February 2024 Flashcards
SCMS
Secure Credential Management System
CONOPS
Concept of Operations
NGINX (4 common uses)
A web server, commonly used as…
reverse proxy
load balancer
mail proxy
HTTP cache
gunicorn
Green Unicorn is a Python Web Server Gateway Interface (WSGI) HTTP Server. Often paired with NGINX.
AWS IAM Groups Gotcha
Groups cannot contain groups
SCP (AWS Context)
Service Control Policies (only inside AWS Organizations, there are other perm-management control elsewhere)
Protocols supported by the Application Load Balancer (AWS)
HTTP, HTTPS, WebSocket
Protocols supported by the Network Load Balancer (AWS)
TCP, TLS (secureTCP), UDP
AWS IAM Advanced Policies (6)
aws:SourceIp
aws:RequestedRegion
ec2:ResourceTag/Project
aws:PrincipalTag/Department
aws:MultiFactorAuthPresent
aws:PrincipalOrdID
AWS IAM Advanced Policy Gotcha with S3 actions
Targeting buckets bucket-name-path
Targeting objects bucket-name-path/*
HDF5 (5 “things”)
Hierarchical Data Format
HDF5 is the latest version
B-tree indexing
resources are accessed POSIX style
faster than a RDB
AWS Route53 Health checks (3 kinds)
Health Checks
Calculated Health Checks (aggregate of health checks)
Cloudwatch Health Checks
AWS Draining
Concept of when an EC2 instance is going down. It must first serve all pending requests.
AWS Dynamic Scaling Policies (4)
Target Tracking Scaling
Simple/Step Scaling
Scheduled Actions
Predictive Scaling (ML based)
AWS Good Typical metrics to use to drive Scaling (4)
CPU utilization
Request Count Per Target
Avg. Network In/Out
Custom Cloud Watch