Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

AWS Study Deck - SAA > Chapter 6 - Content Delivery: Amazon Route 53, Amazon Cloudfront > Flashcards

Chapter 6 - Content Delivery: Amazon Route 53, Amazon Cloudfront Flashcards

1
Q

What are the three functions provided by Amazon Route 53? Choose 3.

  1. Domain registration
  2. Digital Certificates
  3. DNS routing
  4. Health checking
A
  1. Domain registration
  2. Digital Certificates
  3. DNS routing
  4. Health checking
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which of the following AWS resource you can route traffic to using Route 53? Choose 3.

  1. Amazon API Gateway, Amazon CloudFront, Amazon EC2
  2. AWS Elastic Beanstalk, Elastic Load Balancing, Amazon RDS
  3. AWS Step Functions , AWS CloudFormation , AWS OpsWorks
  4. Amazon S3, Amazon Virtual Private Cloud (Amazon VPC), Amazon WorkMail
A
  1. Amazon API Gateway, Amazon CloudFront, Amazon EC2
  2. AWS Elastic Beanstalk, Elastic Load Balancing, Amazon RDS
  3. AWS Step Functions , AWS CloudFormation , AWS OpsWorks
  4. Amazon S3, Amazon Virtual Private Cloud (Amazon VPC), Amazon WorkMail
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the different types of hosted zone that can be created in Amazon Route 53?

  • Public hosted zone
  • VPC hosted zone
  • Private hosted zone
  1. 1 and 2
  2. 2 and 3
  3. 1,2,3
  4. 1 and 3
A
  1. 1 and 2
  2. 2 and 3
  3. 1,2,3
  4. 1 and 3
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which of the following statements are correct about Route 53 hosted zone? Choose 4.

  1. A hosted zone is a container for records, and records contain information about how you want to route traffic for a specific domain.
  2. A hosted zone and the corresponding domain have the same name.
  3. A hosted zone and the corresponding domain name can be different.
  4. Public hosted zones contain records that specify how you want to route traffic on the internet.
  5. Private hosted zones contain records that specify how you want to route traffic in an Amazon VPC.
A
  1. A hosted zone is a container for records, and records contain information about how you want to route traffic for a specific domain.
  2. A hosted zone and the corresponding domain have the same name.
  3. A hosted zone and the corresponding domain name can be different.
  4. Public hosted zones contain records that specify how you want to route traffic on the internet.
  5. Private hosted zones contain records that specify how you want to route traffic in an Amazon VPC.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which of the following records can be in the hosted zone example.com? Choose 3.

  1. www.example.com
  2. www.example.us
  3. accounting.tokyo.example.com
  4. ichiro@example.com
A
  1. www.example.com
  2. www.example.us
  3. accounting.tokyo.example.com
  4. ichiro@example.com
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

You have registered the DNS name example.com, for which of the following you cannot create a CNAME record type in the hosted zone?

  1. example.com
  2. www.example.com
  3. newproduct.example.com
  4. mail.example.com
A
  1. example.com
  2. www.example.com
  3. newproduct.example.com
  4. mail.example.com
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which DNS record type is used to route traffic to an IPv4 address?

  1. An A record
  2. An AAAA record
  3. A CNAME record
  4. A PTR record
A
  1. An A record
  2. An AAAA record
  3. A CNAME record
  4. A PTR record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which DNS record type is used to resolve a domain name to another domain name?

  1. A NS record
  2. A SOA record
  3. A CNAME record
  4. A PTR record
A
  1. A NS record
  2. A SOA record
  3. A CNAME record
  4. A PTR record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Which DNS record type is used to resolve a domain name to another domain name?

  1. A NS record
  2. A SOA record
  3. A CNAME record
  4. A PTR record
A
  1. A NS record
  2. A SOA record
  3. A CNAME record
  4. A PTR record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Which DNS record type is used to resolve an ip address to another domain name?

  1. A NS record
  2. A SOA record
  3. An Alias record
  4. A PTR record
A
  1. A NS record
  2. A SOA record
  3. An Alias record
  4. A PTR record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which DNS record type is used to define the mail server used for a domain and ensure the email messages are routed correctly?

  1. An A record
  2. A MX record
  3. An Alias record
  4. A PTR record
A
  1. An A record
  2. A MX record
  3. An Alias record
  4. A PTR record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which DNS record type is used by mail server to combat spam and tells a receiving mail server what IP addresses are authorized to send an email from a particular domain?

  1. An SPF record
  2. A MX record
  3. A Text record
  4. A PTR record
A
  1. An SPF record
  2. A MX record
  3. A Text record
  4. A PTR record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Which DNS record type is used to store text information?

  1. An SPF record
  2. A MX record
  3. A Text record
  4. A PTR record
A
  1. An SPF record
  2. A MX record
  3. A Text record
  4. A PTR record
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which of the following statements are correct for Route 53 Alias record type? Choose 2.

  1. An alias record can only redirect DNS queries to selected AWS resources.
  2. An alias record can redirect DNS queries to any DNS record.
  3. In most configurations, you can create an alias record that has the same name as the hosted zone (the zone apex).
  4. You can’t create an alias record that has the same name as the hosted zone (the zone apex).
A
  1. An alias record can only redirect DNS queries to selected AWS resources.
  2. An alias record can redirect DNS queries to any DNS record.
  3. In most configurations, you can create an alias record that has the same name as the hosted zone (the zone apex).
  4. You can’t create an alias record that has the same name as the hosted zone (the zone apex).
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

For which of the following you can create route 53 alias record? Choose 3.

  1. Amazon API Gateway custom regional API or edge-optimized API, Amazon VPC interface endpoint, CloudFront distribution, Elastic Beanstalk environment
  2. ELB load balancer, AWS Global Accelerator, Amazon S3 bucket
  3. Another Route 53 record in the same hosted zone
  4. AWS OpsWorks, Aws CodePipeline, AWS CloudFormation
A
  1. Amazon API Gateway custom regional API or edge-optimized API, Amazon VPC interface endpoint, CloudFront distribution, Elastic Beanstalk environment
  2. ELB load balancer, AWS Global Accelerator, Amazon S3 bucket
  3. Another Route 53 record in the same hosted zone
  4. AWS OpsWorks, Aws CodePipeline, AWS CloudFormation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

You are using Amazon Route 53 for domain registration and DNS service for your web application which you will be deploying on EC2 instances behind an ELB. The domain name of your web application is mywebapp.com which you have registered in the Route 53. You know that you can create an alias record with ‘A’ record type for both zone apex mywebapp.com and sub-domain www.mywebapp.com pointing to ELB load balancer DNS url lb1-1234.us-west-2.elb.amazonaws.com. If the IP address of the load balancer changes what you need to do?

  1. Instead of A record type create a CNAME record type.
  2. Instead of A record type create a PTR record type.
  3. You don’t need to do anything, Route 53 automatically starts to respond to DNS queries using the new IP address.
  4. You can’t create an alias for ELB which doesn’t have static ip address.
A
  1. Instead of A record type create a CNAME record type.
  2. Instead of A record type create a PTR record type.
  3. You don’t need to do anything, Route 53 automatically starts to respond to DNS queries using the new IP address.
  4. You can’t create an alias for ELB which doesn’t have static ip address.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

In your route 53 hosted zone, you have created two record sets associated with one DNS name—one with weight 3 and one with weight 1. Which of the following is true.

  1. 30% of the time Route 53 will return the record set with weight 1 and 10% of the time Route 53 will return the record set with weight 3
  2. 30% of the time Route 53 will return the record set with weight 3 and 10% of the time Route 53 will return the record set with weight 1
  3. 75% of the time Route 53 will return the record set with weight 1 and 25% of the time Route 53 will return the record set with weight 3
  4. 75% of the time Route 53 will return the record set with weight 3 and 25% of the time Route 53 will return the record set with weight 1
A
  1. 30% of the time Route 53 will return the record set with weight 1 and 10% of the time Route 53 will return the record set with weight 3
  2. 30% of the time Route 53 will return the record set with weight 3 and 10% of the time Route 53 will return the record set with weight 1
  3. 75% of the time Route 53 will return the record set with weight 1 and 25% of the time Route 53 will return the record set with weight 3
  4. 75% of the time Route 53 will return the record set with weight 3 and 25% of the time Route 53 will return the record set with weight 1
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

You are the solution architect for a global financial services company providing banking and stock market trading to its customers. Because of compliance and regulatory reasons the application must be hosted in respective country of the users. For example a U.S citizen request must be routed to application hosted in US-East region and for a European Union user it must be routed to application hosted in EU-Central region. Which routing policy you will configure in the Route 53 to achieve this requirement?

  1. Geolocation Routing
  2. Geoproximity Routing
  3. User Location Routing
  4. User Profile Routing
A
  1. Geolocation Routing
  2. Geoproximity Routing
  3. User Location Routing
  4. User Profile Routing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

You host a global sports news website across multiple regions in the world. The primary criteria for you while configuring the Route 53 routing policy is to ensure that users will get fastest performance. Which routing policy you will use?

  1. Geolocation routing
  2. Geoproximity routing
  3. Latency based routing
  4. Performance based routing
A
  1. Geolocation routing
  2. Geoproximity routing
  3. Latency based routing
  4. Performance based routing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

You are planning to roll out two new version of your SaaS web application for your users but you don’t want to make it accessible to all the users. Your company’s plan is to have three versions of application two new and one existing running simultaneously with 20% of traffic going to new version I, 30% of traffic going to version II and 50% of traffic going to existing version. Which routing policy will you configure in Route 53?

  1. Version routing
  2. % Allocation routing
  3. Simple routing
  4. Weighted routing
A
  1. Version routing
  2. % Allocation routing
  3. Simple routing
  4. Weighted routing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Which of the following best describes the difference between Geolocation routing and Geoproximity routing? Choose 2.

  1. Geoproximity routing lets Amazon Route 53 route traffic to your resources based on the geographic location of your users and your resources. Geolocation routing lets you choose the resources that serve your traffic based on the geographic location of your users, meaning the location that DNS queries originate from.
  2. In Geoproximity routing you can specify geographic locations by continent, by country, or by state in the United States to map user location to resources. You create Geolocation rules for your resources and specify the AWS Region that you created the resource in or the latitude and longitude of the resource.
  3. Geolocation routing lets Amazon Route 53 route traffic to your resources based on the geographic location of your users and your resources. Geoproximity routing lets you choose the resources that serve your traffic based on the geographic location of your users, meaning the location that DNS queries originate from.
  4. In Geolocation routing you can specify geographic locations by continent, by country, or by state in the United States to map user location to resources. You create Geoproximity rules for your resources and specify the AWS Region that you created the resource in or the latitude and longitude of the resource
    5.
A
  1. Geoproximity routing lets Amazon Route 53 route traffic to your resources based on the geographic location of your users and your resources. Geolocation routing lets you choose the resources that serve your traffic based on the geographic location of your users, meaning the location that DNS queries originate from.
  2. In Geoproximity routing you can specify geographic locations by continent, by country, or by state in the United States to map user location to resources. You create Geolocation rules for your resources and specify the AWS Region that you created the resource in or the latitude and longitude of the resource.
  3. Geolocation routing lets Amazon Route 53 route traffic to your resources based on the geographic location of your users and your resources. Geoproximity routing lets you choose the resources that serve your traffic based on the geographic location of your users, meaning the location that DNS queries originate from.
  4. In Geolocation routing you can specify geographic locations by continent, by country, or by state in the United States to map user location to resources. You create Geoproximity rules for your resources and specify the AWS Region that you created the resource in or the latitude and longitude of the resource
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Your disaster recovery plan for a web application is to have a production environment behind one domain and a standby environment behind another domain. Which Route 53 routing policy should you configure in the hosted zone so that if the production environment is down, requests are automatically served from the standby server?

  1. Health Check Routing
  2. Failover Routing
  3. Latency Routing
  4. Weighted Routing
A
  1. Health Check Routing
  2. Failover Routing
  3. Latency Routing
  4. Weighted Routing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

Which routing policy you will use when you want Route 53 to respond to DNS queries with up to eight healthy records selected at random?

  1. Latency Routing
  2. Weighted Routing
  3. Multivalue answer Routing
  4. Failover Routing
A
  1. Latency Routing
  2. Weighted Routing
  3. Multivalue answer Routing
  4. Failover Routing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

To comply with DNS standards, Route 53 responses sent over UDP are limited to 512 bytes in size. Responses exceeding 512 bytes are truncated and the resolver must re-issue the request in which protocol?

  1. HTTPS
  2. TCP
  3. MQTT
  4. HTTP
A
  1. HTTPS
  2. TCP
  3. MQTT
  4. HTTP
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

You have developed your own blog website ‘www.mycloudblogs.com’ in which you write about AWS, Cloud and Digital topics. It also has other features of discussion forums and ability for the user to take mock tests. You have deployed it in a VPC, web server on EC2 instances with Auto Scaling group and an Application Load Balancer (ALB) in the front. The domain name ‘www.mycloudblogs.com’ will be pointing to the ALB. You are also using Route 53 to manage DNS Which record types will you create in Route 53 assuming you have configured your VPC and ALB to route only IPv4 traffic?

  1. ‘AAAA’ Alias record with Alias Target as the ALB
  2. ‘A’ Alias record with Alias Target as the ALB
  3. ‘A’ Non Alias record with Alias Target as the ALB
  4. ‘AAAA’ Non Alias record with Alias Target as the ALB
  5. CNAME record with Alias Target as the ALB
A
  1. ‘AAAA’ Alias record with Alias Target as the ALB
  2. ‘A’ Alias record with Alias Target as the ALB
  3. ‘A’ Non Alias record with Alias Target as the ALB
  4. ‘AAAA’ Non Alias record with Alias Target as the ALB
  5. CNAME record with Alias Target as the ALB
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

You have a fleet of identical five web servers to serve your user requests. You are using Route 53 to serve traffic. Which routing policy you will use so that traffic is served from any of the five servers randomly?

  1. Latency Routing
  2. Weighted Routing
  3. Failover Routing
  4. Multivalue answer Routing
A
  1. Latency Routing
  2. Weighted Routing
  3. Failover Routing
  4. Multivalue answer Routing
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Which of the following statements are correct about Route 53 Traffic flow? Choose 3.

  1. Route 53 traffic flow provides a visual editor that helps you create complex trees in a fraction of the time with a fraction of the effort or to quickly find resources that you need to update and apply the updates to one or more DNS names.
  2. A traffic policy includes information about the routing configuration that you want to create: the routing policies that you want to use and the resources that you want to route DNS traffic to, such as the IP address of each EC2 instance and the domain name of each ELB load balancer.
  3. A policy record includes information about the routing configuration that you want to create, the routing policies that you want to use and the resources that you want to route DNS traffic to, such as the IP address of each EC2 instance and the domain name of each ELB load balancer.
  4. A traffic policy is where you specify the hosted zone in which you want to create the configuration that you defined in your policy record and to specify the DNS name that you want to associate the configuration with.
  5. A policy record is where you specify the hosted zone in which you want to create the configuration that you defined in your traffic policy and to specify the DNS name that you want to associate the configuration with.
A
  1. Route 53 traffic flow provides a visual editor that helps you create complex trees in a fraction of the time with a fraction of the effort or to quickly find resources that you need to update and apply the updates to one or more DNS names.
  2. A traffic policy includes information about the routing configuration that you want to create: the routing policies that you want to use and the resources that you want to route DNS traffic to, such as the IP address of each EC2 instance and the domain name of each ELB load balancer.
  3. A policy record includes information about the routing configuration that you want to create, the routing policies that you want to use and the resources that you want to route DNS traffic to, such as the IP address of each EC2 instance and the domain name of each ELB load balancer.
  4. A traffic policy is where you specify the hosted zone in which you want to create the configuration that you defined in your policy record and to specify the DNS name that you want to associate the configuration with.
  5. A policy record is where you specify the hosted zone in which you want to create the configuration that you defined in your traffic policy and to specify the DNS name that you want to associate the configuration with.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

How does the geoproximity bias value of an endpoint affect DNS traffic routing to other endpoints? Choose 2.

  1. Changing the geoproximity bias value on an endpoint can expands the area from which Route 53 routes traffic to a resource.
  2. Changing the geoproximity bias value on an endpoint doesn’t have any effect on the area from which Route 53 routes traffic to a resource.
  3. Changing the geoproximity bias value on an endpoint can shrinks the area from which Route 53 routes traffic to a resource.
  4. Changing the geoproximity bias value on an endpoint improves the latency of traffic to a resource.
A
  1. Changing the geoproximity bias value on an endpoint can expands the area from which Route 53 routes traffic to a resource.
  2. Changing the geoproximity bias value on an endpoint doesn’t have any effect on the area from which Route 53 routes traffic to a resource.
  3. Changing the geoproximity bias value on an endpoint can shrinks the area from which Route 53 routes traffic to a resource.
  4. Changing the geoproximity bias value on an endpoint improves the latency of traffic to a resource.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q

What is difference between Availability Zone and Edge Location? Choose 2.

  1. Availability Zones is a data center site around the world that CloudFront uses to cache copies of your content for faster delivery to users at any location.
  2. Edge location consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.
  3. Edge location is a data center site around the world that CloudFront uses to cache copies of your content for faster delivery to users at any location.
  4. Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.
A
  1. Availability Zones is a data center site around the world that CloudFront uses to cache copies of your content for faster delivery to users at any location.
  2. Edge location consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.
  3. Edge location is a data center site around the world that CloudFront uses to cache copies of your content for faster delivery to users at any location.
  4. Availability Zones consist of one or more discrete data centers, each with redundant power, networking, and connectivity, housed in separate facilities.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q

What is the main advantage of using Amazon CloudFront? Choose 2.

  1. Speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users.
  2. An extremely reliable and cost effective way to route end users to Internet applications by translating names like www.example.com into the numeric IP addresses like 192.0.2.1 that computers use to connect to each other.
  3. When a user requests content that you’re serving with CloudFront, the user is routed to the edge location that provides the lowest latency (time delay), so that content is delivered with the best possible performance.
  4. An object storage service that offers industry-leading scalability, data availability, security, and performance.
A
  1. Speeds up distribution of your static and dynamic web content, such as .html, .css, .js, and image files, to your users.
  2. An extremely reliable and cost effective way to route end users to Internet applications by translating names like www.example.com into the numeric IP addresses like 192.0.2.1 that computers use to connect to each other.
  3. When a user requests content that you’re serving with CloudFront, the user is routed to the edge location that provides the lowest latency (time delay), so that content is delivered with the best possible performance.
  4. An object storage service that offers industry-leading scalability, data availability, security, and performance.
31
Q

Which of the following are use cases for Cloudfront? Choose 3.

  1. Storage for Static Website Content.
  2. Accelerate Static Website Content Delivery.
  3. Serve On-Demand or Live Streaming Video.
  4. Serve private content from your own custom origin, as an option to using signed URLs or signed cookies.
A
  1. Storage for Static Website Content.
  2. Accelerate Static Website Content Delivery.
  3. Serve On-Demand or Live Streaming Video.
  4. Serve private content from your own custom origin, as an option to using signed URLs or signed cookies.
32
Q

You want to store files in an Amazon Simple Storage Service (Amazon S3) bucket and then serve them using Amazon CloudFront. What are the steps involved in it? Choose 2.

  1. Grant public read permissions to the S3 bucket storing files.
  2. Retain the default private setting of bucket.
  3. Create a Cloudfront distribution for Origin Domain Name by choosing the Amazon S3 bucket which has files.
  4. Create a Cloudfront distribution for Origin Domain Name by choosing the file objects in Amazon S3 bucket.
A
  1. Grant public read permissions to the S3 bucket storing files.
  2. Retain the default private setting of bucket.
  3. Create a Cloudfront distribution for Origin Domain Name by choosing the Amazon S3 bucket which has files.
  4. Create a Cloudfront distribution for Origin Domain Name by choosing the file objects in Amazon S3 bucket.
33
Q

Which of the following distributions you can configure in the Cloud front to be served over HTTP or HTTPS? Choose 3.

  1. Static and dynamic download content, for example, .html, .css, .js, and image files.
  2. Video on demand in different formats, such as Apple HTTP Live Streaming (HLS) and Microsoft Smooth Streaming.
  3. Adobe Flash multimedia content.
  4. A live event, such as a meeting, conference, or concert, in real time.
A
  1. Static and dynamic download content, for example, .html, .css, .js, and image files.
  2. Video on demand in different formats, such as Apple HTTP Live Streaming (HLS) and Microsoft Smooth Streaming.
  3. Adobe Flash multimedia content.
  4. A live event, such as a meeting, conference, or concert, in real time.
34
Q

When you want to use CloudFront to distribute your content, which of the following configurations you need to do to in Cloudfront for creating a distribution? Choose 4.

  1. Your content origin that is, the Amazon S3 bucket, MediaPackage channel, or HTTP server from which CloudFront gets the files to distribute.
  2. Access whether you want the files to be available to everyone or restrict access to some users. Security whether you want CloudFront to require users to use HTTPS to access your content.
  3. DNS service alternate CNAME domain name registration.
  4. Cookie or query-string forwarding whether you want CloudFront to forward cookies or query strings to your origin. Geo-restrictions whether you want CloudFront to prevent users in selected countries from accessing your content.
  5. Access logs whether you want CloudFront to create access logs that show viewer activity.
A
  1. Your content origin that is, the Amazon S3 bucket, MediaPackage channel, or HTTP server from which CloudFront gets the files to distribute.
  2. Access whether you want the files to be available to everyone or restrict access to some users. Security whether you want CloudFront to require users to use HTTPS to access your content.
  3. DNS service alternate CNAME domain name registration.
  4. Cookie or query-string forwarding whether you want CloudFront to forward cookies or query strings to your origin. Geo-restrictions whether you want CloudFront to prevent users in selected countries from accessing your content.
  5. Access logs whether you want CloudFront to create access logs that show viewer activity.
35
Q

Which of the following can be configured as origin servers for Amazon Cloudfront? Choose 4.

  1. Amazon S3 Bucket
  2. HTTP server on an Amazon Elastic Compute Cloud (Amazon EC2) instance
  3. On-premise HTTP server
  4. Amazon Lambda
  5. Amazon Route 53 Hosted zone
  6. MediaStore container or a MediaPackage channel
A
  1. Amazon S3 Bucket
  2. HTTP server on an Amazon Elastic Compute Cloud (Amazon EC2) instance
  3. On-premise HTTP server
  4. Amazon Lambda
  5. Amazon Route 53 Hosted zone
  6. MediaStore container or a MediaPackage channel
36
Q

Which of the following are good uses cases for using Amazon Cloudfront? Choose 3.

  1. A sports web site which streams live games and also on demand videos of old events to global users.
  2. A corporate website that serves training videos to employees located in one office.
  3. A corporate website that serves training videos to employees located in offices across globe.
  4. A corporate website that serves training videos to employees located in offices across globe but accessible only through corporate VPN.
  5. A popular pc games download site for global subscriber users.
A
  1. A sports web site which streams live games and also on demand videos of old events to global users.
  2. A corporate website that serves training videos to employees located in one office.
  3. A corporate website that serves training videos to employees located in offices across globe.
  4. A corporate website that serves training videos to employees located in offices across globe but accessible only through corporate VPN.
  5. A popular pc games download site for global subscriber users.
37
Q

You are solution architect for a new global tennis sports news web site. Web site will be hosted on a fleet of EC2 instances. Which AWS services you can use to ensure that when load on website increases, users will not experience slow response? Choose 3.

  1. Amazon ElastiCache as in memory data store for web caching.
  2. AWS Auto Scaling for web site resources.
  3. CloudFormation to deploy the application in AWS region with maximum online users.
  4. AWS CloudFront with website as the custom origin.
A
  1. Amazon ElastiCache as in memory data store for web caching.
  2. AWS Auto Scaling for web site resources.
  3. CloudFormation to deploy the application in AWS region with maximum online users.
  4. AWS CloudFront with website as the custom origin.
38
Q

You are the solution architect of a soccer sports news website covering different soccer leagues in Europe. You have the application hosted in EU-Central-1 region. Recently you have started promoting the website in USA and also started covering soccer leagues in USA. This has led to increase in users hitting the website from North American Region, however the users have been complaining about latency issues in the website browsing experience. As a solution architect you are analyzing the different components of website architecture (as shown in diagram below) to improve the performance.

  • Web servers are running in EC2 instance in an auto scale group. EC2 instances are high compute optimized instances. Auto scale group scales out whenever CPU utilization reaches 75%. -
  • RDS instance is already optimized for performance with high configuration and read replica enabled. -
  • S3 is being used for storing the static content and media files.

What else you can do to improve performance? Choose 3.

  1. Use Amazon Cloudfront with S3 and EC2 as origin servers.
  2. Have another production site running in US-East region and configure latency based routing in Route 53.
  3. Replace web server on EC2 instance with Elastic Beanstalk service.
  4. Configure Auto scale group to scales out whenever CPU utilization reaches 60%.
  5. Implement a cache-aside strategy using Amazon ElastiCache for Redis on top of RDS database.
A
  1. Use Amazon Cloudfront with S3 and EC2 as origin servers.
  2. Have another production site running in US-East region and configure latency based routing in Route 53.
  3. Replace web server on EC2 instance with Elastic Beanstalk service.
  4. Configure Auto scale group to scales out whenever CPU utilization reaches 60%.
  5. Implement a cache-aside strategy using Amazon ElastiCache for Redis on top of RDS database.
39
Q

What are the different types of health check you can create in Route 53? Choose 3.

  1. Health checks that monitor an endpoint
  2. Health checks that monitor other health checks (calculated health checks)
  3. Health checks that monitor CloudWatch alarms
  4. Health check that monitor ELB
A
  1. Health checks that monitor an endpoint
  2. Health checks that monitor other health checks (calculated health checks)
  3. Health checks that monitor CloudWatch alarms
  4. Health check that monitor ELB
40
Q

How Route 53 determines the status of health checks that monitors an endpoint? Choose 3.

  1. Response time of the request sent by the health checker to the endpoint.
  2. Whether the endpoint responds to a number of consecutive health checks that you specify (the failure threshold).
  3. The number of child health checks that must be healthy for the status of the parent health check to be considered healthy.
  4. If more than 18% of health checkers report that an endpoint is healthy, Route 53 considers it healthy.
A
  1. Response time of the request sent by the health checker to the endpoint.
  2. Whether the endpoint responds to a number of consecutive health checks that you specify (the failure threshold).
  3. The number of child health checks that must be healthy for the status of the parent health check to be considered healthy.
  4. If more than 18% of health checkers report that an endpoint is healthy, Route 53 considers it healthy.
41
Q

Which of the following is not a valid origin domain name configured in Cloudfront?

  1. Amazon S3 bucket – aws-s3-bucket1.s3.us-west-2.amazonaws.com
  2. Amazon S3 bucket configured as a website – https://bucket-name.s3-website.us-west-2.amazonaws.com
  3. MediaStore container – mymediastore.data.mediastore.us-west-1.amazonaws.com
  4. MediaPackage endpoint – mymediapackage.mediapackage.us-west-1.amazon.com
  5. Amazon EC2 instance – ec2-203-0-113-25.compute-1.amazonaws.com
  6. RDS endpoint value - mycluster.cluster-123456789012.us-east-1.rds.amazonaws.com:3306
  7. Elastic Load Balancing load balancer – my-load-balancer-1234567890.us-west-2.elb.amazonaws.com
  8. Your own web server – https://example.com
A
  1. Amazon S3 bucket – aws-s3-bucket1.s3.us-west-2.amazonaws.com
  2. Amazon S3 bucket configured as a website – https://bucket-name.s3-website.us-west-2.amazonaws.com
  3. MediaStore container – mymediastore.data.mediastore.us-west-1.amazonaws.com
  4. MediaPackage endpoint – mymediapackage.mediapackage.us-west-1.amazon.com
  5. Amazon EC2 instance – ec2-203-0-113-25.compute-1.amazonaws.com
  6. RDS endpoint value - mycluster.cluster-123456789012.us-east-1.rds.amazonaws.com:3306
  7. Elastic Load Balancing load balancer – my-load-balancer-1234567890.us-west-2.elb.amazonaws.com
  8. Your own web server – https://example.com
42
Q

Till recently you were using S3 to store and share objects directly to your users. Now you are planning to configure Cloudfront to get your objects from S3 and then distribute them to your users? Which of the following two statements are correct?

  1. Using CloudFront can be more cost effective if your users access objects frequently because, at higher usage, the price for CloudFront data transfer is lower than the price for Amazon S3 data transfer.
  2. Using CloudFront can be more costly if your users access objects frequently because, at higher usage, the price for CloudFront data transfer is higher than the price for Amazon S3 data transfer.
  3. Downloads will be slower with CloudFront than with Amazon S3 alone because your objects are stored at edge location far from Amazon S3 origin server.
  4. Downloads are faster with CloudFront than with Amazon S3 alone because your objects are stored closer to your users.
A
  1. Using CloudFront can be more cost effective if your users access objects frequently because, at higher usage, the price for CloudFront data transfer is lower than the price for Amazon S3 data transfer.
  2. Using CloudFront can be more costly if your users access objects frequently because, at higher usage, the price for CloudFront data transfer is higher than the price for Amazon S3 data transfer.
  3. Downloads will be slower with CloudFront than with Amazon S3 alone because your objects are stored at edge location far from Amazon S3 origin server.
  4. Downloads are faster with CloudFront than with Amazon S3 alone because your objects are stored closer to your users.
43
Q

You have a website www.example.com which has its static images stored in S3. The domain name of distribution you have created in the CloudFront for S3 as origin is: d111111abcdef8.cloudfront.net. You don’t want to use CloudFront domain name for your files. For example the URL for a file called /images/image.jpg will be: http://d111111abcdef8.cloudfront.net/images/image.jpg Your solution architect told you that you can use your own domain name, www.example.com, instead of the cloudfront.net domain name by adding ‘www.example.com ‘as an alternate domain name to your distribution setting. Which of the following steps are required to use alternate domain name? Choose 4.

  1. ‘www.example.com ‘should be registered domain name with Route 53 or another domain provider.
  2. Add a certificate from an authorized certificate authority (CA) to CloudFront that covers the ‘www.example.com ‘domain name to validate that you are authorized to use the domain.
  3. Update the ‘Alternate Domain Name (CNAME) ‘distribution settings field with ‘www.example.com’.
  4. There is no need to configure the DNS service for the domain to route traffic for the domain ‘www.example.com’, to the CloudFront domain name for your distribution ‘d111111abcdef8.cloudfront.net’.
  5. Configure the DNS service for the domain to route traffic for the domain ‘www.example.com’, to the CloudFront domain name for your distribution ‘d111111abcdef8.cloudfront.net’.
A
  1. ‘www.example.com ‘should be registered domain name with Route 53 or another domain provider.
  2. Add a certificate from an authorized certificate authority (CA) to CloudFront that covers the ‘www.example.com ‘domain name to validate that you are authorized to use the domain.
  3. Update the ‘Alternate Domain Name (CNAME) ‘distribution settings field with ‘www.example.com’.
  4. There is no need to configure the DNS service for the domain to route traffic for the domain ‘www.example.com’, to the CloudFront domain name for your distribution ‘d111111abcdef8.cloudfront.net’.
  5. Configure the DNS service for the domain to route traffic for the domain ‘www.example.com’, to the CloudFront domain name for your distribution ‘d111111abcdef8.cloudfront.net’.
44
Q

You recently launched your website to your global users. After few hours you got to know that some of the static images you are distributing through Cloudfront needs to be changed as they are of older version. You know that default expiration of content served from Cloudfront edge server is 24 hours. What should you do so that new version of images are immediately reflected in user requests? Choose 2.

  1. Invalidate the file from edge caches.
  2. Validate the file from edge caches.
  3. Replace the files in the origin servers with new files having same name.
  4. Use file versioning to serve a different version of the file that has a different name.
A
  1. Invalidate the file from edge caches.
  2. Validate the file from edge caches.
  3. Replace the files in the origin servers with new files having same name.
  4. Use file versioning to serve a different version of the file that has a different name.
45
Q

What are the different options in CloudFront for configuring secure access and limiting access to content? Choose 6.

  1. Configuring HTTPS connections
  2. Using AWS WAF to control access to your content
  3. Setting up field-level encryption for specific content fields
  4. Prevent users in specific geographic locations from accessing content distributed through a web distribution
  5. Using AWS Shield to control access to you content.
  6. Option of limiting access to private content by requiring that users access that content by using CloudFront signed URLs or signed cookies.
  7. Restricting Access to Amazon S3 Content by Using an Origin Access Identity
A
  1. Configuring HTTPS connections
  2. Using AWS WAF to control access to your content
  3. Setting up field-level encryption for specific content fields
  4. Prevent users in specific geographic locations from accessing content distributed through a web distribution
  5. Using AWS Shield to control access to you content.
  6. Option of limiting access to private content by requiring that users access that content by using CloudFront signed URLs or signed cookies.
  7. Restricting Access to Amazon S3 Content by Using an Origin Access Identity
46
Q

How can you restrict access to content like documents, business data, media streams, or content that is intended for selected users when you are securely serving these private content through CloudFront? Choose 2.

  1. Require that your users access your private content by using special CloudFront signed URLs or signed cookies.
  2. Require that content is always encrypted.
  3. Require that your users access your content by using CloudFront URLs, not URLs that access content directly on the origin server (for example, Amazon S3 or a private HTTP server).
  4. Require that it is always through HTTPS.
A
  1. Require that your users access your private content by using special CloudFront signed URLs or signed cookies.
  2. Require that content is always encrypted.
  3. Require that your users access your content by using CloudFront URLs, not URLs that access content directly on the origin server (for example, Amazon S3 or a private HTTP server).
  4. Require that it is always through HTTPS.
47
Q

You are the solution architect for a gaming company which has a website from which user can download PC games after online payment. The game executable files are stored in Amazon S3 buckets and distribution is configured in CloudFront. How can you ensure that your users can access your files using only CloudFront URL and not through Amazon S3 URLs? Choose 2.

  1. Require that your users access your private files by using special CloudFront signed URLs.
  2. Require that your users access your private files by using signed cookies.
  3. Create an origin access identity, which is a special CloudFront user, and associate the origin access identity with your distribution
  4. Change the permissions either on your Amazon S3 bucket or on the files in your bucket so that only the origin access identity has read permission (or read and download permission).
A
  1. Require that your users access your private files by using special CloudFront signed URLs.
  2. Require that your users access your private files by using signed cookies.
  3. Create an origin access identity, which is a special CloudFront user, and associate the origin access identity with your distribution
  4. Change the permissions either on your Amazon S3 bucket or on the files in your bucket so that only the origin access identity has read permission (or read and download permission).
48
Q

You need to prevent users in specific countries from accessing your content stored in S3 and distributed through CloudFront. How can you achieve this?

  1. Use the S3 geo restriction feature.
  2. Use the CloudFront geo restriction feature.
  3. Use the CloudFront ip restriction feature.
  4. You cannot restrict the access based on countries.
A
  1. Use the S3 geo restriction feature.
  2. Use the CloudFront geo restriction feature.
  3. Use the CloudFront ip restriction feature.
  4. You cannot restrict the access based on countries.
49
Q

What is Lambda@Edge?

  1. Feature of Amazon Route 53 that lets you run code closer to users of your application, which improves performance and reduces latency.
  2. Feature of Amazon IoT that lets you run code closer to users of your application, which improves performance and reduces latency.
  3. Feature of Amazon ELB that lets you run code closer to users of your application, which improves performance and reduces latency.
  4. Feature of Amazon CloudFront that lets you run code closer to users of your application, which improves performance and reduces latency.
A
  1. Feature of Amazon Route 53 that lets you run code closer to users of your application, which improves performance and reduces latency.
  2. Feature of Amazon IoT that lets you run code closer to users of your application, which improves performance and reduces latency.
  3. Feature of Amazon ELB that lets you run code closer to users of your application, which improves performance and reduces latency.
  4. Feature of Amazon CloudFront that lets you run code closer to users of your application, which improves performance and reduces latency.
50
Q

Which combination of following three options you will use to deliver on-demand corporate videos to your users using AWS Cloudfront?

  • Upload your original corporate training video content to an Amazon S3 bucket.
  • Use MediaConvert to convert your video into the formats required by the players your viewers will be using. MediaConvert outputs the transcoded video to an S3 bucket.
  • Deliver the converted content from MediaConvert by using a CloudFront distribution, so viewers can watch it on any device, whenever they like.
  1. 1 only
  2. 2,3 only
  3. 1,2,3
  4. None of the above
A
  1. 1 only
  2. 2,3 only
  3. 1,2,3
  4. None of the above
51
Q

What are the two ways you can use AWS Media Services with CloudFront to deliver live content to a global audience?

  1. Use AWS Elemental MediaPackage to convert your video content from a single format to multiple formats, and then package the content for different device types.
  2. Use AWS Elemental MediaStore to convert your video content from a single format to multiple formats, and then package the content for different device types.
  3. If your encoder already outputs content in the formats required by all of the devices that your viewers use, you can serve the content by using a highly-scalable origin like an AWS Elemental MediaPackage container.
  4. If your encoder already outputs content in the formats required by all of the devices that your viewers use, you can serve the content by using a highly-scalable origin like an AWS Elemental MediaStore container.
A
  1. Use AWS Elemental MediaPackage to convert your video content from a single format to multiple formats, and then package the content for different device types.
  2. Use AWS Elemental MediaStore to convert your video content from a single format to multiple formats, and then package the content for different device types.
  3. If your encoder already outputs content in the formats required by all of the devices that your viewers use, you can serve the content by using a highly-scalable origin like an AWS Elemental MediaPackage container.
  4. If your encoder already outputs content in the formats required by all of the devices that your viewers use, you can serve the content by using a highly-scalable origin like an AWS Elemental MediaStore container.
52
Q

You can associate a CloudFront distribution with a Lambda@Edge function so that CloudFront intercepts requests and responses at CloudFront edge locations. What are the CloudFront events for which you can execute Lambda Functions?

  • a) When CloudFront receives a request from a viewer (viewer request)
  • b) Before CloudFront forwards a request to the origin (origin request)
  • c) When CloudFront receives a response from the origin (origin response)
  • d) Before CloudFront returns the response to the viewer (viewer response)
  1. 1 and 4
  2. 2 and 3
  3. 1,2,3,4
  4. 1 and 3
  5. 3 and 4
A
  1. 1 and 4
  2. 2 and 3
  3. 1,2,3,4
  4. 1 and 3
  5. 3 and 4
53
Q

What are the use cases suitable for using Lambda@Edge processing? Choose 5

  1. Inspect cookies and rewrite URLs so that users see different versions of a site for A/B testing.
  2. Return different objects to viewers based on the device they’re using by checking the User-Agent header, which includes information about the devices.
  3. Content Cache expiration check
  4. Generate HTTP responses when CloudFront viewer request or origin request events occur.
  5. Inspect headers or authorization tokens, and insert a header to control access to your content before CloudFront forwards the request to your origin.
  6. Make network calls to external resources to confirm user credentials, or fetch additional content to customize a response.
A
  1. Inspect cookies and rewrite URLs so that users see different versions of a site for A/B testing.
  2. Return different objects to viewers based on the device they’re using by checking the User-Agent header, which includes information about the devices.
  3. Content Cache expiration check
  4. Generate HTTP responses when CloudFront viewer request or origin request events occur.
  5. Inspect headers or authorization tokens, and insert a header to control access to your content before CloudFront forwards the request to your origin.
  6. Make network calls to external resources to confirm user credentials, or fetch additional content to customize a response.
54
Q

You are planning to deploy a soccer news website for global users. To mitigate the latency for users specific to region the plan is to have a replica deployment in different regions: US-East, EU-Central and Asia Pacific. Which of the following services in architecture given below doesn’t need to be specific for every region and is global? Choose 3.

  1. Identity and Access Management (IAM) Roles and Users
  2. EC2 Instances
  3. ElastiCache for Redis
  4. Route 53
  5. Cloudfront
  6. Elastic Load Balancer
  7. S3
  8. RDS
  9. VPC
A
  1. Identity and Access Management (IAM) Roles and Users
  2. EC2 Instances
  3. ElastiCache for Redis
  4. Route 53
  5. Cloudfront
  6. Elastic Load Balancer
  7. S3
  8. RDS
  9. VPC
55
Q

You recently launched your website to your global users. After few hours you got to know that some of the static images you are distributing through Cloudfront needs to be changed as they are of older version. Default expiration of content served from Cloudfront edge server is 24 hours. You replaced the files in the origin servers with new files having same name, still the new user request are viewing the old wrong files? What could be the reason?

  1. New file with same name as the older version will be served only after expiration.
  2. You cannot replace a file with same name.
  3. You can only replace a file using version management.
  4. After replacing the new file with same name you have to invalidate the file from the edge servers.
A
  1. New file with same name as the older version will be served only after expiration.
  2. You cannot replace a file with same name.
  3. You can only replace a file using version management.
  4. After replacing the new file with same name you have to invalidate the file from the edge servers.
56
Q

How Route 53 determines the status of health checks that monitor other health checks? Choose 2.

  1. Route 53 adds up the number of parent health checks that are considered to be healthy.
  2. Route 53 adds up the number of child health checks that are considered to be healthy.
  3. Route 53 compares that number with the number of child health checks that must be healthy for the status of the parent health check to be considered healthy.
  4. Route 53 compares that number with the number of parent health checks that must be healthy for the status of the child health check to be considered healthy.
A
  1. Route 53 adds up the number of parent health checks that are considered to be healthy.
  2. Route 53 adds up the number of child health checks that are considered to be healthy.
  3. Route 53 compares that number with the number of child health checks that must be healthy for the status of the parent health check to be considered healthy.
  4. Route 53 compares that number with the number of parent health checks that must be healthy for the status of the child health check to be considered healthy.
57
Q

How Route 53 Determines the Status of Health Checks that monitor CloudWatch alarms? Choose 2.

  1. If the Cloudwatch data stream indicates that the state of the alarm is OK, the health check is considered healthy.
  2. If the Cloudwatch data stream indicates that the state is Alarm, the health check is considered unhealthy.
  3. If the Cloudwatch data stream indicates that the state of the alarm is OK, the health check is considered unhealthy.
  4. If the Cloudwatch data stream indicates that the state is Alarm, the health check is considered healthy.
A
  1. If the Cloudwatch data stream indicates that the state of the alarm is OK, the health check is considered healthy.
  2. If the Cloudwatch data stream indicates that the state is Alarm, the health check is considered unhealthy.
  3. If the Cloudwatch data stream indicates that the state of the alarm is OK, the health check is considered unhealthy.
  4. If the Cloudwatch data stream indicates that the state is Alarm, the health check is considered healthy.
58
Q

You have done Route 53 routing policy and health check configuration for domain name as shown below:

What happens when Route 53 receives a query for myawscertification.com? Choose 3.

  1. Route 53 determines the current health of the all records by checking the status of the health check for that record and then selects one healthy record based on routing policy.
  2. Route 53 chooses a record based on the routing policy and determines the current health of the selected record by checking the status of the health check for that record.
  3. If the selected record is unhealthy, Route 53 chooses a different record. This time, the unhealthy record isn’t considered.
  4. When Route 53 finds a healthy record, it responds to the query with the applicable value, such as the IP address in an A record.
A
  1. Route 53 determines the current health of the all records by checking the status of the health check for that record and then selects one healthy record based on routing policy.
  2. Route 53 chooses a record based on the routing policy and determines the current health of the selected record by checking the status of the health check for that record.
  3. If the selected record is unhealthy, Route 53 chooses a different record. This time, the unhealthy record isn’t considered.
  4. When Route 53 finds a healthy record, it responds to the query with the applicable value, such as the IP address in an A record.
59
Q

The following diagram shows a group of weighted records in which the third record is unhealthy. How will Route 53 select the first record based on routing policy?

  1. About 20% of the time
  2. About 33% of the time
  3. About 50% of the time
  4. About 100% of the time
A
  1. About 20% of the time
  2. About 33% of the time
  3. About 50% of the time
  4. About 100% of the time
60
Q

You are the solution architect for a gaming company which has a website from which user can download PC games after online payment. The game executable files are stored in web server running in an EC2 instance configured as custom origin distribution in CloudFront. How can you ensure that your users can access your files using only CloudFront URL? Choose 2.

  1. Require that your users access your private files by using special CloudFront signed URLs or signed cookies.
  2. Configure CloudFront to forward custom headers to your origin.
  3. Create an origin access identity, which is a special CloudFront user, and associate the origin access identity with your distribution.
  4. Configure Viewer Protocol Policy and Origin Protocol Policy to ensure that your custom headers are encrypted between the viewer and your origin.
A
  1. Require that your users access your private files by using special CloudFront signed URLs or signed cookies.
  2. Configure CloudFront to forward custom headers to your origin.
  3. Create an origin access identity, which is a special CloudFront user, and associate the origin access identity with your distribution.
  4. Configure Viewer Protocol Policy and Origin Protocol Policy to ensure that your custom headers are encrypted between the viewer and your origin.
61
Q

Which of the following criteria Route 53 uses when choosing a healthy record for a domain query? Choose 2.

  1. Records without a health check are always healthy
  2. If no record is healthy, all records are unhealthy
  3. Records without a health check are always unhealthy
  4. If no record is healthy, all records are healthy
A
  1. Records without a health check are always healthy
  2. If no record is healthy, all records are unhealthy
  3. Records without a health check are always unhealthy
  4. If no record is healthy, all records are healthy
62
Q

You have associated multiple records with a single domain name (example.com) and configured weighted routing policy in Route 53 host zone. You also added health checks to all the records in the group of weighted records, but you gave nonzero weights to some records and zero weights to others. How will Route53 health work in this scenario? Choose2.

  1. Route 53 initially considers only the zero weighted records.
  2. Route 53 considers the zero-weighted records on par with non-zero weighted records.
  3. Route 53 initially considers only the nonzero weighted records, if any.
  4. If all the records that have a weight greater than 0 are unhealthy, then Route 53 considers the zero-weighted records.
A
  1. Route 53 initially considers only the zero weighted records.
  2. Route 53 considers the zero-weighted records on par with non-zero weighted records.
  3. Route 53 initially considers only the nonzero weighted records, if any.
  4. If all the records that have a weight greater than 0 are unhealthy, then Route 53 considers the zero-weighted records.
63
Q

You are the solution architect for a global soccer news website. As soccer fans from all over the world be accessing this website you have deployed the web servers in each of AWS regions across the continents: US-East-1, US-West-1, EU-Central-1, sa-east-1, ap-south-1, eu-central-1 and me-south-1. You are planning to use Route 53 health checking and routing policy to configure in such a way so that all of your resources are available the majority of the time. Which of the following is the correct way to configure this scenario?

  1. Configure active-active failover with weighted routing policy.
  2. Configure active-active failover with failover routing policy.
  3. Configure active-passive failover with weighted routing policy.
  4. Configure active-passive failover with failover routing policy.
A
  1. Configure active-active failover with weighted routing policy.
  2. Configure active-active failover with failover routing policy.
  3. Configure active-passive failover with weighted routing policy.
  4. Configure active-passive failover with failover routing policy.
64
Q

How can you allow access to an Amazon S3 bucket only from a CloudFront distribution? Choose 2.

  1. Make the S3 bucket private.
  2. No need to do anything, when you configure S3 as origin for CloudFront automatically AWS restrict another access.
  3. Add an origin access identity (OAI) to your distribution
  4. Ensure in your bucket policy and Amazon S3 access control list (ACL) that Only the OAI can access your bucket.
A
  1. Make the S3 bucket private.
  2. No need to do anything, when you configure S3 as origin for CloudFront automatically AWS restrict another access.
  3. Add an origin access identity (OAI) to your distribution
  4. Ensure in your bucket policy and Amazon S3 access control list (ACL) that Only the OAI can access your bucket.
65
Q

You are using Cloudfront with S3 bucket as origin for your application. You want to improve the availability of content delivered to your end users by having an active-passive failover. How can you achieve this? Choose 2.

  1. Enable Origin Failover for your Amazon CloudFront distributions.
  2. Create an origin group having two Amazon S3 buckets that serve as your origin that you independently upload your content to, setting one as the primary.
  3. Have a second S3 bucket which is kept in sync with the first one. Change the Cloudfront origin to second in case of failover.
  4. Failover cannot be configured at Cloudfront distribution level.
A
  1. Enable Origin Failover for your Amazon CloudFront distributions.
  2. Create an origin group having two Amazon S3 buckets that serve as your origin that you independently upload your content to, setting one as the primary.
  3. Have a second S3 bucket which is kept in sync with the first one. Change the Cloudfront origin to second in case of failover.
  4. Failover cannot be configured at Cloudfront distribution level.
66
Q

For which reasons CloudFront will return an HTTP 504 status code (Gateway Timeout)? Choose 3.

  1. Traffic is blocked to the origin by a firewall or security group.
  2. Origin isn’t accessible on the internet.
  3. SSL/TLS negotiation failure between CloudFront and a custom origin server.
  4. Application delays and server timeouts.
A
  1. Traffic is blocked to the origin by a firewall or security group.
  2. Origin isn’t accessible on the internet.
  3. SSL/TLS negotiation failure between CloudFront and a custom origin server.
  4. Application delays and server timeouts.
67
Q

Which of the following is not a reason for CloudFront HTTP 502 Status Code (Bad Gateway) indicating that CloudFront wasn’t able to serve the requested object because it couldn’t connect to the origin server? Choose 2.

  1. SSL/TLS negotiation failure between CloudFront and a custom origin server
  2. Origin is not responding with supported ciphers/protocols
  3. CloudFront caused the error due to limited resources at the edge location
  4. SSL/TLS certificate on the origin is expired, invalid, self-signed, or the certificate chain is in the wrong order
  5. Origin server does not have enough capacity to support the request rate
  6. Origin is not responding on specified ports in origin settings
  7. CloudFront was not able to resolve your origin domain due to DNS issues
  8. Lambda Function Associated with Your Distribution Includes Execution Errors
A
  1. SSL/TLS negotiation failure between CloudFront and a custom origin server
  2. Origin is not responding with supported ciphers/protocols
  3. CloudFront caused the error due to limited resources at the edge location
  4. SSL/TLS certificate on the origin is expired, invalid, self-signed, or the certificate chain is in the wrong order
  5. Origin server does not have enough capacity to support the request rate
  6. Origin is not responding on specified ports in origin settings
  7. CloudFront was not able to resolve your origin domain due to DNS issues
  8. Lambda Function Associated with Your Distribution Includes Execution Errors
68
Q

Your CloudFront distribution’s origin is an Amazon S3 bucket. The S3 bucket is created in ‘us-east-1’ region. You deleted the S3 bucket, then later you created a new bucket with the same bucket name in ‘us-west-2’ region. How the CloudFront distribution will work after this change?

  1. CloudFront will work as it is with no change in request response.
  2. CloudFront will throw HTTP 400 Status Code (Bad Request) error.
  3. CloudFront will throw HTTP 504 Status Code (Gateway Timeout) error.
  4. CloudFront will throw HTTP 502 Status Code (Bad Gateway) error.
A
  1. CloudFront will work as it is with no change in request response.
  2. CloudFront will throw HTTP 400 Status Code (Bad Request) error.
  3. CloudFront will throw HTTP 504 Status Code (Gateway Timeout) error.
  4. CloudFront will throw HTTP 502 Status Code (Bad Gateway) error.
69
Q

You have set up CloudFront for web distribution object caching setting Minimum TTL = 0 Seconds. Which of the following is not correct?

  1. If you set the Maximum TTL to 5 minutes (300 seconds) and the Cache-Control max-age header to 1 hour (3600 seconds), then CloudFront caches the object for 5 minutes instead of 1 hour.
  2. If you set the Maximum TTL to 5 minutes (300 seconds) and the Expires header to 1 month, then CloudFront caches the object for 5 minutes instead of 1 month.
  3. If you set the Default, Minimum, and Maximum TTL to 0 seconds, then CloudFront always verifies that it has the most recent content from the origin.
  4. If you set the Maximum TTL to 5 minutes (300 seconds) and the Cache-Control max-age header to 1 hour (3600 seconds), then CloudFront caches the object for 1 hour.
A
  1. If you set the Maximum TTL to 5 minutes (300 seconds) and the Cache-Control max-age header to 1 hour (3600 seconds), then CloudFront caches the object for 5 minutes instead of 1 hour.
  2. If you set the Maximum TTL to 5 minutes (300 seconds) and the Expires header to 1 month, then CloudFront caches the object for 5 minutes instead of 1 month.
  3. If you set the Default, Minimum, and Maximum TTL to 0 seconds, then CloudFront always verifies that it has the most recent content from the origin.
  4. If you set the Maximum TTL to 5 minutes (300 seconds) and the Cache-Control max-age header to 1 hour (3600 seconds), then CloudFront caches the object for 1 hour.
70
Q

You have set up CloudFront for web distribution object caching setting Minimum TTL > 0 Seconds and the origin adds a Cache-Control max-age directive to objects. Which of the following is not correct on CloudFront caching?

  1. Minimum TTL < max-age < maximum TTL: CloudFront caches objects for the value of the Cache-Control max-age directive.
  2. Max-age < minimum TTL: CloudFront caches objects for the value of the CloudFront minimum TTL.
  3. Max-age > maximum TTL: CloudFront caches objects for the value of the CloudFront max-age.
  4. Max-age > maximum TTL: CloudFront caches objects for the value of the CloudFront maximum TTL.
A
  1. Minimum TTL < max-age < maximum TTL: CloudFront caches objects for the value of the Cache-Control max-age directive.
  2. Max-age < minimum TTL: CloudFront caches objects for the value of the CloudFront minimum TTL.
  3. Max-age > maximum TTL: CloudFront caches objects for the value of the CloudFront max-age.
  4. Max-age > maximum TTL: CloudFront caches objects for the value of the CloudFront maximum TTL.
71
Q

You have set up CloudFront for web distribution object caching setting Minimum TTL > 0 Seconds and the origin adds an Expires header to objects. Which of the following is not correct on CloudFront caching?

  1. Minimum TTL < Expires < maximum TTL: CloudFront caches objects until the date and time in the Expires header.
  2. Expires < minimum TTL: CloudFront caches objects for the value of the CloudFront minimum TTL.
  3. Minimum TTL < Expires < maximum TTL: CloudFront caches objects until maximum TTL.
  4. Expires > maximum TTL: CloudFront caches objects for the value of the CloudFront maximum TTL.
A
  1. Minimum TTL < Expires < maximum TTL: CloudFront caches objects until the date and time in the Expires header.
  2. Expires < minimum TTL: CloudFront caches objects for the value of the CloudFront minimum TTL.
  3. Minimum TTL < Expires < maximum TTL: CloudFront caches objects until maximum TTL.
  4. Expires > maximum TTL: CloudFront caches objects for the value of the CloudFront maximum TTL.
72
Q

Your website is available in five languages. The directory structure and file names for all five versions of the website are identical. As a user views your website, requests that are forwarded to CloudFront include a language query string parameter based on the language that the user choses.

http://d111111abcdef8.cloudfront.net/main.html?language=de http://d111111abcdef8.cloudfront.net/main.html?language=en http://d111111abcdef8.cloudfront.net/main.html?language=es http://d111111abcdef8.cloudfront.net/main.html?language=fr http://d111111abcdef8.cloudfront.net/main.html?language=jp

You want your origin server to returns different versions of your objects for all query string parameters. How should you configure the Cloudfront distribution?

  1. Configure CloudFront to forward query strings to the origin and to cache based on the language parameter.
  2. Configure CloudFront to forward OAI to the origin and to cache based on the language parameter. Configure
  3. CloudFront to forward cookies to the origin and to cache based on the language parameter. Configure
  4. CloudFront to forward headers to the origin and to cache based on the language parameter.
A
  1. Configure CloudFront to forward query strings to the origin and to cache based on the language parameter.
  2. Configure CloudFront to forward OAI to the origin and to cache based on the language parameter. Configure
  3. CloudFront to forward cookies to the origin and to cache based on the language parameter. Configure
  4. CloudFront to forward headers to the origin and to cache based on the language parameter.
73
Q

What is the default duration for which a file is cached before expiring in CloudFront?

  1. 12 hours
  2. 24 hours
  3. 8 hours
  4. 4 hours
A
  1. 12 hours
  2. 24 hours
  3. 8 hours
  4. 4 hours
74
Q

You are using Amazon CloudFront to serve objects stored in Amazon Simple Storage Service (Amazon S3). You have updated objects in S3, but CloudFront distribution is still serving the previous versions of those files. Why isn’t Amazon S3 content updating on CloudFront? How can you fix this so that updated objects are served immediately? Choose 2.

  1. Invalidate the S3 objects.
  2. Use object versioning.
  3. Delete and create new S3 object.
  4. Wait for the default TTL
A
  1. Invalidate the S3 objects.
  2. Use object versioning.
  3. Delete and create new S3 object.
  4. Wait for the default TTL

AWS Study Deck - SAA (18 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions