaS.

Question 24

Vendor lock-in comparison of FaaS and IaaS

Answer 24

FaaS has more dependency to the service provider than IaaS. IaaS is less vendor dependent.

Additionally, proprietary APIs and services provided by the FaaS provider can further increase lock-in

Question 25

What is WebAssembly?

Answer 25

WebAssembly (Wasm) is a binary format for executing code on the web that runs at near-native speed. It is designed to be portable across different platforms and can be executed in modern web browsers, servers, and standalone environments. Wasm enables developers to write code in a variety of programming languages (such as C, C++, Rust, etc.), which are then compiled into Wasm binary format for deployment on the web. This allows for high-performance applications and games to run in the browser, which was previously not possible with JavaScript alone.

Question 26

What is standalone mode in WebAssembly?

Answer 26

Standalone mode means that the WebAssembly (Wasm) binary code is executed outside of a web browser, for example, as a standalone application on a computer or as part of a server-side application.

Question 27

How is an application compiled to WebAssembly executed on a system in standalone mode?

Answer 27

In standalone mode, Wasm applications are executed using an embedder. The Awsm embedder is reponsible for compiling Wasm binaries to native machine code using Just-in-Time engines.

Question 28

Explain the application level isolation mechanisms provided by WebAssembly

Answer 28

Sandboxing: Wasm code runs inside a sandbox, which is a protected environment that isolates it from the host system and other code running in the same environment. This ensures that Wasm code cannot access system resources or interact with other code in an uncontrolled manner.

Memory safety: Wasm code runs in its own memory space, separate from the memory of the host environment. This ensures that Wasm code cannot access or modify the memory of the host environment, and that the host environment cannot access or modify the memory of the Wasm code.

Question 29

Difference of WebAssembly isolation and containerisation?

Answer 29

Traditional containerisation approaches use Linux namespaces for isolation. Wasm provides application-level isolation.

Question 30

Answer 30