AWS EC2

Question 1

EBS - SSD - IOPs

Answer 1

• GP2 16000 IOPS

- IO1 - 64K IOPS

Question 2

EC2 Hibernation

Answer 2

• preserves in memory RAM on EBS
• Must be less than 150gb
• Can’t hibernate > 60 days
• On-demand and Reserved
• Windows, Linux AMI, Umbunto

Question 3

If you delete an ASG, what happens to the instances?

Answer 3

The instances will be terminated and the ASG will be deleted.

Question 4

EC2 ASGs can span AZs and Regions - true or false?

Answer 4

False… ASGs only span AZs not regions.

Question 5

How would you ensure only traffic to EC2 instance from an ELB

Answer 5

configure the security group of the ec2 instances to allow only traffic from the ELB

Question 6

Can you change instance size while running

Answer 6

Yes. Simple button push

Question 7

Two methods for accessing meta data of ec2 instances

Answer 7

169.254.169.254/latest/meta-data

Metadata Query Tool

Question 8

An elastic IP Address is public or private?

Answer 8

Public

Question 9

Easy way to move a private network between two ec2 instances (primary and standby) in failure of the primary?

Answer 9

Use an ENI. Move on failure.

Question 10

How does cross zone load balancing work with 1 instance in az1 and 4 instances in az2

Answer 10

All get 20%

Question 11

How does load balancing work with 1 instance in az1 and 4 instances in az2 without cross zone balancing

Answer 11

50% in az1. And 50% in az2 split across 4 instances

Question 12

Ec2 auto scaling picks the highest capacity policy if two events trigger at the same time. True or false

Answer 12

True

Question 13

You can use an internet gateway ID as the custom source for a security group rule?

Answer 13

False

Question 14

A recovered instance is identical to the original. Including Id. IPs. And metadata

Answer 14

True

Question 15

Allows elb to complete inflight requests?

Answer 15

Connection draining

Question 16

True or false, an ebs volume can be used normally while a snapshot is in progress?

Answer 16

True

Question 17

Load balancer is not sending data to an instance, Why?

Answer 17

Instance has failed the elb health check

Question 18

Can you Create a cloud watch alarm to reboot instances

Answer 18

True

Question 19

Cold Attach

Answer 19

Instance is being launched

Question 20

Hot attach

Answer 20

Instance is running

Question 21

Warm attach

Answer 21

Instance is stopped

Question 22

ASGs are only scaling out a portion of the instances …why?

Answer 22

VCPU based limits

Question 23

You can change the security group when the instance is in a running or stopped state?

Answer 23

True

Question 24

Default Configuration of the default NACL is

Answer 24

Allow

Question 25

Default Configuration of a custom NACL is

Answer 25

Deny

Question 26

Can you change a default security group

Answer 26

Yes

Question 27

Can you delete the default security group

Answer 27

No

Question 28

How do you allow a group of developers the ability to assume a role that allows access to aws services?

Answer 28

Create a policy that allows certain permissions needed by the devs Create a role using the policy just created Create a policy that allows that role to be assumed Attach the policy to the IAM group for devs

Question 29

Can an IAM group assume a role

Answer 29

No

Question 30

Assuming a role gives you permanent access

Answer 30

False. Roles grant temp access

Question 31

What aws resources can assume a role

Answer 31

A role can be assumed by a human user or a machine principal, such as an Amazon Elastic Computer Cloud (Amazon EC2) instance or an AWS Lambda function

Question 32

Auto scaling cooldown

Answer 32

Wait time scaling takes before takings action…. 5mins default

Question 33

Allows a spot instance to run uninterrupted for 1 to 6 hours

Answer 33

Spot block

Question 34

Default security group settings

Answer 34

Allow inbound from all within same group Allow all outbound

Question 35

What are the rules of a new security group?

Answer 35

Inbound Deny | Outbound Allow All

Question 36

What interfaces get DNS Hostnames using the default VPC?

Answer 36

Both Public and Private get Hostnames

Question 37

What interfaces get DNS Hostnames using the non-default VPC?

Answer 37

Private gets a DNS Hostname | Public does not get a DNS Hostname

Question 38

You can only attach an instance store to an EC2 instance at launch?

Answer 38

True.

Question 39

Do all instance types support encryption?

Answer 39

No... all families do, but not all types within those families.

Question 40

How can you optimize the EBS volumes attached to your EC2 instance?

Answer 40

Use EBS Optimized Instances

Question 41

Adding an ASG to an ELB... what health checks should be enabled on the ASG?

Answer 41

- EC2 which is by default | - ELB - so that the ASG knows the ELB has marked the instance as unhealthy

Question 42

Used to execute scripts from the console on all target EC2 instances

Answer 42

RUN Command

Question 43

How to use a new AMI in a Launch Configuration

Answer 43

- Create a New Launch Config using the new AMI | - Update the ASG to use the new Launch Config

Question 44

Placement group that enables workloads to achieve the low-latency network performance necessary for tightly-coupled node-to-node communication that is typical of HPC applications.

Answer 44

Cluster

Question 45

Placement group where instances do not share the underlying hardware with groups of instances….This strategy is typically used by large distributed and replicated workloads, such as Hadoop, Cassandra, and Kafka.

Answer 45

Partition

Question 46

Placement group that places a small group of instances across distinct underlying hardware to reduce correlated failures.

Answer 46

Spread

Question 47

Do gp2 ebs volumes support multi-attach

Answer 47

No. Multi-Attach is supported exclusively on Provisioned IOPS SSD volumes.

Question 48

Does hibernating an ec2 instance preserved an instance store volume or save the data

Answer 48

No

Question 49

During rebalancing, asg launches new before termination of old?

Answer 49

True

Question 50

Asg terminates unhealthy instances before launching new

Answer 50

True

Question 51

You have an asg across 3azs… what is the min capacity to be highly available?

Answer 51

2

Question 52

Used to customize dynamic ec2 configuration options

Answer 52

User data

Question 53

EC2 instance in an Auto Scaling group is having some issues that are causing it to launch new instances based on the dynamic scaling policy. How to troubleshoot and stop the current scaling...

Answer 53

Suspend the scaling processes responsible for launching new instances Place the EC2 instance that is experiencing issues into the Standby state you can suspend a scaling process... no need to disable

Question 54

The following are a few reasons why an instance might immediately terminate:

Answer 54

– You’ve reached your EBS volume limit. – An EBS snapshot is corrupt. – The root EBS volume is encrypted and you do not have permissions – The instance store-backed AMI that you used to launch the instance is missing a required part (an image.part.xx file).

Question 55

Using IP addresses as targets allows load balancing any application hosted in AWS or on-premises using IP addresses

Answer 55

true

Question 56

The logical ID is used to reference the resource in parts of the template for CloudFormation.

Answer 56

true

Question 57

Lambda runtimes

Answer 57

``` Java C# Go Ruby Power shell Node is ```

Question 58

Can instance volumes be used at boot volumes

Answer 58

Yes

Question 59

Asg rebalancing launches new before terminating

Answer 59

True. Unlike unhealthy

Question 60

Need DB with no write downtime?

Answer 60

Aurora multi master

Question 61

Reasons asg might not terminate instances

Answer 61

In impaired stas Health grace period not expired Failed elb check

Question 62

Asg de-registration delay can do what?

Answer 62

Delay the scaling in event allows the target to complete work

Question 63

Can you use a launch configuration with multiple instance types?

Answer 63

No. Use a launch template?

Question 64

When to use Enhanced networking

Answer 64

High throughput. 10gbs to 100gbs

Question 65

Can you hibernate an ec2 with instance store and keep the data

Answer 65

No. You will lose the data

Question 66

Status check failed_instance

Answer 66

Problems that require your attention…. Vs. “…_system” that require amz attention